Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/dab6ae-dba8-4b28-9c8f-b248cfa96a69/1/kFoQkzbeiXEuJJyYRsnbsbPJjH4.mft
File: kFoQkzbeiXEuJJyYRsnbsbPJjH4.mft (raw, json)
Hash identifier: /drflsiy9Z81COLnsfGXwGkd8NcClUUm3qmhe8iIbQA=
Subject key identifier: 7F:FA:66:59:91:DF:CA:B6:5E:80:6D:0A:21:8D:6B:D1:36:CA:18:2F
Authority key identifier: 90:5A:10:93:36:DE:89:71:2E:24:9C:98:46:C9:DB:B1:B3:C9:8C:7E
Certificate issuer: /CN=905a109336de89712e249c9846c9dbb1b3c98c7e
Certificate serial: 0196549342939DCB05170BBC5AFF00B3AE78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kFoQkzbeiXEuJJyYRsnbsbPJjH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/dab6ae-dba8-4b28-9c8f-b248cfa96a69/1/kFoQkzbeiXEuJJyYRsnbsbPJjH4.mft
Manifest number: 055D
Signing time: Sun 20 Apr 2025 19:00:59 +0000
Manifest this update: Sun 20 Apr 2025 19:00:59 +0000
Manifest next update: Mon 21 Apr 2025 19:00:59 +0000
Files and hashes: 1: KC67bUzfDKSrHmCB6UUpuneAEt0.roa (hash: kjD/C1Ln2i2diMcFsx9dGCTAO1I1ywN8NGufWziFBfg=)
2: kFoQkzbeiXEuJJyYRsnbsbPJjH4.crl (hash: w7WR9mxPTmw4hSgbTczCrwsrEpyMzfLgflVufhXv4UU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/dab6ae-dba8-4b28-9c8f-b248cfa96a69/1/kFoQkzbeiXEuJJyYRsnbsbPJjH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/dab6ae-dba8-4b28-9c8f-b248cfa96a69/1/kFoQkzbeiXEuJJyYRsnbsbPJjH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kFoQkzbeiXEuJJyYRsnbsbPJjH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:93:42:93:9d:cb:05:17:0b:bc:5a:ff:00:b3:ae:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=905a109336de89712e249c9846c9dbb1b3c98c7e
Validity
Not Before: Apr 20 19:00:59 2025 GMT
Not After : Apr 21 19:00:59 2025 GMT
Subject: CN=7ffa665991dfcab65e806d0a218d6bd136ca182f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:64:6c:a5:83:10:d8:d0:df:45:da:fa:6d:cc:
a1:18:51:89:0d:30:79:db:05:e6:5f:6c:25:d2:77:
1b:ae:d3:a7:d7:df:dc:de:7e:76:7e:57:f2:c0:47:
c5:7f:d5:d2:f9:d2:a4:64:78:a3:02:ec:7a:48:3e:
4c:7d:6c:b9:46:70:c3:d5:fc:b1:01:fd:f5:a7:00:
ed:c7:d1:e3:9f:61:be:3b:77:8f:c2:93:7e:e9:cb:
c5:49:0f:b8:48:97:a8:5f:ca:ef:74:29:8c:8c:cb:
02:a7:3c:38:d4:c4:f0:8d:84:bf:33:d3:61:af:3d:
51:20:14:92:f1:5d:d2:ea:e6:97:7f:37:d1:6d:c4:
c8:78:84:0d:64:c2:ef:f4:97:8f:da:8f:3f:d3:13:
ea:1d:1d:5b:ba:07:09:35:6f:06:c1:f3:93:a7:90:
c1:cd:44:56:1f:be:af:57:1f:28:9f:b8:66:b6:61:
f2:c0:27:5c:f9:1b:7b:67:c2:15:19:b6:39:58:ed:
c4:71:b6:ba:a2:37:08:a5:af:2a:01:a4:0f:02:3f:
6b:f5:13:e3:d5:ef:ff:b8:cc:ff:a0:1d:1b:3a:b7:
d5:f8:1d:37:89:f8:e1:0c:d6:28:a8:12:e6:49:88:
56:96:2a:8e:65:36:94:35:d5:6b:dd:9f:bb:7d:da:
24:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FA:66:59:91:DF:CA:B6:5E:80:6D:0A:21:8D:6B:D1:36:CA:18:2F
X509v3 Authority Key Identifier:
keyid:90:5A:10:93:36:DE:89:71:2E:24:9C:98:46:C9:DB:B1:B3:C9:8C:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kFoQkzbeiXEuJJyYRsnbsbPJjH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/dab6ae-dba8-4b28-9c8f-b248cfa96a69/1/kFoQkzbeiXEuJJyYRsnbsbPJjH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/dab6ae-dba8-4b28-9c8f-b248cfa96a69/1/kFoQkzbeiXEuJJyYRsnbsbPJjH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:06:91:c0:cf:72:14:79:fb:fe:f1:b9:e1:e9:7e:b2:0a:26:
03:c8:ac:b5:ec:84:da:e1:f1:60:00:45:8e:30:47:43:2b:f7:
f9:63:a5:f2:be:da:d5:d1:73:70:bf:eb:32:47:a3:2b:b5:fd:
a1:9c:8a:e2:0c:bf:30:8c:9f:9f:fe:d0:3a:3b:f6:f5:86:df:
9c:9b:8f:5b:f4:cf:dc:da:15:21:80:af:9c:03:d9:5c:d1:0e:
d6:a1:22:12:d4:3b:db:26:7a:a7:4b:e9:1f:7e:66:07:f7:58:
f6:e1:3f:48:03:f7:5e:37:af:37:d6:fc:b4:7d:09:df:0c:55:
ae:00:06:01:dc:72:17:a2:b0:7b:13:1b:2a:b1:9b:74:c3:57:
00:a3:5c:4d:de:dd:a1:d8:f0:ae:07:ac:53:26:09:0a:3a:a0:
f7:9a:14:1b:d1:de:75:16:93:be:62:6c:7c:64:2c:e0:7e:64:
dc:aa:71:91:ae:64:16:e1:1d:7c:29:b9:7c:d0:9f:5d:dc:fb:
3c:45:d7:49:98:a5:5f:54:44:78:a0:69:fa:f9:95:fc:fd:10:
ce:75:41:2c:4b:f0:d2:4a:98:c0:18:90:63:ac:39:a7:7a:81:
2d:43:2e:a0:92:95:54:af:1e:49:75:ae:69:e7:4f:63:f8:2a:
df:5d:49:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:19:05 2025 by rpki-client