Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/0e42e8-746c-4a3a-8d63-cc053f6a1ee6/1/K5rePBkSeLKqitdnQu673v5yheY.mft
File: K5rePBkSeLKqitdnQu673v5yheY.mft (raw, json)
Hash identifier: XyBZfOFMb91Gc5wGlCUTtWmx1XU65P5qA+NMIN8x+wM=
Subject key identifier: B6:44:43:F8:8E:10:58:F9:C9:4D:11:CF:8A:F4:96:E4:4D:F5:E2:4A
Authority key identifier: 2B:9A:DE:3C:19:12:78:B2:AA:8A:D7:67:42:EE:BB:DE:FE:72:85:E6
Certificate issuer: /CN=2b9ade3c191278b2aa8ad76742eebbdefe7285e6
Certificate serial: 019655006D3F67FFB09FC4D1ACD367FDF1A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5rePBkSeLKqitdnQu673v5yheY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/0e42e8-746c-4a3a-8d63-cc053f6a1ee6/1/K5rePBkSeLKqitdnQu673v5yheY.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 21:00:13 +0000
Manifest this update: Sun 20 Apr 2025 21:00:13 +0000
Manifest next update: Mon 21 Apr 2025 21:00:13 +0000
Files and hashes: 1: K5rePBkSeLKqitdnQu673v5yheY.crl (hash: iX0vlki3BXSrApWaM/EAanlV79xxaPJRokoYK3Tj3cI=)
2: qG28szwgzKPw-jxxXZAb6g2XGqU.roa (hash: izxZJRDh1PNPhAdwizTZ+zNrbkp/H2QNfLC0QfnH8sI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/0e42e8-746c-4a3a-8d63-cc053f6a1ee6/1/K5rePBkSeLKqitdnQu673v5yheY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/0e42e8-746c-4a3a-8d63-cc053f6a1ee6/1/K5rePBkSeLKqitdnQu673v5yheY.mft
rsync://rpki.ripe.net/repository/DEFAULT/K5rePBkSeLKqitdnQu673v5yheY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 21:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:6d:3f:67:ff:b0:9f:c4:d1:ac:d3:67:fd:f1:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b9ade3c191278b2aa8ad76742eebbdefe7285e6
Validity
Not Before: Apr 20 21:00:13 2025 GMT
Not After : Apr 21 21:00:13 2025 GMT
Subject: CN=b64443f88e1058f9c94d11cf8af496e44df5e24a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ce:e8:cc:40:46:75:28:1f:93:7e:10:52:f7:
61:fd:88:3a:0f:dd:96:0a:1a:dc:99:0e:0d:30:87:
b1:fb:b1:fb:94:de:89:74:eb:c7:19:7c:a9:44:f0:
c0:b7:21:c2:95:f6:ea:d0:61:17:6d:94:d6:d8:b2:
44:e0:28:01:24:79:7a:ab:c8:6f:df:e2:17:db:1d:
fa:02:52:09:8e:d2:26:24:58:cd:2b:e0:9b:32:6f:
d9:72:ee:af:e8:35:36:96:c5:ed:f7:a7:de:02:41:
38:33:b4:26:7c:11:d8:1c:cd:14:c7:55:e5:13:7c:
77:a2:76:57:06:e9:6e:5d:ec:15:7a:1b:ce:09:56:
a7:8e:98:3d:b4:d1:1d:53:7c:68:84:08:a8:8f:75:
e4:96:98:70:c1:17:e3:65:16:06:fc:97:ff:2d:3d:
e0:08:1f:f6:4b:72:d5:e2:a0:8b:7b:27:fd:a6:b0:
fc:2c:67:18:30:91:32:9a:fa:8f:05:71:8a:66:b5:
32:14:2d:cd:4c:42:1b:5e:b5:0a:9b:5b:0f:b3:fa:
8a:1d:6c:06:e1:d1:02:fd:52:35:7c:9b:97:16:f0:
f5:b1:cb:10:77:f0:14:77:38:96:51:53:54:b4:b5:
d0:40:f9:4e:91:d8:89:fc:e0:9d:5a:2b:a3:01:90:
fe:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:44:43:F8:8E:10:58:F9:C9:4D:11:CF:8A:F4:96:E4:4D:F5:E2:4A
X509v3 Authority Key Identifier:
keyid:2B:9A:DE:3C:19:12:78:B2:AA:8A:D7:67:42:EE:BB:DE:FE:72:85:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5rePBkSeLKqitdnQu673v5yheY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/0e42e8-746c-4a3a-8d63-cc053f6a1ee6/1/K5rePBkSeLKqitdnQu673v5yheY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/0e42e8-746c-4a3a-8d63-cc053f6a1ee6/1/K5rePBkSeLKqitdnQu673v5yheY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:9b:55:7e:e3:2e:a7:fd:96:34:aa:56:f8:03:b1:3b:04:19:
10:ef:7f:53:cf:1b:5f:05:c6:2e:7b:dc:fd:2f:d3:36:f1:91:
e6:c8:47:07:f3:5e:be:15:0c:a5:15:91:6f:86:f7:ac:ff:46:
e1:92:35:ba:73:68:96:91:6d:8c:38:45:23:d8:e6:97:eb:f2:
3d:92:66:ef:e2:39:f0:0e:cf:66:60:03:ec:45:09:69:47:91:
26:78:61:f9:1f:ae:6c:93:27:f2:a5:6d:1c:8f:17:c4:4c:e7:
62:5f:6e:bc:b3:67:ca:d0:1b:9e:50:6e:93:d9:f7:7b:ce:11:
d4:16:40:55:34:b5:0a:76:66:d5:d2:1f:c1:4e:c4:dc:60:15:
ef:21:e3:ce:4b:07:27:f3:0c:d9:24:99:17:54:09:3c:b5:b5:
d3:69:bb:dd:58:f5:c9:3d:63:f3:b7:f5:30:89:a3:72:60:b0:
e1:56:08:f8:1e:41:af:23:ee:0f:01:1a:0e:cf:24:53:52:df:
22:1f:3c:76:e7:b0:3a:ab:99:5b:82:b3:61:b3:10:c6:43:62:
b2:79:a5:83:6b:c4:f5:e6:33:ca:88:d7:fa:c1:40:0e:dc:93:
87:0b:7e:72:89:46:85:92:dc:8d:e6:eb:1f:5c:ba:0c:e6:f2:
2b:5b:b8:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:52:11 2025 by rpki-client