Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
File: KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft (raw, json)
Hash identifier: JMUlo6BvaC9MQUgMSiJ94quRFepYVtecfsmgnqVaiXM=
Subject key identifier: 29:0B:B0:FC:0F:68:6C:AD:1E:14:C3:E4:F1:F9:48:2F:B4:14:9D:24
Authority key identifier: 28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
Certificate issuer: /CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Certificate serial: 0196C1263770107E55754B02EC1B5F8E457B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
Manifest number: 0A1C
Signing time: Sun 11 May 2025 21:00:29 +0000
Manifest this update: Sun 11 May 2025 21:00:29 +0000
Manifest next update: Mon 12 May 2025 21:00:29 +0000
Files and hashes: 1: 0i9Bsr9ABLnx3mgPWtu21_vME3g.roa (hash: TMrcqTSOi1Ov7CcLLSWohgeiaaCi8xEADwSrQIF/DCo=)
2: KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl (hash: FGMq5LZZB+CRPamEijGN1bC64bWoWoREciCnWn5dGnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:26:37:70:10:7e:55:75:4b:02:ec:1b:5f:8e:45:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Validity
Not Before: May 11 21:00:29 2025 GMT
Not After : May 12 21:00:29 2025 GMT
Subject: CN=290bb0fc0f686cad1e14c3e4f1f9482fb4149d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:4d:86:d2:5d:8b:fc:eb:01:ab:80:e7:98:45:
ac:c1:d5:d8:b5:c9:28:f3:8e:21:53:62:b3:2c:28:
70:45:7d:81:78:46:33:59:41:23:4b:84:58:2d:b3:
71:a5:f9:e4:54:18:5a:21:8e:ff:1b:13:d4:be:d2:
ce:af:14:ef:7b:4c:52:8f:07:f2:2a:4b:9c:62:68:
65:dc:a8:21:ff:fe:10:73:57:3a:45:fd:ff:cd:c7:
6b:3d:34:2a:4d:b8:b6:f6:3e:48:2f:88:cc:0a:25:
97:89:08:65:47:28:c7:a2:25:df:bf:8e:58:e5:46:
ea:17:25:15:6c:83:3e:5f:3c:e9:63:3b:d2:33:e3:
a7:85:83:db:2a:dd:c5:0c:34:8f:c6:8e:78:12:4b:
a4:81:cc:9e:e0:5d:56:7e:45:fc:be:a4:be:14:ab:
60:e6:5f:ed:a0:6f:1d:5f:72:11:33:50:e7:8d:5b:
24:84:0b:00:da:ea:69:86:3e:7e:4d:0e:fb:38:11:
f2:ee:b6:21:5c:96:ff:68:f4:10:f5:f4:39:7a:98:
85:72:cf:de:2c:84:53:de:3b:9b:00:98:37:2c:78:
68:0e:b4:c0:94:06:a1:54:69:67:70:d4:40:31:94:
12:2a:cc:8c:dd:68:54:7e:f2:b8:bb:78:53:55:f0:
10:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:0B:B0:FC:0F:68:6C:AD:1E:14:C3:E4:F1:F9:48:2F:B4:14:9D:24
X509v3 Authority Key Identifier:
keyid:28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:e8:08:64:86:c7:9e:9f:9d:2c:34:d4:27:69:7e:5d:65:ce:
87:69:2f:b3:ae:17:47:bb:ac:a2:2c:a6:a0:43:ef:11:4a:d9:
3f:d7:63:6e:14:c4:29:40:e5:ce:30:31:fb:1d:1a:ce:67:c2:
18:49:70:44:e9:59:d6:fc:fc:42:91:fd:6d:ea:79:d3:81:0d:
aa:dd:76:84:56:a0:83:e3:d2:93:6e:f0:bc:df:dc:c2:86:a3:
cc:3c:05:ed:df:35:df:8f:97:fc:34:e8:06:98:21:d0:08:a6:
1f:23:75:b5:f7:e7:71:76:81:37:91:72:ff:49:3d:09:e1:fe:
ea:a7:3d:44:aa:b6:5f:a3:cb:9f:b6:8c:66:92:04:b6:0c:d7:
04:18:51:f2:23:fb:19:1e:d8:57:b2:3c:40:e7:a5:76:33:65:
63:6a:54:bb:37:46:4e:82:d5:e3:d5:f1:96:84:96:d2:d3:4e:
1e:f5:c8:2a:9e:b7:49:8b:97:c2:63:87:f0:d6:5a:6b:99:54:
eb:9c:ea:69:78:fb:ea:24:16:01:6b:f4:89:66:14:76:60:6e:
b4:ed:a5:f1:4a:0d:91:75:c9:1c:82:75:60:ae:12:1c:e7:d9:
ba:bd:f1:04:1b:30:07:99:dd:2b:66:10:ca:fd:54:1f:91:de:
60:06:ed:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 02:15:57 2025 by rpki-client