Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: G9qicUevDc8g4IAO8DaLSVi81qXfITAZPqsNgEXyj2k=
Subject key identifier: F4:4E:A0:5F:0C:1C:22:15:9F:79:80:65:E9:E6:51:AA:16:AE:9F:67
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 019654C9B20FAB80508C872394D9E3205090
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: F1
Signing time: Sun 20 Apr 2025 20:00:26 +0000
Manifest this update: Sun 20 Apr 2025 20:00:26 +0000
Manifest next update: Mon 21 Apr 2025 20:00:26 +0000
Files and hashes: 1: 7RtSvYvJ-s26z4jJmihBpc9PPTg.roa (hash: +WPL+eLMOyDQbtRDqabesCoaqYzO2nUYgvkky6oLihM=)
2: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: K6TcU6E2DDYPCXnqtfbddVLZ0V81Xmgbb8iMS+gS1Cc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:b2:0f:ab:80:50:8c:87:23:94:d9:e3:20:50:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: Apr 20 20:00:26 2025 GMT
Not After : Apr 21 20:00:26 2025 GMT
Subject: CN=f44ea05f0c1c22159f798065e9e651aa16ae9f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:4e:92:a4:8d:3b:00:89:cd:70:be:89:36:8a:
15:df:6a:d8:f5:9d:3d:5f:b9:9a:1c:48:8f:47:6a:
41:2c:35:be:21:5a:02:f3:08:3c:8e:2e:08:38:c7:
af:0c:d4:b3:f3:ad:62:af:0b:19:71:85:13:1c:df:
37:ed:01:3f:b1:1a:76:b5:bc:f4:68:1c:2c:d7:80:
05:54:3b:7b:ca:80:cd:3e:81:01:1f:1a:0b:60:b1:
9e:c9:13:02:2a:6b:65:47:71:0d:d4:63:71:b8:49:
5c:e5:96:e8:92:0b:0f:b5:27:7a:c0:bf:65:0b:ff:
1c:37:48:11:74:04:dd:b4:4d:9d:d4:ac:ff:22:6a:
b2:c3:ee:04:2a:6b:a2:de:7f:71:1f:d4:cf:dc:af:
3f:c6:1e:29:83:7e:8c:f8:de:91:85:60:a1:4f:4b:
c8:36:2c:40:da:68:d3:9e:f0:56:47:62:d1:be:eb:
0e:6c:10:76:d9:69:55:24:b1:87:5d:b7:50:67:d3:
b3:a2:2b:87:0a:95:0b:a5:87:14:a3:ce:7d:8e:cd:
07:c0:ef:ca:9d:70:dd:5c:38:c0:92:b5:83:7f:74:
a0:9b:37:6a:62:14:d2:0d:74:6f:20:3a:32:e4:f4:
b0:34:8f:f2:f8:bd:fe:66:a1:88:11:e2:c0:ba:22:
0e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:4E:A0:5F:0C:1C:22:15:9F:79:80:65:E9:E6:51:AA:16:AE:9F:67
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:97:99:f2:a5:42:2c:dc:ea:cb:c6:f8:b8:5e:32:ba:ed:eb:
aa:05:e7:90:dd:1d:c6:78:2c:bc:0d:1c:d8:11:93:b7:37:52:
fe:01:f6:2d:1d:7a:6d:39:6b:a9:b6:88:d2:ca:ee:b3:a7:99:
51:83:5e:1d:e8:da:6d:fa:3b:47:bf:cb:a3:64:19:dc:93:53:
84:99:7e:ae:0f:ad:7b:cb:53:8e:69:82:39:66:d8:05:d8:bd:
b4:d5:19:a4:97:31:02:a3:98:fe:ed:8a:4b:3a:43:c5:90:87:
e4:cf:ea:de:3d:87:92:62:66:db:d3:02:38:9a:72:28:23:57:
99:af:2d:02:ed:cf:50:9a:a8:8f:08:f2:70:48:4c:25:7a:7e:
1f:c5:82:d0:11:f5:ea:7d:82:70:eb:36:91:1c:65:d0:8b:3a:
11:5d:8b:1a:2a:b3:ec:fc:53:3a:0e:c8:15:21:51:2a:3c:3a:
fb:7d:04:c1:5a:7e:cc:af:38:e5:a5:c9:73:77:1f:11:67:46:
2e:e1:f4:88:3e:10:bc:80:29:7f:57:57:ad:88:bb:5b:96:41:
b5:71:d6:b0:24:d2:79:4f:d9:2f:bf:0a:4e:29:d6:77:07:98:
dd:49:28:fc:25:8c:02:70:50:b4:20:9b:94:0e:c3:75:42:90:
22:8d:42:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:51:22 2025 by rpki-client