Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
File: KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft (raw, json)
Hash identifier: GLEZERK7Qes5o4mUNzk+YXKAshCAk2Ki6uAfqwLZ6hc=
Subject key identifier: 2F:26:EF:54:A5:51:D7:01:2F:58:14:88:A9:14:38:93:CC:63:44:A2
Authority key identifier: 28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
Certificate issuer: /CN=28c2202a443537fb8fb280567a17485f1230c411
Certificate serial: 01965191AFD86984B5211B688DAD0C129485
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 05:00:24 +0000
Manifest this update: Sun 20 Apr 2025 05:00:24 +0000
Manifest next update: Mon 21 Apr 2025 05:00:24 +0000
Files and hashes: 1: KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl (hash: bdAPBD86DLbXr+9k48uuUNRMk0TUIPKQfISoBSbXJ/s=)
2: rzOkydR3EHFZXD3XEkRebB02-_4.roa (hash: df7jTqxQL8Sw059sbRTkyG9ltt5KtHFaW+BfP29wPTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:91:af:d8:69:84:b5:21:1b:68:8d:ad:0c:12:94:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c2202a443537fb8fb280567a17485f1230c411
Validity
Not Before: Apr 20 05:00:24 2025 GMT
Not After : Apr 21 05:00:24 2025 GMT
Subject: CN=2f26ef54a551d7012f581488a9143893cc6344a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f4:4b:17:68:f7:f8:76:ba:7c:6d:72:43:dd:
6b:cc:e4:54:cc:10:cd:c4:c3:da:f9:60:cc:ef:1c:
8c:5c:4b:1f:2e:a9:15:89:0f:ed:43:6e:e1:26:e8:
c2:9c:70:f2:b9:a4:92:47:39:46:86:41:ba:84:e3:
9b:69:01:88:8b:10:09:8d:d4:54:dc:a5:ce:06:79:
e6:4c:42:10:12:ba:00:f8:a7:24:4f:1c:c5:20:c3:
4c:b0:58:98:69:97:bd:44:13:c2:6b:2b:7d:69:9f:
7f:da:80:dd:10:2b:eb:f9:ec:27:f5:90:1f:f6:4f:
b4:ba:66:24:68:1c:f6:2e:94:fb:6f:4c:8d:c8:05:
92:b8:37:7d:79:33:17:25:2c:ed:fc:2b:09:69:26:
69:43:1d:62:d3:d9:a9:f9:d0:97:48:aa:86:66:7f:
68:e3:69:e7:0c:e6:6e:38:04:c7:e0:f3:ae:68:b7:
dc:d9:ca:c5:c2:19:df:4e:f5:84:58:c1:a6:48:f0:
8f:37:00:0a:5f:b9:3c:54:51:01:6e:fb:a2:5d:86:
5f:00:4a:ee:73:d2:71:c9:98:7e:a4:e3:73:9e:e6:
4e:7a:7e:b8:d8:e9:6f:12:da:6e:80:50:66:4b:a8:
fe:37:1c:13:c8:06:ef:d6:13:67:b2:3a:42:46:25:
c6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:26:EF:54:A5:51:D7:01:2F:58:14:88:A9:14:38:93:CC:63:44:A2
X509v3 Authority Key Identifier:
keyid:28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:6d:52:86:44:88:ea:b2:e6:42:3e:45:44:c2:d8:ad:ec:3a:
58:22:48:fc:6c:49:da:15:ce:26:0a:53:fc:d1:73:92:7c:d5:
3a:37:97:54:2e:08:48:d0:d5:cd:f4:88:a8:24:80:ab:d0:4d:
df:74:02:60:85:e4:85:e4:6c:65:e9:29:b3:c0:1a:75:b9:73:
fb:17:c7:51:ec:a0:05:81:71:0e:58:bd:98:71:d4:b3:20:ed:
0c:17:f8:ad:ac:b0:4b:17:80:22:06:62:6b:20:dd:2b:d1:ea:
bd:e3:ca:8a:79:be:c4:14:2e:13:c5:c4:29:f7:37:47:62:d2:
73:73:d0:e4:5f:cc:56:c2:7c:91:bb:82:79:a1:83:27:27:05:
cc:7b:79:5c:ce:3b:bf:68:a3:a7:d6:a5:5c:65:a9:fe:83:a3:
dd:1c:a7:4b:74:1b:13:4f:04:92:11:81:6f:1a:ab:55:bd:31:
36:ee:0e:58:15:95:97:0f:68:4e:e1:c6:35:5e:90:04:f1:9c:
5a:b9:99:0e:d7:54:3f:23:e4:60:04:11:f7:fc:7c:55:a5:fd:
61:6a:f4:62:e4:01:e6:2a:79:87:5f:63:8e:37:65:1c:e3:38:
50:30:b6:f9:13:0a:7d:c5:9e:7e:0a:c2:a2:90:ed:05:94:6d:
c7:f3:a2:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:18:06 2025 by rpki-client