Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
File: Kq8k6REaiJ202uCH5ICeEIbjP4I.mft (raw, json)
Hash identifier: RwTeHxxFXaEA1mSw3i8gnsbeZTHnuNwmYdELzMWrD8s=
Subject key identifier: D4:17:22:1F:CD:8C:89:59:43:24:C2:53:B1:4D:CE:F5:9E:6A:66:54
Authority key identifier: 2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
Certificate issuer: /CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Certificate serial: 01964A46A9E314B94C02412D2153AD736E0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
Manifest number: 1454
Signing time: Fri 18 Apr 2025 19:01:07 +0000
Manifest this update: Fri 18 Apr 2025 19:01:07 +0000
Manifest next update: Sat 19 Apr 2025 19:01:07 +0000
Files and hashes: 1: 5sMxgmIczAQ4fn8JJ0_j3DrMjS0.roa (hash: VTfvZnzv8Q2Rd2Q6njhUyXmObqB+4ygm6Iue4TDP3ic=)
2: Kq8k6REaiJ202uCH5ICeEIbjP4I.crl (hash: 0Q1GjQ/d/itVl3/8kBny6YDcD3MVp5mQinqHMI8tvf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:46:a9:e3:14:b9:4c:02:41:2d:21:53:ad:73:6e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Validity
Not Before: Apr 18 19:01:07 2025 GMT
Not After : Apr 19 19:01:07 2025 GMT
Subject: CN=d417221fcd8c89594324c253b14dcef59e6a6654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:92:8b:04:7e:9a:07:e2:3b:94:8a:f4:80:b8:
c9:ae:dc:95:97:86:ab:96:dc:71:70:80:30:c7:10:
e3:65:70:98:ff:dd:43:33:b9:b2:dd:dd:29:86:21:
1d:ad:fb:f5:d8:7d:11:b9:c8:af:d6:bd:26:3c:7e:
7a:8b:e7:2f:ed:7b:94:62:1e:aa:bf:df:95:6a:28:
01:e8:d8:13:f1:04:a8:91:24:1d:67:1c:e8:ec:12:
e7:00:9a:35:8b:a0:dd:ac:53:e8:bf:46:22:24:cb:
d8:e2:6d:ad:68:f9:8d:09:14:4b:ac:c6:e8:4c:4b:
1d:54:89:f8:78:44:0d:9b:fd:a2:d5:85:c8:4f:47:
f6:39:39:1e:1a:19:a7:b7:3f:a2:e3:33:01:04:1c:
ea:99:52:ce:19:04:9c:d8:b5:d7:74:ec:34:7c:ea:
bc:b0:27:89:09:1b:99:3a:a9:c3:b2:5b:cf:10:87:
3a:ed:eb:ac:79:8f:45:ec:25:a2:3b:4e:f8:35:29:
c9:01:ea:ed:f0:99:b3:5c:49:b8:ce:8c:b4:67:58:
86:08:ed:ad:9a:44:db:04:73:2b:b5:e0:bb:06:39:
39:92:1f:3c:c2:4d:95:12:e3:f7:ee:e9:a4:4b:2e:
57:d4:90:19:95:38:b2:1c:f2:da:f3:20:4e:55:5c:
95:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:17:22:1F:CD:8C:89:59:43:24:C2:53:B1:4D:CE:F5:9E:6A:66:54
X509v3 Authority Key Identifier:
keyid:2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:3a:50:8a:8e:18:fc:ec:8b:a4:a6:e3:4e:98:d4:cb:24:32:
35:5b:bf:99:ec:c9:82:d2:47:3e:1a:7c:b5:2d:d4:28:9c:ae:
ba:72:b8:9f:60:c6:f3:ab:44:bd:13:26:c9:7e:d1:da:0f:35:
fd:fa:ff:73:30:17:aa:bf:80:57:73:c9:b2:cd:1c:04:42:b5:
b2:fb:e3:28:ef:58:8b:c5:3b:3a:3d:d7:53:c3:2c:4f:6b:e8:
37:6c:40:c3:f1:56:3b:2a:c6:0b:06:54:ec:47:19:cf:31:78:
dc:93:35:3d:07:91:6b:33:bf:88:18:40:53:9d:b0:9e:7b:4b:
8a:82:da:75:30:da:20:28:64:7f:67:51:24:78:3f:1b:8b:90:
a1:7b:09:4b:e8:f9:01:00:7d:d6:9e:4f:d8:ca:55:bd:9d:2e:
27:90:b3:a7:23:5a:dd:90:d1:6e:7e:b0:76:c1:21:e3:a5:00:
87:6b:01:34:bd:85:24:ba:c2:e8:44:9b:8e:22:86:17:76:24:
1d:36:5c:d3:4d:d0:1a:e2:45:af:cc:70:0c:5e:cf:b9:10:17:
61:ef:a3:c0:98:dc:f1:79:d6:8d:3d:06:8a:b3:50:ef:02:7a:
a2:fa:1e:ec:85:e4:27:18:72:cb:ae:e5:1a:e5:e2:26:89:1a:
eb:8f:f7:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:49:32 2025 by rpki-client