Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
File: KcmwQBb28CGDMHwX32MKAonsW7U.mft (raw, json)
Hash identifier: aKnvxGSbt9quIrrzz/+EHyb+4+YZ1GbMDKD/oLXsVeg=
Subject key identifier: FA:C9:B7:3E:3C:F5:F6:C9:FE:97:6D:B2:91:63:0C:1C:BB:64:7F:83
Authority key identifier: 29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
Certificate issuer: /CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Certificate serial: 0196B71071A28758EF5800684F17D90ADEC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
Manifest number: 0D92
Signing time: Fri 09 May 2025 22:00:30 +0000
Manifest this update: Fri 09 May 2025 22:00:30 +0000
Manifest next update: Sat 10 May 2025 22:00:30 +0000
Files and hashes: 1: KcmwQBb28CGDMHwX32MKAonsW7U.crl (hash: QTBz2YRkDU8/NFkT8ehicWneLBGMrC6VmdPe+yO3ft8=)
2: UdEEZQE09FsGfYOWUhVww5xs81M.roa (hash: 6mSyURdhs/eGBTOXFJi0QulmUdFyZbb3K6nx0/FAyzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:10:71:a2:87:58:ef:58:00:68:4f:17:d9:0a:de:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Validity
Not Before: May 9 22:00:30 2025 GMT
Not After : May 10 22:00:30 2025 GMT
Subject: CN=fac9b73e3cf5f6c9fe976db291630c1cbb647f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:02:e6:62:df:5e:9e:3b:e5:7f:6b:c5:2e:7d:
2c:14:3a:03:6b:07:05:12:5a:31:6e:78:06:68:a1:
92:b0:9f:f9:b0:63:01:d1:bd:ea:9d:58:62:87:1c:
e0:16:f1:67:96:2c:55:30:50:4f:26:56:19:fd:17:
d0:38:27:eb:18:f5:0e:4a:11:8d:86:83:3a:30:32:
34:72:cc:2e:ed:e3:30:46:cd:5f:ba:bf:57:21:3a:
50:34:4d:77:7d:80:db:3f:e1:ca:84:dd:04:9e:74:
50:25:7b:49:11:62:d5:a8:4d:ad:79:99:a1:1e:b5:
28:c9:e7:5f:3e:96:6c:df:6d:c3:e2:54:29:ef:ce:
97:98:cb:11:20:c7:a0:c3:6c:7b:ed:a0:66:ab:14:
14:ab:3e:b8:02:7c:7e:cf:8b:15:45:25:16:8b:73:
d9:27:4a:79:f7:20:62:ff:b3:9f:10:09:e0:47:b4:
a9:1b:b2:9c:15:28:ca:f1:30:24:3a:7f:cd:6d:e0:
04:5c:23:c1:7f:a9:0b:c0:42:fa:e7:a0:05:8c:d3:
80:eb:0e:8e:97:45:e8:b2:82:ad:29:d0:b5:d8:bb:
ce:68:de:70:77:bd:24:a0:4f:79:6a:68:0a:a5:48:
14:c5:e6:d6:9b:05:50:85:a3:93:37:50:c4:a9:a5:
e8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C9:B7:3E:3C:F5:F6:C9:FE:97:6D:B2:91:63:0C:1C:BB:64:7F:83
X509v3 Authority Key Identifier:
keyid:29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:a8:31:7e:18:26:ce:1e:f9:62:9c:3f:16:63:a9:ee:44:b8:
1e:89:f2:c0:87:94:a7:72:fc:64:26:b0:e5:12:ae:86:bc:5f:
d9:0c:c3:c0:97:db:74:e5:5c:e1:53:16:15:bf:f1:2d:26:a6:
ac:29:f8:b9:1d:6f:b1:88:2f:9a:68:97:9d:66:3c:5d:a5:d4:
72:43:59:64:37:20:f1:74:97:ea:37:28:77:fa:f8:fd:ca:ca:
02:21:fe:4a:41:56:3f:07:dc:a8:82:ff:21:e2:b6:19:b0:fc:
d2:9c:d0:bf:8d:61:b1:84:f8:5e:77:07:41:c6:8e:57:e5:51:
68:48:e3:b5:03:59:63:4d:4f:af:a3:22:12:c0:30:da:45:24:
26:3f:28:f2:c1:66:10:33:c3:18:4d:ff:39:64:c8:36:96:16:
ff:08:30:4b:0f:32:90:00:48:04:36:33:3f:bb:f8:4f:1b:f2:
8e:83:bf:a1:78:a5:06:70:c8:5f:a5:d8:d8:a7:a3:70:0a:6b:
f6:dc:b5:d4:fb:cb:20:fb:c9:7c:64:f3:cd:c6:81:ab:79:c5:
23:a6:b6:68:41:1f:ed:08:07:88:59:27:80:a2:50:89:35:cd:
79:8f:b3:61:16:1c:b9:35:37:41:4b:bb:63:0e:d2:20:bb:00:
6a:4d:44:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 05:19:25 2025 by rpki-client