Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
File: KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft (raw, json)
Hash identifier: isWpfIsezMrrSIsTMrGvdQ4bsm7yMG0WG7FZkdgPiSY=
Subject key identifier: FA:6D:14:E1:48:B3:C0:66:95:0A:E4:5D:EB:83:B4:23:2B:28:26:D8
Authority key identifier: 2A:A3:80:E2:30:CB:33:43:61:B4:86:1E:2F:69:41:24:38:7F:85:29
Certificate issuer: /CN=2aa380e230cb334361b4861e2f694124387f8529
Certificate serial: 01965538A1E6281ECFEF1FD9F9C5303A7D4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
Manifest number: 14FB
Signing time: Sun 20 Apr 2025 22:01:36 +0000
Manifest this update: Sun 20 Apr 2025 22:01:36 +0000
Manifest next update: Mon 21 Apr 2025 22:01:36 +0000
Files and hashes: 1: KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl (hash: le7ZK4y6gZ0b4n7zvEDn3ceU9CsCblEQtN9pSE/ihno=)
2: SjvSMbvX_pvw3i1Pn6Bx1TTyu6U.roa (hash: kgWKItzA9z25TXtV7XlZgfoMV6KRvWKz0GsOPfm6isI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:a1:e6:28:1e:cf:ef:1f:d9:f9:c5:30:3a:7d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa380e230cb334361b4861e2f694124387f8529
Validity
Not Before: Apr 20 22:01:36 2025 GMT
Not After : Apr 21 22:01:36 2025 GMT
Subject: CN=fa6d14e148b3c066950ae45deb83b4232b2826d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:36:cb:f7:47:4e:ae:34:69:1e:5d:20:7c:cd:
99:81:a9:81:a0:e9:a9:ad:33:31:74:5a:b0:f1:06:
3e:2d:a0:8b:89:f7:b8:d2:c4:63:b0:c0:d5:5f:34:
83:28:32:de:89:ed:ff:b8:b8:a4:0f:6a:c0:1c:55:
44:ef:aa:b9:74:66:3e:e3:d7:5a:a8:47:f9:3e:54:
d9:f1:e6:8f:70:b1:a9:c5:e4:f5:86:0a:bd:e4:d5:
12:b4:b6:2a:42:c1:ab:af:28:4c:0f:08:cd:c5:07:
43:b8:e2:b4:bd:28:e0:03:8d:7a:4f:0f:9f:4e:a6:
10:c2:3e:49:92:be:9e:01:d4:ed:ff:da:eb:8b:93:
df:6d:a2:17:78:0a:b5:db:6b:b7:da:61:f0:3b:eb:
aa:7d:5d:34:d2:72:86:e7:b7:97:13:67:41:fd:d9:
5a:55:c2:2e:21:bd:67:eb:a0:9c:17:6a:21:a5:a7:
de:85:01:7c:0b:c3:5d:9c:e4:3a:35:92:30:2e:f1:
f8:51:71:07:38:10:1d:74:a0:d3:0c:06:1e:f2:29:
22:41:99:cf:c4:41:f4:4d:60:5d:8c:c2:38:fb:8e:
32:0f:70:eb:71:45:17:97:7a:98:1b:22:89:4e:55:
c7:8d:2f:98:86:36:dd:41:63:e1:b7:80:87:77:61:
e7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:6D:14:E1:48:B3:C0:66:95:0A:E4:5D:EB:83:B4:23:2B:28:26:D8
X509v3 Authority Key Identifier:
keyid:2A:A3:80:E2:30:CB:33:43:61:B4:86:1E:2F:69:41:24:38:7F:85:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:d0:b9:83:4f:c4:1d:57:73:7e:ee:32:1b:bb:02:e5:ba:0b:
bc:d2:37:87:82:31:10:51:68:70:6d:22:97:9f:97:08:ad:d2:
86:d6:b3:9b:05:c9:c3:9d:86:4a:75:94:08:aa:30:1b:f6:88:
d0:7a:84:c8:6c:4c:92:60:2b:d1:f3:b8:cb:ce:c6:fe:cd:62:
08:51:30:75:0d:dc:66:94:93:b1:6e:9b:e7:67:72:37:ba:6f:
03:04:2a:70:28:3d:70:a8:04:86:71:f6:38:8d:45:f1:54:5b:
42:9a:47:8e:0c:ab:5c:3d:09:d6:d4:44:cb:45:30:cb:25:4c:
f8:b2:29:d3:55:ff:5c:6c:e2:63:ba:7e:65:2d:09:19:f2:27:
e1:a3:d4:98:dc:9e:cf:86:9d:80:14:05:9a:a8:59:d3:fd:23:
6c:4d:c1:f0:3f:58:a7:ae:fd:70:9f:40:9c:36:dc:fc:03:fa:
44:54:3e:13:57:cf:ed:a2:e1:70:28:6d:f7:31:1d:55:63:22:
08:d6:75:96:ba:17:bf:5b:c5:4d:04:14:9c:01:69:49:34:6a:
c7:e0:7a:cc:f6:4a:0e:9d:66:26:d3:36:cc:25:0b:19:e3:e6:
00:1e:2e:65:a5:75:68:58:6f:33:4f:49:84:b5:ca:41:2b:d8:
72:35:1f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:08:02 2025 by rpki-client