Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
File: kq8Dyi32Qjt30O83N7D0eRqgNaM.mft (raw, json)
Hash identifier: 2eGD4HxQ2dBguru0plDMhTzPTI/b2ibW4TqwLEHKH3Q=
Subject key identifier: 76:60:83:19:63:C4:54:BC:D3:44:B9:6C:1E:60:E2:DA:7F:F9:23:22
Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Certificate serial: 0196C7CD7FCFC42C705843BC10A68609AFDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
Manifest number: 09C8
Signing time: Tue 13 May 2025 04:00:55 +0000
Manifest this update: Tue 13 May 2025 04:00:55 +0000
Manifest next update: Wed 14 May 2025 04:00:55 +0000
Files and hashes: 1: XFrF4ZD8RKmENGKuXlNfyh9_oV8.roa (hash: Syc9HmjiF/DkUOhl4IVh1oQ9jwD6L7ptWtUgxSy9ut8=)
2: kq8Dyi32Qjt30O83N7D0eRqgNaM.crl (hash: 9vB8JCRMHbYrFlm7U5U2V7JnZY6i6MkMCt3JCklowxY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 04:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:cd:7f:cf:c4:2c:70:58:43:bc:10:a6:86:09:af:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Validity
Not Before: May 13 04:00:55 2025 GMT
Not After : May 14 04:00:55 2025 GMT
Subject: CN=7660831963c454bcd344b96c1e60e2da7ff92322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:04:0e:b5:b4:0d:07:7c:62:df:6a:70:b1:7e:
c9:e6:67:91:5d:26:46:c4:0a:64:c4:b6:dd:39:ba:
d7:ba:27:4b:6e:c4:db:bb:9e:fc:af:b4:3b:18:39:
ed:03:3c:e1:64:2d:4f:a3:5f:f2:1c:f8:4a:89:ab:
ca:46:a1:b4:50:87:ee:98:b5:a5:a4:b9:73:c6:f6:
4e:bc:32:6d:dc:c1:73:12:32:47:06:9b:51:07:a8:
52:49:f8:0e:14:dc:34:4f:4b:0c:d3:ed:aa:06:de:
29:32:e3:b3:1c:da:76:94:d0:26:bb:96:c4:b9:4c:
b1:8d:06:ea:13:f9:c1:c1:4e:0a:63:18:08:03:27:
8f:ca:6f:9d:eb:0b:ac:68:38:a0:17:6a:c5:3e:5d:
38:60:e1:71:21:a6:4c:c4:34:c5:7f:f7:c1:67:b5:
73:bc:c1:ef:3d:ef:91:c3:c0:1c:4c:a0:5c:d3:29:
73:75:9e:0d:be:46:6c:13:9e:ca:ff:37:9c:cf:c8:
39:95:7b:d2:ab:7d:68:2f:61:24:b2:ff:5a:eb:bf:
b6:e6:c1:46:ea:44:7c:b5:ae:6e:65:34:0d:96:ff:
43:bf:09:cf:f5:e3:d8:41:69:01:41:89:18:93:c6:
5f:af:2c:59:67:4c:69:b4:64:e9:28:f2:23:91:1c:
c5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:60:83:19:63:C4:54:BC:D3:44:B9:6C:1E:60:E2:DA:7F:F9:23:22
X509v3 Authority Key Identifier:
keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:78:d0:d4:b2:30:ef:80:b4:93:29:8e:1d:2a:96:7e:0e:32:
31:22:57:43:dd:91:52:7e:3a:4e:11:75:ec:0d:2d:cd:2f:af:
b2:b1:ae:af:6d:0e:a5:2c:eb:f2:aa:0e:5e:ec:b5:fa:44:b3:
98:9e:c4:8c:31:a7:06:de:22:71:08:c6:5b:1b:65:35:e1:b0:
95:0e:82:46:f8:87:5c:c5:b7:fb:da:fb:cd:d2:5a:c7:8f:cd:
31:04:41:a0:7e:42:7f:cc:a7:5b:82:4e:48:05:6a:bb:b6:7a:
9d:f5:36:e1:3e:f0:a0:0e:dd:2e:70:13:28:b4:49:bf:d9:d8:
8d:eb:c2:f9:dd:7a:af:d4:27:55:6a:a0:d2:19:eb:2a:27:7f:
43:45:4f:9e:d3:d7:62:a1:bf:5f:ed:0b:f6:ae:48:a2:36:ec:
99:f5:a5:e3:63:81:22:52:db:08:5b:8c:1d:3f:ec:50:f3:6a:
e7:0f:c4:30:e4:f5:67:0e:c8:2e:64:c0:a4:77:6a:a6:c9:f9:
03:6d:0c:69:43:a5:cf:bd:41:80:df:80:ae:33:7c:12:a1:44:
8b:4e:10:c7:8d:63:db:ef:d3:ca:d6:94:d2:59:f6:97:7b:70:
ff:39:ae:2b:9c:51:1f:73:31:e8:75:52:b6:28:bb:24:0c:53:
3e:d5:5e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 11:33:34 2025 by rpki-client