Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
File: KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft (raw, json)
Hash identifier: lQG98+xPGcm6koIxurktqIRs0rVtc12eV+lEdp6ytRo=
Subject key identifier: 53:8E:24:F4:51:EA:31:4C:BC:C6:2A:E3:B8:14:C2:57:39:41:F6:58
Authority key identifier: 29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
Certificate issuer: /CN=29da6411a13264dc6de0f101108540ef741ed19a
Certificate serial: 0196C126878291C07E8E17A167DE4A566DC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
Manifest number: 1153
Signing time: Sun 11 May 2025 21:00:49 +0000
Manifest this update: Sun 11 May 2025 21:00:49 +0000
Manifest next update: Mon 12 May 2025 21:00:49 +0000
Files and hashes: 1: KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl (hash: MgUA3Rq818IKr17IJ5S+2g8N1/CnjB4PYR5001nNalQ=)
2: ofG1VLRjjYIcZfzAaNigWWgyFxw.roa (hash: ZHICR+Axb4b3KRXOcmZzuP26q8FUw656ivJ0mJFMsoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:26:87:82:91:c0:7e:8e:17:a1:67:de:4a:56:6d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29da6411a13264dc6de0f101108540ef741ed19a
Validity
Not Before: May 11 21:00:49 2025 GMT
Not After : May 12 21:00:49 2025 GMT
Subject: CN=538e24f451ea314cbcc62ae3b814c2573941f658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b3:33:d8:85:f0:2c:69:9e:4c:ad:95:34:00:
90:1c:3f:4a:fa:37:a4:1e:58:0a:b8:7f:17:58:f7:
be:78:17:46:2c:1a:23:5f:b1:ec:56:ac:dd:f0:77:
ac:f2:a5:29:72:ce:12:e5:21:27:c6:fc:05:54:fb:
80:87:ed:ac:47:c7:e1:e5:0e:f6:be:d9:55:82:a1:
ab:6a:f7:ad:73:be:0e:c5:60:9f:2c:64:07:79:9e:
9d:58:c8:bb:e6:d9:44:59:3b:51:d8:20:1f:c7:6a:
3b:33:cb:78:8d:46:9a:a8:bd:d8:f8:7f:cf:d3:0f:
4e:96:8d:09:c2:ae:72:d0:97:0c:67:33:a0:08:5b:
b8:26:60:c1:f0:43:96:76:30:43:de:b8:a3:f3:92:
10:af:17:73:52:fc:1d:63:a8:d3:26:25:9a:6b:cf:
52:34:06:0e:49:bb:80:5f:5e:31:05:e8:b1:94:3e:
85:6b:c8:e9:c0:b6:b9:1f:5b:04:7b:54:f8:7c:d3:
b0:3c:49:d0:c9:0c:69:e9:ae:a2:b8:5c:00:c4:78:
99:9d:16:09:ad:b4:20:b8:4f:49:f0:8d:79:72:29:
e0:43:d6:e0:a3:c6:69:9e:40:06:23:1b:c9:fd:f6:
fe:f6:cd:26:96:78:b9:87:82:ae:89:3d:8b:d3:d5:
87:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:8E:24:F4:51:EA:31:4C:BC:C6:2A:E3:B8:14:C2:57:39:41:F6:58
X509v3 Authority Key Identifier:
keyid:29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:83:0a:97:a7:54:d3:28:8f:89:56:b5:87:67:70:60:a6:33:
cb:4e:b2:f6:f9:2f:80:d2:a9:4c:cd:d2:8f:2f:33:3d:a5:52:
e7:e4:0c:46:0e:a0:8e:34:09:b1:13:6b:4b:68:e6:6f:02:13:
d4:c2:1f:6d:ef:48:3e:7c:80:9e:5d:8d:fe:be:5b:1a:2b:7b:
5f:47:01:77:24:58:5b:d3:d0:a8:12:9d:64:32:ec:f7:b7:95:
ce:13:f7:0e:09:af:cb:d4:b7:0f:4e:86:6c:8b:8b:63:67:90:
1c:74:41:67:d9:c9:07:dc:29:16:c7:4c:48:48:b0:7f:ff:24:
b9:2f:86:53:38:97:9e:fe:ff:6a:4f:c8:3c:1a:df:41:c4:e4:
57:46:ce:c8:26:12:5e:42:fe:c6:44:3e:de:92:da:f3:f9:a5:
e2:62:de:52:ec:1e:7d:0c:05:33:8c:38:25:b3:b2:11:00:11:
73:48:5e:c7:07:f4:95:6e:a2:59:d5:b5:66:51:31:5a:7a:77:
df:44:c6:1d:c4:6a:3b:33:fc:b5:04:22:0b:24:87:36:1e:4a:
58:56:b3:d2:87:52:81:83:ee:09:9e:2f:4d:a0:53:d5:8b:c7:
50:08:dd:74:56:87:a4:fb:64:35:2b:fe:e2:07:31:ca:50:f9:
18:ca:d0:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 23:07:59 2025 by rpki-client