Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: 2KQNmQ4gJI4IFr7omrIQ4TBHxeldRlq+vIqslbwLYic=
Subject key identifier: 9E:7E:52:47:9F:1E:1D:14:92:B8:FF:24:41:CB:4B:C8:2E:77:DF:26
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 0196BA48A4ECE2A1EFEA9F0B6177941BC81C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: F0
Signing time: Sat 10 May 2025 13:00:45 +0000
Manifest this update: Sat 10 May 2025 13:00:45 +0000
Manifest next update: Sun 11 May 2025 13:00:45 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: tcueGRoEZ+49ogHYaADIh4Jo+M19eEaZm13GG5o31AU=)
2: q2_sbJziOr7rwxyhvKWnkNjMans.roa (hash: 0BH7DATsPfSUKJPP/TZdwOG931UfHO+OV4ftBhPZrwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:48:a4:ec:e2:a1:ef:ea:9f:0b:61:77:94:1b:c8:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: May 10 13:00:45 2025 GMT
Not After : May 11 13:00:45 2025 GMT
Subject: CN=9e7e52479f1e1d1492b8ff2441cb4bc82e77df26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b5:62:57:f5:0e:b0:16:d7:2c:a8:af:e0:bf:
e7:04:5a:df:e6:40:b7:93:4b:b0:84:eb:33:0a:4e:
67:ac:a1:16:da:5e:f1:c3:2c:f7:07:be:5b:b0:90:
a1:56:b7:3c:65:0c:f5:31:5f:80:3c:56:bc:69:c1:
01:3b:a1:80:c1:38:7c:7d:f0:8c:21:7b:89:72:dd:
06:c8:3a:51:1a:f7:54:cf:0c:b3:60:5b:36:18:7c:
17:91:1b:d3:5c:e4:45:02:e9:35:df:4f:80:9a:54:
de:9d:42:f7:ac:46:a2:1f:ab:37:d4:a0:e7:28:ca:
47:d0:97:89:1c:cb:6e:5f:e2:16:11:34:1f:2a:54:
37:0e:6a:6b:6b:aa:c7:05:51:68:ed:9b:e0:45:11:
27:f3:42:7a:9d:4d:e8:84:a6:9b:f0:3f:c9:f1:84:
af:06:e8:a1:71:bc:49:f6:1b:1b:2c:18:b3:db:05:
6f:63:f5:ec:23:f9:d7:31:cc:01:24:67:82:ed:74:
f3:f8:db:c5:93:ce:cd:d7:5b:00:95:38:de:bf:24:
97:f0:41:c3:cd:be:34:02:34:9a:87:31:7e:48:71:
69:e8:d4:47:81:dd:5a:a9:b3:de:9b:dd:2a:a6:3b:
87:da:66:c2:18:94:30:f4:0d:6c:f0:28:f7:49:9a:
79:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:7E:52:47:9F:1E:1D:14:92:B8:FF:24:41:CB:4B:C8:2E:77:DF:26
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:b3:54:3b:13:0d:44:54:36:2f:ad:4c:f0:16:f9:5c:3f:ce:
4b:6e:a4:9b:b5:21:1b:fc:8b:0d:a0:45:88:b4:0b:0e:17:96:
7d:57:66:4f:0e:c6:6c:0b:f8:3c:53:55:21:7b:9b:0e:11:db:
95:57:2b:6b:a1:9e:f3:9a:1a:00:61:af:3c:0c:3a:70:0e:20:
6a:a9:96:41:73:97:63:34:60:94:c9:0d:07:e8:fb:9d:96:40:
07:63:7a:2f:d4:ab:21:46:51:b5:63:e5:46:5e:40:72:b1:47:
75:df:b9:45:64:30:b3:a7:33:49:2a:b3:7c:7a:a9:dd:49:83:
76:d6:87:3a:9f:2e:85:04:23:f7:e0:77:94:b1:8f:65:24:69:
2b:7b:89:7e:77:a2:47:65:ec:dd:18:43:af:26:41:5c:1b:28:
a7:45:e0:eb:c6:4b:16:80:4f:36:5c:dc:e6:52:9a:e9:18:ea:
d1:64:66:40:ae:dd:a7:a8:c5:3a:4e:c1:4e:d4:b5:0f:f4:23:
18:c4:67:0e:6a:f6:99:26:ab:7e:6c:05:bc:62:6d:41:69:6c:
12:66:8d:7e:19:87:f9:4b:3e:10:fb:87:a6:1b:73:6f:fb:06:
b4:75:85:5e:3c:5b:a9:96:86:9c:46:c8:10:03:9f:52:50:01:
b1:f5:39:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:25:10 2025 by rpki-client