Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier: rxb2/GrclIMrduvMwrIQHT/6NMQMxtSN59As+eoD6LQ=
Subject key identifier: B1:B3:68:90:FE:88:1E:B9:6F:EC:81:26:D1:48:26:C9:33:B1:B2:D1
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial: 0196D0624FE43B5C72921CB5180841557D8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number: 0294
Signing time: Wed 14 May 2025 20:00:25 +0000
Manifest this update: Wed 14 May 2025 20:00:25 +0000
Manifest next update: Thu 15 May 2025 20:00:25 +0000
Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: 6JlEwDNJwdEyrh8URgp2qBHp0eaoKW2cAdmkQqqrHEg=)
2: OsS2avf_SCsvTL1pRqTL_5n-su8.roa (hash: q2VY8Sbvggao2o4h3H+VtLne6bMzXujw9hwcUuBVuOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 14:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d0:62:4f:e4:3b:5c:72:92:1c:b5:18:08:41:55:7d:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Validity
Not Before: May 14 20:00:25 2025 GMT
Not After : May 15 20:00:25 2025 GMT
Subject: CN=b1b36890fe881eb96fec8126d14826c933b1b2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f5:68:6e:37:c7:73:9f:94:3f:82:d1:45:93:
b3:6a:90:41:ed:d0:46:13:8e:d2:a0:b5:83:db:ac:
7d:8e:f3:1f:cd:13:72:54:72:42:5f:b1:b7:da:73:
45:b5:60:b2:a7:ba:b0:40:04:51:47:92:41:20:74:
83:c9:c6:88:e0:51:20:9b:1e:0d:23:a9:54:58:2b:
91:3a:70:a1:5a:63:8c:ad:21:8c:dc:87:2e:cf:8a:
b0:9b:f2:f5:21:98:14:5e:2f:dc:40:6c:1a:4a:2f:
6a:a8:ad:55:2d:f9:7b:27:62:a4:5a:7d:06:b9:89:
ce:04:bb:8d:f0:11:5b:92:30:f1:62:78:a7:a0:9f:
ea:0e:53:64:75:41:8e:55:15:ac:a4:df:77:6d:2e:
64:25:84:07:41:1b:4d:26:65:67:0f:88:f1:79:08:
a4:71:17:15:ea:b5:b2:a5:07:14:4f:66:ce:3d:3e:
e4:81:86:24:9c:1e:57:0c:11:59:66:01:e5:20:7e:
34:a4:ec:5b:ec:23:8f:e2:a4:bd:d6:aa:86:8d:e4:
ae:ed:b3:41:14:c5:7e:12:a6:d6:ea:1a:e5:dd:40:
66:06:aa:cd:55:54:41:8c:2c:24:e2:c3:48:c6:3f:
02:fa:eb:e7:1c:06:50:e9:2f:bc:7e:51:1b:7f:cb:
76:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:B3:68:90:FE:88:1E:B9:6F:EC:81:26:D1:48:26:C9:33:B1:B2:D1
X509v3 Authority Key Identifier:
keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:e6:1e:6d:89:87:5c:42:25:30:82:43:35:fb:f6:83:3f:72:
4a:ec:4f:64:17:9c:e6:07:dc:02:fc:bd:9d:b7:c2:2d:45:b2:
3f:06:b6:c4:60:3f:1b:bb:aa:ee:a7:08:28:a4:e5:d6:55:7d:
cf:f6:2b:16:7a:7f:00:e2:0b:3b:24:67:a3:8b:60:16:14:44:
14:5a:78:19:d6:48:f6:a4:89:33:ff:78:8b:30:ff:cf:29:16:
f6:d7:67:88:2a:10:e7:c5:ef:32:2c:c2:c6:42:6e:44:2c:d3:
c7:38:72:1b:2a:b5:58:0d:91:d4:82:07:60:5d:53:69:a9:1c:
b6:37:9e:e0:3e:56:ae:a3:43:61:b1:86:45:d1:49:c8:f5:20:
b1:4e:97:ca:1c:ff:c1:3d:6e:87:56:ce:b9:6f:82:a3:0f:d3:
1c:0e:99:2a:53:26:17:d6:bd:32:fc:66:34:d7:7e:10:ab:89:
09:97:18:dd:73:ef:2e:ee:0b:3c:b3:c3:a7:d6:e3:e4:1f:44:
63:20:3a:f0:78:33:2b:ba:42:bb:de:3b:d8:40:89:8d:89:85:
0d:f7:c8:10:c8:e5:c1:1a:40:ef:48:2b:ed:c2:e8:36:b8:3b:
40:f7:89:4d:a3:c8:52:9e:dd:30:35:65:c7:86:e8:19:d6:13:
ce:8d:aa:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 23:54:40 2025 by rpki-client