Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.mft
File: KBoLv1LY0tSFlDQ6VUCfwQu3txo.mft (raw, json)
Hash identifier: hvbboP3hLhUhjRlzp5pWtphrPmDTPPYSZzRB8xWvHHY=
Subject key identifier: 66:89:8F:88:3D:CE:42:D7:19:3D:FA:72:AF:0F:1C:22:DD:8D:B5:49
Authority key identifier: 28:1A:0B:BF:52:D8:D2:D4:85:94:34:3A:55:40:9F:C1:0B:B7:B7:1A
Certificate issuer: /CN=281a0bbf52d8d2d48594343a55409fc10bb7b71a
Certificate serial: 0196594B160CF6F5846BD3F36EA1F12EC7A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBoLv1LY0tSFlDQ6VUCfwQu3txo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.mft
Manifest number: 1502
Signing time: Mon 21 Apr 2025 17:00:15 +0000
Manifest this update: Mon 21 Apr 2025 17:00:15 +0000
Manifest next update: Tue 22 Apr 2025 17:00:15 +0000
Files and hashes: 1: KBoLv1LY0tSFlDQ6VUCfwQu3txo.crl (hash: n8jZ47KSRyAquq6E0XEkgM66TiezkFZ+lZ6DmZSFxvQ=)
2: VL0JqwmqF16Z9vYeG0MjePH-HaI.roa (hash: pSsEMVRtkWy4MtHaQ+2yZDRrd+dgM8mCSpJI0iLDlbM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBoLv1LY0tSFlDQ6VUCfwQu3txo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:4b:16:0c:f6:f5:84:6b:d3:f3:6e:a1:f1:2e:c7:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=281a0bbf52d8d2d48594343a55409fc10bb7b71a
Validity
Not Before: Apr 21 17:00:15 2025 GMT
Not After : Apr 22 17:00:15 2025 GMT
Subject: CN=66898f883dce42d7193dfa72af0f1c22dd8db549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:42:08:a4:84:3b:a7:7c:4d:47:19:df:b0:ae:
a3:55:98:ce:60:ed:ac:a1:9f:82:0c:1a:c4:5e:ae:
f0:0f:3c:10:be:53:98:1e:94:0a:78:ef:74:3a:c4:
67:27:2d:d7:03:af:cc:b5:51:19:da:9f:d5:f6:46:
12:f9:87:17:c7:2a:89:00:e9:96:e2:29:a1:5f:3f:
24:2c:06:be:fd:be:0b:17:91:b3:27:09:c0:ef:42:
11:7c:24:00:9d:99:45:de:29:8c:e1:8b:51:96:21:
d7:8b:d7:b5:31:7e:25:12:e1:28:ab:49:e3:f9:3b:
31:21:f9:b3:db:bf:d5:88:e4:4f:ed:44:3e:74:e4:
50:ee:84:b3:a8:6f:8d:fd:8d:26:42:71:54:ae:ee:
d4:99:7d:32:ac:fa:9f:66:e4:65:e7:69:d1:b5:78:
5c:c6:a5:17:4c:32:bf:c8:c3:7f:9d:47:d2:38:d0:
f7:8b:15:ff:ce:93:85:03:33:84:d1:ab:72:92:62:
35:64:83:39:93:e4:8e:7f:3b:10:4e:db:89:f6:cb:
ec:cf:2a:26:d5:69:81:a9:2d:c0:83:70:99:7f:64:
9c:24:70:16:c6:2b:dc:76:18:25:0d:02:de:a4:08:
fe:84:51:4e:c6:8c:82:b8:4f:32:a6:9f:c2:d4:93:
7d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:89:8F:88:3D:CE:42:D7:19:3D:FA:72:AF:0F:1C:22:DD:8D:B5:49
X509v3 Authority Key Identifier:
keyid:28:1A:0B:BF:52:D8:D2:D4:85:94:34:3A:55:40:9F:C1:0B:B7:B7:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBoLv1LY0tSFlDQ6VUCfwQu3txo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:86:81:61:70:f9:87:6c:9a:6b:ae:02:6d:41:39:21:4e:e9:
2f:1d:90:52:03:2e:52:67:96:53:a1:5e:58:65:93:90:76:86:
91:b4:cb:30:1a:71:b9:ff:d5:e4:ce:84:e7:93:64:8e:6c:5d:
57:bb:d6:99:cb:73:19:3f:f8:6b:1c:e8:0d:80:ee:c8:de:c5:
0d:c1:2b:36:ce:e1:1e:71:35:37:6d:3e:9e:07:7f:0f:63:75:
e0:83:33:70:ae:1d:96:34:14:ad:b7:f8:29:3d:70:b3:56:d6:
f0:a6:29:d8:13:15:93:d4:bd:ba:b7:c6:a7:81:da:22:75:23:
88:f6:c4:35:7c:68:08:97:16:ae:77:53:04:01:97:03:94:50:
df:92:0a:94:cf:46:23:ed:a5:7c:aa:67:3a:ab:e6:eb:70:24:
26:e1:22:6b:d2:e5:af:d9:01:ed:b4:32:d7:77:f2:50:7a:18:
1e:fb:ff:f7:ac:84:b8:bd:c3:38:1f:a0:10:cf:09:d6:76:b2:
fb:17:47:a3:09:de:90:2b:ea:8f:b0:6d:dc:4a:40:3f:79:7c:
e3:fc:80:26:db:31:ce:cd:35:67:2d:2a:91:ab:2b:c9:b0:25:
d5:b9:75:b4:db:66:19:22:50:8f:2a:db:d1:ea:de:cd:1f:2f:
44:95:b8:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:05:16 2025 by rpki-client