Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
File: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft (raw, json)
Hash identifier: rutWvioiJ9Tl2tw4JQ1YPm8IJWxjqID65HTDjvCPCHs=
Subject key identifier: 3E:E5:35:08:68:97:5A:62:C6:F0:03:14:91:72:35:B6:C9:E9:B2:D9
Authority key identifier: 91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
Certificate issuer: /CN=913836859c6ce1869340edf1f273709b8094d9d4
Certificate serial: 019664060521AE3124C3CA376EEBF62179D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
Manifest number: 146D
Signing time: Wed 23 Apr 2025 19:00:38 +0000
Manifest this update: Wed 23 Apr 2025 19:00:38 +0000
Manifest next update: Thu 24 Apr 2025 19:00:38 +0000
Files and hashes: 1: i0znYyDIsk78QzCDDCTg60lK9ig.roa (hash: aeDo1wq5VczgcfrDX0J+4eB6IcjwVsRwiJM6vkXROSk=)
2: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl (hash: 18jMup94LxPkZPmoAWWhmXsfCG5LT2GeK0uwhy1bckk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Apr 2025 19:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:64:06:05:21:ae:31:24:c3:ca:37:6e:eb:f6:21:79:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913836859c6ce1869340edf1f273709b8094d9d4
Validity
Not Before: Apr 23 19:00:38 2025 GMT
Not After : Apr 24 19:00:38 2025 GMT
Subject: CN=3ee5350868975a62c6f00314917235b6c9e9b2d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:59:ca:a4:38:05:df:fe:b0:ba:ff:01:b5:b7:
f9:cb:a9:ec:4f:8a:00:f9:22:9d:cc:77:90:cc:6f:
83:e7:93:a1:81:93:30:c4:9f:2a:45:21:67:0f:d2:
c8:8c:4e:ab:1e:87:53:5b:aa:e4:9f:3d:58:76:70:
bc:aa:27:fb:16:49:38:f5:56:a4:d0:48:65:01:8b:
c0:38:08:f1:27:bb:ee:75:ec:d0:11:f6:43:cf:af:
a0:2e:14:eb:a3:a0:3c:be:99:cc:be:e6:5d:b2:7f:
e4:c8:8f:d7:76:39:dc:f1:50:55:05:0b:a4:2e:b9:
55:29:e6:b8:80:5f:65:c8:34:de:e8:16:d8:9f:b4:
f6:3d:56:d5:90:11:15:27:7c:1b:c1:86:8e:c2:60:
9b:4e:c4:06:18:53:b2:67:d4:3a:25:32:c4:44:0b:
45:c6:86:90:c9:26:88:a4:d4:21:5b:98:98:b6:6b:
36:a3:ab:2d:a0:9c:28:37:2d:99:85:da:69:42:61:
1e:cf:ec:f1:d8:ce:8c:8e:ea:e2:d3:aa:8f:03:df:
b8:6e:7a:bd:81:d7:8c:6c:e4:fa:43:18:52:f1:d5:
a1:08:c6:39:7d:a2:28:72:d8:07:71:8c:ef:b2:5f:
5f:c2:71:73:8d:58:76:58:0e:d5:69:ba:3b:44:2b:
b4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E5:35:08:68:97:5A:62:C6:F0:03:14:91:72:35:B6:C9:E9:B2:D9
X509v3 Authority Key Identifier:
keyid:91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:78:f1:86:27:3e:fd:b3:e9:76:d3:d1:63:22:e9:52:44:d0:
6b:6a:d2:d7:9c:00:7d:b4:f2:89:5b:75:00:06:30:19:38:de:
88:fe:30:fd:fc:3c:60:3e:40:19:91:a8:6b:6d:6e:a7:ec:17:
33:a7:b4:b4:e3:0b:c1:9b:38:a1:d4:b3:7c:a7:ca:16:3e:68:
89:50:c8:c0:94:15:ba:bf:ce:82:a1:26:cf:4e:02:75:70:ef:
be:b8:c7:13:43:b4:99:47:a0:cd:42:da:17:f9:25:92:b3:7c:
f7:df:96:29:69:f1:fe:a1:ad:9e:ad:40:34:f1:5d:39:cd:c7:
07:da:f4:a0:8c:db:46:ab:01:f2:70:97:5f:f6:92:ad:e3:0f:
9e:c3:4e:03:d1:53:da:5e:85:2d:4e:3e:31:7d:f3:60:e2:05:
da:cd:0f:bc:e3:67:cb:e3:ab:4d:8a:21:1b:f8:be:4c:f3:6a:
43:e0:5f:52:63:c1:74:20:5c:4f:09:b6:e8:fa:e3:51:00:1b:
9b:06:e5:e2:d8:24:68:7a:de:38:64:47:ba:75:37:b2:76:be:
74:b6:4e:08:92:4f:bc:73:24:d9:7f:1f:ab:f7:50:42:92:26:
7a:e6:09:d8:6d:05:b3:f7:e8:8b:6a:ad:bf:2f:13:18:3c:38:
94:01:65:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 05:02:23 2025 by rpki-client