Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
File: k4KIfhkEky8RhsLDHGqS_17GQ4c.mft (raw, json)
Hash identifier: aS8TnRCltG8zL9LeUbFrvUytQO4wgaFsvtxjh/tN7dM=
Subject key identifier: D3:D6:2E:96:17:CA:DA:08:66:98:CC:6B:B3:FA:FB:C3:81:30:58:9D
Authority key identifier: 93:82:88:7E:19:04:93:2F:11:86:C2:C3:1C:6A:92:FF:5E:C6:43:87
Certificate issuer: /CN=9382887e1904932f1186c2c31c6a92ff5ec64387
Certificate serial: 0196BF381768C64DA13A891AF724A2976A42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
Manifest number: 0264
Signing time: Sun 11 May 2025 12:00:46 +0000
Manifest this update: Sun 11 May 2025 12:00:46 +0000
Manifest next update: Mon 12 May 2025 12:00:46 +0000
Files and hashes: 1: k4KIfhkEky8RhsLDHGqS_17GQ4c.crl (hash: VLCmWzyG2gjqF0qA7C13jxWdPGbux/hR2Y9muPdDDns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:38:17:68:c6:4d:a1:3a:89:1a:f7:24:a2:97:6a:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9382887e1904932f1186c2c31c6a92ff5ec64387
Validity
Not Before: May 11 12:00:46 2025 GMT
Not After : May 12 12:00:46 2025 GMT
Subject: CN=d3d62e9617cada086698cc6bb3fafbc38130589d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:51:a1:f0:58:1a:76:49:72:11:c7:d1:29:01:
6e:d0:50:f9:de:52:f6:e5:4c:41:6b:57:b0:5c:32:
84:07:31:5d:ef:c1:8c:6b:82:54:d2:e5:52:c2:e7:
c9:f6:f9:65:6f:11:ad:79:4b:e0:d8:50:2d:11:db:
e8:15:53:20:46:df:4c:80:bf:b6:0d:4f:5e:38:1a:
1f:dd:3c:cb:a5:e9:aa:ec:ab:e2:a3:38:75:40:78:
1a:c0:3c:6e:e9:4e:a8:28:97:f7:89:c4:14:8e:06:
52:2f:e7:0b:f4:a2:3f:a3:c0:d9:31:91:c0:f4:cb:
c5:43:76:fe:64:33:fc:31:36:e9:41:00:87:32:fd:
d6:97:d0:4e:5f:3a:d1:ba:c3:42:05:e8:a2:91:6f:
d1:97:7c:77:6b:fd:ac:6c:c3:08:b5:74:65:9a:ad:
cf:48:5a:6e:7e:16:ee:f6:ed:2a:09:e8:ac:41:ad:
1a:a9:41:e0:34:39:44:6a:11:ad:46:0a:42:30:7f:
47:ae:ac:80:5a:a7:0e:53:58:79:19:e0:8a:94:6b:
bc:1a:85:f2:74:d9:57:5d:50:ee:a1:e5:64:ad:a7:
9a:44:4a:69:3a:03:d6:16:cb:c0:0f:46:4c:b3:6b:
16:aa:fd:2d:59:08:07:1f:f9:7f:06:0d:8f:18:4f:
c3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:D6:2E:96:17:CA:DA:08:66:98:CC:6B:B3:FA:FB:C3:81:30:58:9D
X509v3 Authority Key Identifier:
keyid:93:82:88:7E:19:04:93:2F:11:86:C2:C3:1C:6A:92:FF:5E:C6:43:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:64:d5:06:2a:27:8c:18:65:64:5c:f7:8d:8d:4e:06:12:b2:
65:07:92:99:9b:d6:9a:1d:0b:48:91:d5:7f:37:ab:dd:f0:09:
c8:27:89:b7:2d:f7:4d:1a:d7:67:d5:b0:88:16:38:23:a8:80:
b2:4f:8b:51:75:10:d5:7e:28:0a:9d:c2:dd:f4:2f:37:da:a2:
7e:6a:88:51:5a:e8:31:a8:dc:08:77:60:13:a4:d3:8a:45:f5:
91:39:aa:d7:dd:22:53:2c:cd:2a:2f:6c:da:73:bd:f4:7f:d8:
74:67:9b:b9:8b:ca:68:99:77:73:9e:d7:54:1b:4f:c3:b4:db:
d0:a8:67:7a:5b:7a:15:81:e2:67:80:03:95:88:57:7d:02:d2:
ba:ce:ec:a1:3a:2e:0c:74:7f:93:a0:7f:94:49:9f:33:1a:6e:
ca:14:7e:46:55:02:d0:b5:46:1e:0e:b9:0d:09:6d:45:fd:5b:
f0:c4:1c:0c:bd:ee:1a:4d:f6:cd:43:42:55:5b:e7:13:77:80:
38:f3:87:52:78:ff:5c:16:e5:d3:60:4e:bb:9b:32:23:ed:01:
50:e1:76:33:ac:9f:7a:ee:d4:f2:cd:55:41:51:e9:0f:a5:36:
31:75:a6:42:86:c1:47:d8:d2:ba:81:c2:35:a2:ba:c5:3c:53:
63:98:40:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:40:47 2025 by rpki-client