Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
File: kGQm9IPDaqzahzIySriK1YAMmi0.mft (raw, json)
Hash identifier: FIHljfRazq+UqNbmT4KE86mXLYxd0rUo7HhJ3YqW6mk=
Subject key identifier: 2F:1E:EF:29:30:DE:3F:B9:41:18:EE:1C:51:BB:A0:83:E4:6E:AC:E6
Authority key identifier: 90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D
Certificate issuer: /CN=906426f483c36aacda8732324ab88ad5800c9a2d
Certificate serial: 019653B753D21BE3CF42197BDF213D6AFF25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
Manifest number: 0A20
Signing time: Sun 20 Apr 2025 15:00:45 +0000
Manifest this update: Sun 20 Apr 2025 15:00:45 +0000
Manifest next update: Mon 21 Apr 2025 15:00:45 +0000
Files and hashes: 1: gLZLrbhpO6mWtu79cX_I9beQtfY.roa (hash: FKC1b4NqDGusVuG1PsHV/OorcR6VfmcWdy6GLsbONNI=)
2: kGQm9IPDaqzahzIySriK1YAMmi0.crl (hash: RSISjM6Akwrt2zNYhVkhoOTm2R4Gijyz9BYC19//X2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 15:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b7:53:d2:1b:e3:cf:42:19:7b:df:21:3d:6a:ff:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=906426f483c36aacda8732324ab88ad5800c9a2d
Validity
Not Before: Apr 20 15:00:45 2025 GMT
Not After : Apr 21 15:00:45 2025 GMT
Subject: CN=2f1eef2930de3fb94118ee1c51bba083e46eace6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:85:ff:f9:34:d0:ed:68:5c:2a:bc:0d:8e:a8:
5c:de:5f:86:02:45:30:24:31:58:39:09:2f:75:30:
a1:8b:76:b5:6f:25:91:34:74:97:1f:48:26:7c:1e:
48:84:ec:1c:8b:37:13:9e:70:c3:32:fd:6e:ee:5a:
fc:b2:97:16:44:42:aa:5f:68:d2:d7:52:e2:59:93:
74:75:55:2e:9f:aa:67:0f:7d:b4:a1:39:05:80:c1:
61:b3:9b:22:4d:30:65:b2:4e:1e:50:1b:cd:5c:3d:
5b:66:f4:16:33:7e:13:ab:49:5a:43:cb:64:67:0e:
10:ef:b4:c7:af:e1:94:d2:f8:46:f3:17:92:98:a6:
57:1c:b7:b4:02:30:86:18:22:5c:b8:e8:8e:9c:7d:
39:d4:c5:be:ee:4e:0e:82:3a:46:de:38:5f:d5:0e:
bf:61:01:8e:d4:c0:43:27:3d:7e:c3:ad:72:75:a6:
46:9c:bb:ac:5f:65:cb:67:75:c5:6d:7a:ea:c6:66:
31:b6:0a:72:86:4c:6a:dc:48:16:63:fe:e1:42:b3:
c4:62:e5:ff:d2:97:94:8f:01:b0:3d:46:5d:20:f9:
46:be:e6:b6:13:09:3d:7f:e5:fe:6c:8b:b7:95:09:
a4:35:d4:dc:41:49:86:80:6a:af:cd:19:4c:70:f0:
82:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:1E:EF:29:30:DE:3F:B9:41:18:EE:1C:51:BB:A0:83:E4:6E:AC:E6
X509v3 Authority Key Identifier:
keyid:90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:c1:a7:f6:98:27:a6:be:b8:c5:1e:ed:09:75:13:52:fa:cd:
6d:49:ef:20:57:2d:1a:d9:fb:77:d3:d8:96:2d:fb:ae:8d:d7:
3b:49:e1:3f:ef:49:66:a1:3a:d5:7c:57:15:9b:1a:87:19:5d:
27:a7:c3:ba:35:43:72:d6:b6:b3:e4:00:cd:46:17:e4:88:1d:
9a:72:d3:ef:f4:3d:9e:ea:51:67:cf:bc:3c:65:67:55:95:0d:
29:8e:ad:f1:b5:d9:18:89:a2:98:06:36:11:13:22:40:b9:c6:
9a:4b:9c:6e:c8:83:54:29:8e:cc:58:62:9d:0b:f0:d9:3a:f6:
a3:5d:ac:6f:06:be:fc:b1:02:33:a2:56:7d:7d:51:13:a0:ce:
fa:2e:a4:ec:de:83:7c:06:e1:85:a1:fc:6d:2b:19:f8:e3:1d:
56:a5:f5:eb:f4:ea:54:0c:07:81:6a:0d:c8:b1:3e:29:37:9a:
71:f6:6b:c5:94:84:f9:6b:77:52:55:c9:46:b0:da:25:5f:50:
e4:53:d0:5a:0d:d5:a7:69:76:37:8b:9c:1f:cb:0e:d2:b5:81:
64:9c:9e:31:bb:bd:68:52:74:4e:f3:9b:cb:9a:48:8b:de:28:
39:c6:0a:09:2e:15:7b:b1:7c:51:a0:4b:40:c1:cc:90:47:8c:
87:8a:b9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:51:58 2025 by rpki-client