Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: paADILc5xJm3zHEP1k1lOrW6fAPkg9Se9mLFjQ4rdPk=
Subject key identifier: 8D:45:28:F5:18:4C:0D:58:8D:BB:E2:0B:53:8B:67:02:3F:6B:6D:78
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 019641E897830DF096066E42D0E896BCC50D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 029D
Signing time: Thu 17 Apr 2025 04:01:24 +0000
Manifest this update: Thu 17 Apr 2025 04:01:24 +0000
Manifest next update: Fri 18 Apr 2025 04:01:24 +0000
Files and hashes: 1: 1-K_h-bUSjpuq8AZEkNRzu6I7SIQ.roa (hash: NmB1wSq7b0ndUhgjm1rnnnwLFhH3O28HPyZCF7fvGcY=)
2: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=)
3: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=)
4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: oxuy43TgKzqEhBIr/26wEaCP9CbTjgauKPfRaMFRz0E=)
5: _NRuiaH4rITcKDBvJBfsltXgb0k.roa (hash: AZ8OzcR8BWD5gBfN+FKNavAS3ygzUESf9YOcCuXRnn4=)
6: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=)
7: ypFL40Xoi4y05qu3ogA3n6gvBmc.roa (hash: Osn8j8oSksWpQIeEIhv5U30zU1XAWvsewtWKW4S5v1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:e8:97:83:0d:f0:96:06:6e:42:d0:e8:96:bc:c5:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Apr 17 04:01:24 2025 GMT
Not After : Apr 18 04:01:24 2025 GMT
Subject: CN=8d4528f5184c0d588dbbe20b538b67023f6b6d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:44:73:c9:9e:4f:5e:58:a0:a7:fe:cc:05:39:
7a:a2:3b:51:08:d4:40:e0:33:8c:21:f3:1c:a0:1c:
12:1e:a2:88:a1:cd:33:db:c4:24:6c:08:89:48:ac:
65:7c:59:de:72:a7:97:bc:e0:75:a2:f0:a4:61:f3:
76:9e:a6:4a:90:54:0d:6d:3e:8d:52:d9:2a:fa:63:
fb:19:e1:19:08:4b:42:12:09:62:43:98:75:db:49:
b8:39:ca:25:e3:c9:77:17:da:ae:2c:0c:4d:b0:38:
26:49:12:ca:4f:af:c3:6b:ff:ce:92:a0:16:b7:ae:
46:cb:b9:4f:72:39:97:f4:15:90:b4:06:89:f2:b3:
8b:bb:80:4b:a1:55:1b:7f:14:24:d5:d7:66:b8:90:
6e:62:39:3b:12:ea:4a:41:99:19:4f:09:68:e6:81:
f3:1b:c2:48:b3:c8:12:bb:36:d1:d9:f4:c2:70:47:
1b:45:8e:c3:f0:bf:06:0f:07:91:c8:c8:cf:ed:a7:
61:77:0c:c4:2a:94:b6:b3:2b:ea:7b:87:f7:48:ba:
fd:b6:d0:71:3a:4b:40:87:28:71:55:5d:36:8e:67:
bb:ea:0f:41:8f:f2:4c:7b:97:20:94:48:b6:4e:88:
31:05:b1:b5:55:ad:34:46:9f:f8:2d:ee:45:08:65:
24:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:45:28:F5:18:4C:0D:58:8D:BB:E2:0B:53:8B:67:02:3F:6B:6D:78
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:01:7b:b4:18:ad:c0:60:70:d9:64:42:e1:f3:13:49:b0:61:
44:71:b9:b8:e7:62:5e:12:94:f5:bb:16:ce:d6:da:fe:8f:1e:
00:e2:86:2b:48:ed:c1:23:13:3b:90:a5:b7:0f:37:38:07:8a:
cc:01:47:2c:9e:b8:d0:67:de:18:5e:7a:74:a5:57:e3:87:f9:
61:31:cc:7b:ac:72:55:65:f1:f9:86:cc:a9:c9:f6:42:1f:6a:
ea:bc:60:86:cf:fd:b8:aa:2c:37:60:1d:79:55:bc:d5:8d:7e:
31:4d:cc:8f:b3:fb:9b:ae:e1:e1:8e:5d:d7:a9:02:29:02:5a:
c7:28:be:55:a9:55:84:99:18:53:6a:28:5a:71:bc:bb:6d:94:
45:fc:96:70:ee:f7:b3:40:32:4f:ab:9b:3a:8f:34:af:72:a7:
21:a9:6a:7c:84:26:d5:6d:84:fc:84:2d:49:72:17:33:2f:43:
03:be:96:a5:00:31:f2:8d:ae:5e:e8:36:88:da:fb:89:ce:7b:
b0:88:7a:33:ab:ac:1f:90:00:4d:10:36:ae:61:80:20:97:06:
48:88:01:98:c3:9c:fa:3e:d6:e9:19:a9:66:b7:b3:1f:a6:7f:
b2:19:4d:08:3c:b8:2d:3c:e1:3e:eb:18:5c:b7:f7:2f:46:a5:
b8:86:60:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:08:55 2025 by rpki-client