Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
File: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft (raw, json)
Hash identifier: 2LhUKwYdHqqZEFFJuxG33m4EJrnNw+eGFzAxDHW+H0c=
Subject key identifier: 9A:1B:C0:11:58:96:3A:46:58:FE:50:7C:AB:B8:8F:25:ED:25:33:D2
Authority key identifier: 28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67
Certificate issuer: /CN=2858d2f131715cbaf3cdd920645924f53508e067
Certificate serial: 01964D47645EFC42A4673B9C1E25AE21AD28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
Manifest number: 0999
Signing time: Sat 19 Apr 2025 09:00:46 +0000
Manifest this update: Sat 19 Apr 2025 09:00:46 +0000
Manifest next update: Sun 20 Apr 2025 09:00:46 +0000
Files and hashes: 1: Gxa8ZTehusQ__zJKE-EIDPUx7f0.roa (hash: D3bg8s9LSpHww0XiOamb2fTNkB0scUvbSEDIBYdOll4=)
2: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl (hash: q8lRNKlg3K1QIJs97EOkotSonzGCHIC31c1/QJKeOxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:47:64:5e:fc:42:a4:67:3b:9c:1e:25:ae:21:ad:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2858d2f131715cbaf3cdd920645924f53508e067
Validity
Not Before: Apr 19 09:00:46 2025 GMT
Not After : Apr 20 09:00:46 2025 GMT
Subject: CN=9a1bc01158963a4658fe507cabb88f25ed2533d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a8:3b:6c:93:d9:b0:97:a9:33:73:34:58:0e:
0e:0d:42:01:1e:7a:43:4b:6c:8f:59:9b:d9:ff:5f:
db:e1:f9:56:11:67:90:ca:9b:66:0f:c8:a2:27:bd:
35:4b:28:6c:e6:79:f5:fa:d4:e8:64:7d:83:b9:b4:
fa:66:e3:fa:f4:0e:5f:28:2a:13:1f:39:b1:91:db:
8e:ad:e7:3c:56:75:6f:5f:a1:18:3b:29:3c:3e:4b:
17:10:4a:ac:f2:ea:fe:0b:b6:1b:3b:2c:78:60:63:
32:4e:1e:6d:75:b2:e8:17:79:a7:8b:3b:f5:01:f0:
74:2b:d4:e4:36:cb:69:70:36:fd:b5:03:61:45:1b:
5d:83:ea:df:19:c0:59:64:c4:e4:e0:40:60:65:bf:
69:aa:00:8b:61:5a:00:c3:18:3c:94:54:b6:95:df:
aa:f1:94:4c:80:0c:d2:14:b3:05:87:77:b9:98:48:
fb:8a:9c:d7:03:b7:a2:66:f7:43:c9:f8:33:d6:89:
71:ca:4e:f3:45:ca:d8:b7:f8:fd:49:9e:92:11:8a:
7f:2c:12:6d:87:5e:65:ba:13:d1:a1:ed:e4:29:94:
3b:52:e2:cc:fb:04:ae:68:69:44:ca:1c:cb:e9:6c:
35:02:fa:91:eb:27:ea:2b:6f:95:cb:e2:03:38:19:
d2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1B:C0:11:58:96:3A:46:58:FE:50:7C:AB:B8:8F:25:ED:25:33:D2
X509v3 Authority Key Identifier:
keyid:28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:7a:56:e4:3e:da:43:05:c6:5a:9b:fd:8e:80:62:12:eb:cb:
d0:88:2f:21:c8:9a:bd:11:c4:91:4d:99:1b:f4:72:aa:9d:cf:
c7:e7:cf:04:04:16:67:81:42:99:bb:6c:37:4a:9f:c4:6b:4f:
c9:48:88:12:d4:98:8c:51:c0:db:df:61:3c:10:96:dc:06:b7:
9a:e2:37:7a:4e:06:bc:2a:2e:f3:ed:ee:8a:9c:22:e2:df:3a:
f0:95:eb:36:f4:9a:86:c1:35:57:cc:0c:55:fc:05:3c:8a:3b:
44:89:8b:c5:2c:db:9b:63:c3:7a:b3:38:3c:09:23:5e:6e:27:
0a:83:0b:24:ca:46:b8:43:95:e5:7e:ec:db:d3:7b:40:f3:25:
e8:7d:53:ad:61:5f:35:88:45:8e:1c:48:32:53:c8:92:62:36:
f0:79:2c:06:e2:c0:62:e2:fc:bd:7a:33:29:45:3f:e2:eb:5a:
07:01:23:fd:8a:d9:43:54:b9:78:d0:72:f9:d2:3a:60:fa:7e:
72:44:4a:34:b6:4f:39:11:57:31:f3:57:f3:8c:d8:c2:f3:09:
9e:43:72:e5:73:4e:fc:dd:7a:f8:58:92:da:d9:11:6e:b3:25:
92:0f:2c:19:1c:cf:1d:4c:f7:4a:46:8c:2d:6f:bf:3b:1e:ce:
49:d5:17:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:12:08 2025 by rpki-client