Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft
File: k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft (raw, json)
Hash identifier: xz33MqVhx8r6tPyTn39ThAmUu4bjoLSV96cXETG0+5A=
Subject key identifier: 48:1F:B3:F3:ED:DF:C5:BE:43:58:80:42:5B:03:24:B4:B2:C5:04:62
Authority key identifier: 93:D4:3D:49:98:68:09:1B:BD:C4:7D:95:AE:E1:C9:09:9F:00:56:20
Certificate issuer: /CN=93d43d499868091bbdc47d95aee1c9099f005620
Certificate serial: 01965B02F2D68272CEB1668458E9D6BEC626
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft
Manifest number: 1503
Signing time: Tue 22 Apr 2025 01:00:41 +0000
Manifest this update: Tue 22 Apr 2025 01:00:41 +0000
Manifest next update: Wed 23 Apr 2025 01:00:41 +0000
Files and hashes: 1: d_f-2basXF4ecUjEUuL7_QGvdV8.roa (hash: 3qi4PJf12FWilDaOg+5R4nsdnVGnK/XQkSLQfanFNGo=)
2: k9Q9SZhoCRu9xH2VruHJCZ8AViA.crl (hash: HcaJjUba93b37LAQ8490CHgYHSng8790aGv7Zkzluwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft
rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:02:f2:d6:82:72:ce:b1:66:84:58:e9:d6:be:c6:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93d43d499868091bbdc47d95aee1c9099f005620
Validity
Not Before: Apr 22 01:00:41 2025 GMT
Not After : Apr 23 01:00:41 2025 GMT
Subject: CN=481fb3f3eddfc5be435880425b0324b4b2c50462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:6d:10:81:e0:e0:d6:3b:c1:21:9b:75:4a:a1:
63:74:5c:bc:83:b0:46:54:f8:68:39:35:c0:b6:bb:
3c:ec:47:ce:68:cc:89:7b:e7:fd:e7:0b:e1:d6:02:
a9:bb:5f:f8:57:f9:c1:e8:39:2e:28:da:15:f9:a9:
27:5f:c9:2e:90:1b:b4:bf:e0:0f:1d:c6:73:0b:45:
96:8d:23:91:22:f1:38:4c:85:f3:f5:1c:67:89:14:
ed:aa:ab:76:84:e5:82:2b:dc:68:26:6b:c0:e5:39:
f3:0e:e9:77:a8:c6:da:72:c4:d8:9c:c1:e7:91:b4:
34:26:f5:1d:c1:51:10:7d:9b:f8:0b:6e:3e:41:bf:
d2:50:2e:12:30:26:3a:8b:15:8e:46:2d:03:cf:92:
bb:2a:69:a7:b9:6e:df:56:0e:79:e7:f0:0d:38:63:
28:35:96:3b:ec:24:36:a9:56:42:7d:7f:e2:d8:1d:
68:10:31:78:51:0d:fa:a4:e2:22:11:25:06:39:4f:
78:1b:ed:c9:d1:ee:78:f3:3e:ba:6d:79:2e:6b:2f:
5c:4e:24:3b:c1:9f:87:06:d5:9c:78:15:dd:43:9a:
53:1f:4b:67:8a:0b:6c:34:b6:e6:f8:6f:67:34:0f:
0c:b1:88:a0:ae:8d:c3:32:79:4e:c6:f0:37:b3:36:
b9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:1F:B3:F3:ED:DF:C5:BE:43:58:80:42:5B:03:24:B4:B2:C5:04:62
X509v3 Authority Key Identifier:
keyid:93:D4:3D:49:98:68:09:1B:BD:C4:7D:95:AE:E1:C9:09:9F:00:56:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:14:7f:e4:a5:11:25:2c:31:28:60:2c:8f:13:57:80:68:77:
1d:31:6a:6f:d2:e8:2a:71:03:66:bb:bf:f7:3e:06:69:2c:da:
22:68:e2:cd:0c:e5:37:9c:d9:d8:a2:4a:f7:99:0a:f3:e9:a1:
a4:e5:d5:0a:1c:ab:73:02:a3:aa:b9:59:1b:c4:26:73:23:41:
ab:ad:f7:ea:f7:b0:51:f0:8e:d7:ec:49:c1:39:5e:09:f1:4a:
8f:d0:90:61:f5:f2:7f:f7:d2:e3:55:42:e8:0d:86:d9:17:e4:
c3:3d:df:a0:6b:24:65:1e:30:15:5e:7f:54:dd:73:9b:61:f2:
e5:e1:8a:85:a9:99:54:f6:a2:7b:89:d2:76:a7:cd:da:56:3e:
01:66:41:ef:3f:21:79:50:28:63:39:91:e7:1b:6f:5c:99:fd:
2c:8c:6b:0d:b4:ef:d2:b2:2e:ac:66:3c:e8:23:bd:8d:94:a7:
ea:36:2d:57:53:b8:a3:68:1c:10:68:a0:a9:65:9f:cf:40:d4:
34:f9:bd:d7:9d:b0:65:0f:94:03:ef:89:45:53:0a:73:2f:72:
a4:71:3a:ec:b8:ad:ff:67:b5:f6:bc:ee:fb:7b:fe:aa:23:37:
84:1b:d4:26:e0:b5:14:f3:01:e3:9a:7f:0d:04:74:50:4b:2c:
8c:a8:c6:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 05:27:59 2025 by rpki-client