Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.mft
File: kvhWIuIvyWzqz3MRTYkPTzqn1JU.mft (raw, json)
Hash identifier: 8ofI9aD+hgOIKdaAldncB6F5vEODckRALDrI9aD0XEA=
Subject key identifier: B4:5E:83:EA:A2:8B:A0:CB:CF:6A:59:6F:B7:A4:B9:37:6A:07:49:FE
Authority key identifier: 92:F8:56:22:E2:2F:C9:6C:EA:CF:73:11:4D:89:0F:4F:3A:A7:D4:95
Certificate issuer: /CN=92f85622e22fc96ceacf73114d890f4f3aa7d495
Certificate serial: 019657265D56ABF493E52C9519745ADF7E98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvhWIuIvyWzqz3MRTYkPTzqn1JU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.mft
Manifest number: 0C1A
Signing time: Mon 21 Apr 2025 07:00:54 +0000
Manifest this update: Mon 21 Apr 2025 07:00:54 +0000
Manifest next update: Tue 22 Apr 2025 07:00:54 +0000
Files and hashes: 1: kvhWIuIvyWzqz3MRTYkPTzqn1JU.crl (hash: 0cUpMMLCEnqzG3ItDIZUC3OLLI7rXpn+x9d5y3Q6HXk=)
2: o0NNJAdQ09Zlx7io8L7w4JsxeRk.roa (hash: GHDYyjn7cWOGvu2PuaUkyCHLa21ud2IleT+Ydwgziyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kvhWIuIvyWzqz3MRTYkPTzqn1JU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:5d:56:ab:f4:93:e5:2c:95:19:74:5a:df:7e:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f85622e22fc96ceacf73114d890f4f3aa7d495
Validity
Not Before: Apr 21 07:00:54 2025 GMT
Not After : Apr 22 07:00:54 2025 GMT
Subject: CN=b45e83eaa28ba0cbcf6a596fb7a4b9376a0749fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9f:9c:ca:d4:97:41:f4:0b:46:8a:be:74:67:
87:3e:e0:b0:7d:90:8b:78:43:86:f4:67:f3:f9:87:
85:03:10:a7:7d:ff:0b:d3:4d:c3:5f:2a:94:44:70:
22:25:d7:c0:1d:e0:82:f7:2e:de:5b:3e:6c:6e:fd:
56:10:fd:0a:dd:25:5b:2e:d1:ce:2f:29:8a:a2:87:
2b:ac:2b:50:42:19:6b:e4:91:cc:09:16:ef:4c:30:
70:bb:cd:63:25:63:ec:d1:c4:23:05:bf:d7:f1:29:
01:b4:8f:9d:44:85:76:41:be:ff:5c:a1:87:0d:36:
40:1c:7f:a0:e1:6e:7d:4e:23:19:3a:a6:0f:24:9d:
01:67:1a:9e:22:10:86:2c:32:7c:40:0e:58:03:0e:
01:f1:7b:ce:b0:37:e4:ff:94:01:22:43:65:35:64:
ba:41:af:44:4c:0d:c3:1d:71:6a:d5:fc:ca:8d:4e:
e8:f4:75:07:23:0e:93:62:0a:cd:90:70:ad:e8:24:
11:c2:7e:3b:5c:39:e5:70:9b:ef:6c:57:ba:a6:bd:
85:70:b3:77:2d:40:7a:3e:01:7e:ac:06:53:a1:da:
96:b9:8a:f5:af:c4:d6:01:db:33:66:c6:62:7e:ab:
68:2a:39:83:fc:d8:72:80:cb:ee:a0:f5:d4:ea:48:
00:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:5E:83:EA:A2:8B:A0:CB:CF:6A:59:6F:B7:A4:B9:37:6A:07:49:FE
X509v3 Authority Key Identifier:
keyid:92:F8:56:22:E2:2F:C9:6C:EA:CF:73:11:4D:89:0F:4F:3A:A7:D4:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvhWIuIvyWzqz3MRTYkPTzqn1JU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:75:24:5d:a3:52:3c:93:8c:fd:36:cc:62:4d:c1:4d:8d:f8:
0d:b1:c5:c6:1e:46:a6:e0:24:ba:06:71:1b:80:e3:9c:d3:2d:
ad:1c:05:5a:fd:9b:16:e0:88:58:63:2c:0e:61:c5:19:a6:fe:
06:29:a6:2f:c7:c8:ef:e3:07:63:c2:e0:9d:27:a0:57:5d:e4:
8b:90:92:d7:74:1e:ea:28:b0:c9:2b:f5:12:f8:a6:f4:a1:e8:
f6:bb:c0:d9:f5:14:bf:34:ac:c1:88:c9:58:05:42:cd:47:79:
d0:7e:1b:c1:88:d6:1d:61:08:5f:11:c2:5b:a7:7a:d2:74:52:
73:0e:61:4a:78:d7:74:0c:62:2e:ca:f1:f3:4a:16:c3:ab:50:
27:58:87:52:b5:f1:30:69:d5:23:e5:b9:c6:65:ff:48:78:64:
83:a8:18:e6:f6:5a:58:6e:b1:b8:97:d1:32:79:e9:bb:ae:c6:
e0:4f:3a:aa:c0:fb:4b:ad:17:61:c1:e9:df:2c:95:ac:d7:d3:
ff:cb:32:68:c0:70:41:39:35:c6:53:56:ce:7b:a5:a3:bc:6a:
a3:72:df:cc:08:1d:1e:39:18:ab:ca:01:5f:c9:da:42:b1:c8:
9e:ab:50:7b:b5:84:b8:bc:8e:53:87:72:78:c0:5f:ea:ba:91:
3c:59:f3:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:37:42 2025 by rpki-client