Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
File: KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft (raw, json)
Hash identifier: cP1g6LBc7Myf2LXKOY7pmnVguJXIBpIR12q5Z9zl3/Y=
Subject key identifier: 27:0D:6A:C7:97:6A:F7:DB:E1:26:EC:D9:25:13:DE:06:BE:4B:20:C9
Authority key identifier: 29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
Certificate issuer: /CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Certificate serial: 0196BFDD457D87E5B8CD149EE39F1B729823
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
Manifest number: 0EA1
Signing time: Sun 11 May 2025 15:01:11 +0000
Manifest this update: Sun 11 May 2025 15:01:11 +0000
Manifest next update: Mon 12 May 2025 15:01:11 +0000
Files and hashes: 1: KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl (hash: X2958pipuXL1CHlIgVUnuf56qHKlHULUj20nq9fkgz0=)
2: kiF2H4Ucoq9Nw51li6ImqM3ctGg.roa (hash: gOoMaXdniQu2tAHNZ6SbwXijF8n71W3w0mmuL2WSkY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 15:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:dd:45:7d:87:e5:b8:cd:14:9e:e3:9f:1b:72:98:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Validity
Not Before: May 11 15:01:11 2025 GMT
Not After : May 12 15:01:11 2025 GMT
Subject: CN=270d6ac7976af7dbe126ecd92513de06be4b20c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:dd:db:af:bc:56:47:42:00:81:d1:31:0d:25:
3d:47:7f:e5:a3:2f:a4:f6:47:50:14:2f:92:d0:72:
1c:f1:1f:c1:ab:a8:63:96:16:e2:5c:f9:c3:12:a3:
f2:98:25:b6:69:8c:aa:c3:75:33:e6:f5:26:9c:ad:
7f:b7:b2:de:4c:b0:49:43:b5:6c:2e:95:02:94:6f:
f7:c9:ba:bb:41:42:b1:a4:0c:75:43:2e:e8:c9:5d:
f1:ae:c3:67:96:e8:66:e9:31:88:69:34:d9:75:7b:
16:38:d5:84:c0:83:a1:b1:5f:99:60:53:ba:ce:89:
0b:c9:0c:02:14:52:d3:ef:4c:05:d0:05:cd:d8:84:
8c:96:bf:77:8e:37:a1:10:cb:a3:89:5c:16:cd:fd:
23:a8:7a:cb:f0:c4:56:32:a4:13:22:53:92:76:2f:
96:f7:b2:b1:02:14:2a:63:af:16:4b:d9:f3:25:94:
3c:c1:85:00:f7:af:d6:f5:32:11:ed:84:42:77:3c:
c2:05:14:3c:77:52:c4:ee:93:89:ce:c1:d9:96:18:
fd:4e:88:08:3d:ff:7c:b7:ca:5f:a3:26:f9:7b:45:
11:eb:96:73:ac:49:8c:c8:5d:65:21:f1:33:2c:f3:
dc:7b:89:6a:0c:7a:06:2b:94:db:e6:06:d3:ce:d7:
4f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:0D:6A:C7:97:6A:F7:DB:E1:26:EC:D9:25:13:DE:06:BE:4B:20:C9
X509v3 Authority Key Identifier:
keyid:29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:21:05:74:3e:ea:87:58:b9:c8:d6:5e:e6:ba:6e:ff:3d:27:
45:55:99:d5:23:d7:1d:65:9e:14:c1:3e:e2:09:a4:31:47:2a:
5b:ba:9c:5a:3b:34:2a:8b:a5:f7:bf:98:58:32:22:6f:82:ca:
0f:29:ee:fe:4e:27:16:9d:b3:c1:b1:23:f5:b2:5a:c5:27:0a:
8c:32:51:c3:04:23:7a:59:d1:3e:a0:38:98:db:5f:2a:60:48:
5c:a9:f4:0b:33:51:2e:dd:0f:60:ba:e6:2b:08:3a:01:27:9d:
fd:54:91:52:8c:8f:d1:77:0d:64:e1:b9:b3:0c:17:79:ab:45:
4b:18:ed:a1:81:40:ae:1e:8e:b0:c1:e8:99:0d:0a:f2:3e:3f:
7a:70:b1:8b:83:69:0d:b0:f0:ab:99:e5:ee:89:3b:46:18:b3:
66:d5:6e:1f:d2:be:92:e8:76:23:ae:fd:67:f4:89:1b:01:ef:
29:1f:a9:b9:b9:cc:3e:8d:4e:cf:64:8d:bb:bf:e9:0a:80:ee:
9a:c4:9d:58:45:5c:dc:0a:30:c2:71:7f:67:06:66:7b:e4:e5:
91:79:bd:2a:03:f9:74:27:5e:be:46:24:85:95:d6:a7:91:50:
a6:bc:ef:9f:6c:54:43:bf:68:a3:49:fa:9d:08:c4:95:18:48:
37:73:0d:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 19:14:43 2025 by rpki-client