Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
File: KgV9tw5HTrSgd_oT875N17Y4C1Q.mft (raw, json)
Hash identifier: UDouvHsAWW5tw7OiSHpW41IxizBGAMf5ex3C9VwRL1I=
Subject key identifier: E1:E6:18:F8:D5:1E:1A:21:D9:95:68:C4:5E:52:18:4E:EC:C4:A7:AE
Authority key identifier: 2A:05:7D:B7:0E:47:4E:B4:A0:77:FA:13:F3:BE:4D:D7:B6:38:0B:54
Certificate issuer: /CN=2a057db70e474eb4a077fa13f3be4dd7b6380b54
Certificate serial: 0196AE0D1C0AB9F3EFAE3BF829C814EE551F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
Manifest number: 0F24
Signing time: Thu 08 May 2025 04:00:16 +0000
Manifest this update: Thu 08 May 2025 04:00:16 +0000
Manifest next update: Fri 09 May 2025 04:00:16 +0000
Files and hashes: 1: KgV9tw5HTrSgd_oT875N17Y4C1Q.crl (hash: VbqrIAHIgxbalQLpZCfcgTDY9lepVQ/NnlBMcc/bSgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 04:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:0d:1c:0a:b9:f3:ef:ae:3b:f8:29:c8:14:ee:55:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a057db70e474eb4a077fa13f3be4dd7b6380b54
Validity
Not Before: May 8 04:00:16 2025 GMT
Not After : May 9 04:00:16 2025 GMT
Subject: CN=e1e618f8d51e1a21d99568c45e52184eecc4a7ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:65:69:42:40:65:a2:58:6a:9d:dc:73:6e:29:
7b:ba:ab:47:01:ec:a2:39:57:63:a8:a6:b5:6e:1b:
ba:0b:49:5b:e7:ac:49:40:84:5f:eb:e4:8a:5e:b1:
4e:e2:0f:1e:2d:21:cf:dc:a6:c3:a8:f4:dc:ca:be:
cf:92:df:8a:73:0d:27:a8:10:b1:f3:ee:44:69:f4:
01:0a:2c:54:b4:0c:dc:b8:98:12:43:d2:32:52:4a:
6a:be:e4:b4:e9:1d:42:95:be:1d:45:2b:64:a1:cb:
06:27:c0:04:48:1d:2e:11:14:b2:a6:5f:0c:e2:98:
fc:af:37:af:0e:a5:cd:65:03:12:c4:8c:cd:91:90:
7c:9c:35:46:da:ab:e2:17:85:92:31:16:f6:3b:0b:
a7:b6:f7:17:a1:26:da:46:56:0c:31:90:4c:94:34:
e4:4d:be:2b:7c:4a:18:9d:d1:bf:78:1a:e7:45:36:
a9:1e:a2:7e:e4:b0:f9:aa:e1:99:a8:d8:89:b5:b9:
c0:34:d5:26:ab:95:7d:2f:45:08:c7:82:83:df:36:
24:67:24:18:93:65:38:8c:73:ba:f5:61:2b:07:14:
87:41:b5:93:b0:0a:bd:15:e7:6a:6a:36:b1:9e:2a:
8a:aa:ea:12:97:03:0c:c8:56:1b:24:b4:c7:84:8b:
26:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E6:18:F8:D5:1E:1A:21:D9:95:68:C4:5E:52:18:4E:EC:C4:A7:AE
X509v3 Authority Key Identifier:
keyid:2A:05:7D:B7:0E:47:4E:B4:A0:77:FA:13:F3:BE:4D:D7:B6:38:0B:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:95:e1:db:17:9a:e1:bb:3f:d4:7d:09:3b:34:51:8c:f9:64:
cb:cf:2c:a1:8b:f5:0f:05:11:b6:8e:55:82:a9:b2:63:2e:6b:
a6:d7:ee:f0:3b:56:8d:ae:40:7a:0e:96:35:b9:d1:5d:c0:8a:
87:4b:e6:bc:27:14:20:f3:ef:07:95:13:06:0f:e2:dc:c1:8f:
1a:65:03:ae:4b:f6:ae:8f:7a:7b:1e:7e:8e:75:37:17:68:8e:
32:75:5a:5f:e5:e5:5a:7d:46:59:c2:2a:35:3d:6e:d8:96:5e:
db:19:4e:54:c5:9a:60:00:6b:12:cb:17:41:b9:ee:ae:06:01:
a4:9a:37:43:3f:d9:02:34:7c:ad:5d:80:cc:5b:00:3d:2c:01:
d8:e3:46:29:03:02:cb:52:fe:c0:fd:7c:bd:89:5e:6c:a6:35:
78:a7:8e:d1:e9:d8:2b:be:d5:70:4f:5e:d1:29:63:9b:46:6b:
9c:1c:d9:f6:ca:4f:47:41:98:12:fb:7a:e5:02:d7:6c:9a:4f:
35:35:12:47:ac:fe:1a:4c:77:ec:47:6f:d3:47:09:88:18:5b:
04:f2:5b:5d:b0:9a:8e:18:36:96:4a:81:6a:8c:b6:d8:7e:58:
ef:a3:a8:ff:53:e6:f6:9b:70:eb:71:71:ab:c7:b7:1b:97:85:
b8:f5:1b:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 10:07:05 2025 by rpki-client