Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
File: kNWCLTx7v3q1QE3aiP2dqSE43iE.mft (raw, json)
Hash identifier: hrRk5yaYg9pkq8RlB5wfu9PpjsUAMvcoQs4mYBkPy4Q=
Subject key identifier: 78:25:A3:44:07:D8:E1:1B:9E:E0:D7:AF:7E:17:C8:CF:8D:1F:7C:53
Authority key identifier: 90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
Certificate issuer: /CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Certificate serial: 0196C3BA187CE19C8A24C41DAEDE2A6F4CD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
Manifest number: 05F4
Signing time: Mon 12 May 2025 09:01:15 +0000
Manifest this update: Mon 12 May 2025 09:01:15 +0000
Manifest next update: Tue 13 May 2025 09:01:15 +0000
Files and hashes: 1: kNWCLTx7v3q1QE3aiP2dqSE43iE.crl (hash: 3GvESELgmthfmqHdgfH036a3WlliV06on/nlSfIm6Vc=)
2: wd_UoJqlC6X8mKMfS7O-YEGVRuo.roa (hash: xFPdoUnkz2JIkzmQ5taq1hUGjTFKvPuKX93R37CXGQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:ba:18:7c:e1:9c:8a:24:c4:1d:ae:de:2a:6f:4c:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Validity
Not Before: May 12 09:01:15 2025 GMT
Not After : May 13 09:01:15 2025 GMT
Subject: CN=7825a34407d8e11b9ee0d7af7e17c8cf8d1f7c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:ef:d1:99:3b:55:35:a1:94:b2:a6:e7:cd:ef:
1d:a0:65:5b:65:88:d9:b3:6b:70:b5:5d:38:81:7c:
4d:9c:f7:db:e7:50:0b:e1:84:e5:5b:6d:78:a3:55:
f6:3d:90:18:20:9f:79:dc:ac:52:f9:88:c8:36:03:
de:46:1c:cb:67:c4:a6:22:3a:51:f5:48:0c:e3:a3:
00:18:60:7e:5e:5a:1c:51:33:22:85:44:c7:a3:c0:
76:c1:f3:18:32:04:a8:7b:ca:c7:df:c6:ef:a5:4b:
7e:60:12:29:9e:d6:d2:54:a9:41:1a:ad:a2:53:d4:
ac:41:e7:a7:f4:4c:dc:41:38:4c:12:91:ca:6e:69:
47:01:a2:14:95:7d:9a:87:59:92:d3:fd:8e:41:09:
02:15:fb:5a:8c:a5:ab:74:15:5a:de:54:c7:ed:26:
c5:dc:ef:e9:07:ae:6a:52:b9:5b:5a:2f:25:2b:93:
11:bb:e1:43:39:cb:12:cf:cb:3c:7a:b4:8d:d1:b1:
2a:07:7f:32:ac:ee:a3:30:5a:22:3a:20:e3:b3:cd:
c8:07:bd:ad:1b:af:f9:75:4c:c5:47:00:ae:1e:30:
0f:a7:e4:fe:7b:b6:19:79:8a:4b:e0:84:d6:d3:9c:
14:f8:49:3b:fd:5f:84:39:80:8c:8f:78:53:c3:85:
54:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:25:A3:44:07:D8:E1:1B:9E:E0:D7:AF:7E:17:C8:CF:8D:1F:7C:53
X509v3 Authority Key Identifier:
keyid:90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:49:78:03:96:19:f6:b5:f8:51:d8:a9:34:f1:16:3e:ff:04:
3a:7e:38:5a:3d:28:02:4a:25:90:47:d0:19:ac:03:86:c5:0f:
22:00:3c:16:fb:46:a7:be:99:1a:eb:d2:ed:82:07:ad:7c:44:
d1:7b:01:24:fe:61:59:20:3d:59:d6:9f:43:aa:e7:67:c1:4f:
e7:9c:c8:41:b3:10:71:64:79:8c:55:2d:3b:1b:15:d5:4e:54:
bc:e3:11:bf:3e:0c:bf:8e:5e:1e:00:28:47:90:98:bb:40:0f:
92:c0:82:b2:f6:e5:90:c6:0a:92:eb:a5:be:f2:51:f2:b8:99:
25:33:bd:7e:d4:47:3c:7d:34:42:57:cf:8f:e6:6d:a7:d9:de:
f0:23:78:9c:de:03:f9:10:c3:18:be:35:31:1c:3f:8e:36:b1:
6d:dc:33:f8:8b:9d:89:fe:09:62:b5:07:8e:04:8b:88:a8:fc:
cb:90:e1:0d:7a:56:1c:3d:f1:c5:ea:37:f1:18:e2:5f:95:a7:
56:97:d8:5b:3a:4d:ce:7c:89:87:f0:d6:a3:a3:8b:f2:a9:bb:
b6:32:42:0b:22:17:1c:38:11:a6:f3:ac:6d:3a:af:60:ff:78:
d8:d9:1e:a4:a0:67:80:94:c8:08:ad:8a:9d:fd:8f:4f:ad:3a:
ca:63:c8:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:54:43 2025 by rpki-client