Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft
File: KC5DLtiL7BrRRURJYygU1DmWseA.mft (raw, json)
Hash identifier: dvkx42gsUw3UxQpioPViJ6mnU9/9fr8nccim5r+3Ldw=
Subject key identifier: D7:07:50:20:78:5E:9D:AE:73:A1:4B:83:FD:7B:E3:3A:85:E8:F5:8B
Authority key identifier: 28:2E:43:2E:D8:8B:EC:1A:D1:45:44:49:63:28:14:D4:39:96:B1:E0
Certificate issuer: /CN=282e432ed88bec1ad1454449632814d43996b1e0
Certificate serial: 0196D9D3939C1D2E3185FB5BEC7AB8219747
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KC5DLtiL7BrRRURJYygU1DmWseA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft
Manifest number: 0B9A
Signing time: Fri 16 May 2025 16:00:43 +0000
Manifest this update: Fri 16 May 2025 16:00:43 +0000
Manifest next update: Sat 17 May 2025 16:00:43 +0000
Files and hashes: 1: 9FnOB-XBygoB-RgBBWEsPTbvFTc.roa (hash: faK52ZKxn8mhj7q+v4KziaARqXuKQdUnupgh7Jp3IVk=)
2: KC5DLtiL7BrRRURJYygU1DmWseA.crl (hash: oJ8hBILwBIN77O2WRmSyUJC8RodixWgpFnyRv1Umn0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KC5DLtiL7BrRRURJYygU1DmWseA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 16:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d9:d3:93:9c:1d:2e:31:85:fb:5b:ec:7a:b8:21:97:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282e432ed88bec1ad1454449632814d43996b1e0
Validity
Not Before: May 16 16:00:43 2025 GMT
Not After : May 17 16:00:43 2025 GMT
Subject: CN=d7075020785e9dae73a14b83fd7be33a85e8f58b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3f:a9:eb:14:f0:c0:fe:29:48:a5:c2:7d:6b:
2e:fd:55:5e:b9:fa:04:2f:31:6b:5a:cb:a2:52:81:
0f:0c:e8:25:ed:b7:f8:36:45:86:73:5c:52:61:bb:
b0:b8:ac:0a:3b:4b:67:44:f6:bc:d1:a8:18:3d:a3:
50:51:c3:3c:01:2a:e7:03:28:4d:34:78:63:ba:e3:
1b:8c:f0:34:a3:2d:05:5d:ed:b9:71:35:66:bf:1a:
51:11:98:b4:4e:60:ff:38:3c:a2:75:40:7a:ce:77:
8b:b4:27:ae:e1:c0:6b:e7:32:19:55:ef:f7:4d:65:
7a:63:50:09:b5:31:aa:88:e4:63:aa:c9:44:ad:49:
7d:6d:74:29:de:a3:83:6b:d0:cc:80:a6:ed:43:f6:
f6:c3:9e:ae:d6:8d:14:c9:5c:e4:d0:a8:3a:61:9e:
80:61:c9:17:14:2b:38:ff:ac:aa:d1:dc:df:9c:c6:
48:b8:26:e9:55:a9:cc:d6:73:05:cc:1d:b0:6e:bf:
50:86:4f:62:34:f4:b5:08:39:4f:e1:ff:59:c3:e5:
be:9a:28:bf:62:e7:0e:87:d4:36:ec:fe:96:5e:93:
6b:4e:88:cb:24:2c:40:ab:ff:26:34:32:cc:82:61:
6c:5b:20:07:80:2f:47:e7:37:61:1c:17:d9:6f:5c:
fb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:07:50:20:78:5E:9D:AE:73:A1:4B:83:FD:7B:E3:3A:85:E8:F5:8B
X509v3 Authority Key Identifier:
keyid:28:2E:43:2E:D8:8B:EC:1A:D1:45:44:49:63:28:14:D4:39:96:B1:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KC5DLtiL7BrRRURJYygU1DmWseA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:d8:64:29:85:b0:60:bf:c7:a7:9e:6d:cf:2e:1d:70:aa:e2:
ad:82:09:3c:0c:e3:3d:04:16:b2:88:dd:14:2d:63:a5:56:cd:
1c:3a:f5:fc:6c:ca:0b:68:52:0e:db:41:d2:d8:a3:dc:92:25:
59:dd:89:f2:ce:02:04:43:ff:71:d4:6d:b2:c6:23:91:c1:8c:
8e:c7:16:c4:62:93:53:74:f6:3d:b3:9b:0c:66:bf:20:8b:4b:
da:a9:7c:28:4c:97:fd:af:6f:43:6c:51:a7:ee:05:9d:41:41:
91:e6:3e:6e:7a:a7:d5:e7:3d:34:d0:ec:a1:f3:02:8d:dc:c5:
7a:29:36:22:f4:44:84:5c:93:11:ad:0d:e4:06:af:c5:64:55:
d5:bd:79:73:3c:99:b0:b9:96:a8:f8:ba:ac:3d:d4:e9:e3:3c:
82:9b:39:21:fa:68:fb:8a:76:e5:a7:f8:56:92:b6:5d:c2:b0:
50:b7:2d:e9:13:7e:17:2d:42:d6:f9:66:90:7d:dc:2e:66:e1:
8c:02:5f:f5:87:a4:9e:e0:9a:67:82:5d:41:59:cb:e0:75:65:
8e:2f:11:80:0c:40:61:a8:57:05:49:c9:72:8f:80:6f:e6:65:
95:00:f2:6c:8c:28:38:e0:8e:92:c1:73:4c:f9:6f:a3:0c:b2:
ca:eb:32:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 23:12:22 2025 by rpki-client