Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
File: _KrlFMX5lAORQ1YU15QEvuEgmzs.mft (raw, json)
Hash identifier: +PHkbFYGuME8sW9dlr6m+AZ0WiK4fDbBDHnzz1zuXw8=
Subject key identifier: 81:75:A5:0B:10:50:82:FE:4D:E9:8A:D1:57:E0:61:EB:D2:22:BD:32
Authority key identifier: FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
Certificate issuer: /CN=fcaae514c5f9940391435614d79404bee1209b3b
Certificate serial: 01965492934E441BE24005F861B4263CA992
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
Manifest number: 06A5
Signing time: Sun 20 Apr 2025 19:00:14 +0000
Manifest this update: Sun 20 Apr 2025 19:00:14 +0000
Manifest next update: Mon 21 Apr 2025 19:00:14 +0000
Files and hashes: 1: _KrlFMX5lAORQ1YU15QEvuEgmzs.crl (hash: w8NiIVFdt1IALQLpTFN7kW2HlOixfFhkaoIIldaRV7Q=)
2: x6k0RFp7Tx1S2sYvTKRUnwMB54o.roa (hash: Kj0Dd36Z9ZII60RmdvUVufyE+PZ0m6JPvwn/WhUbw7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 19:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:92:93:4e:44:1b:e2:40:05:f8:61:b4:26:3c:a9:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcaae514c5f9940391435614d79404bee1209b3b
Validity
Not Before: Apr 20 19:00:14 2025 GMT
Not After : Apr 21 19:00:14 2025 GMT
Subject: CN=8175a50b105082fe4de98ad157e061ebd222bd32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3e:a9:c9:39:13:fb:12:8b:1a:66:8a:2b:c0:
1d:a7:02:58:78:7d:2a:ba:4f:f0:b7:a1:0b:da:c6:
54:d4:fe:62:98:8e:b8:b9:3f:5a:dd:91:fb:bd:72:
e5:56:06:05:28:b3:37:aa:13:fc:fa:3e:2a:3c:f8:
76:23:9b:2a:e8:ca:cc:f0:50:c5:85:97:0c:cb:24:
02:6a:aa:a8:8e:52:1a:0a:5c:0a:d9:22:13:5c:6f:
77:27:a9:24:4e:34:ff:bc:11:04:29:0e:cb:ee:5b:
04:90:4d:a6:4b:5d:a6:07:5a:dd:81:74:af:65:e0:
3d:e2:d2:13:30:37:4a:ab:10:f6:1f:4d:eb:f5:a5:
0b:64:e0:bc:cf:b8:5f:4a:dc:b5:3e:0a:ea:4e:bd:
ec:8d:d2:9a:44:54:ec:a8:1d:40:69:ca:c6:49:b9:
3e:2f:c5:37:aa:64:b6:55:96:48:3f:e3:28:c9:7c:
54:88:7a:14:73:eb:06:6c:c4:af:7f:da:de:c3:7d:
82:43:be:ff:a0:eb:ac:b7:ef:fb:d9:74:ce:df:4d:
61:69:4c:64:9f:1a:09:4d:a4:d3:71:ad:ac:fb:69:
46:1f:4e:4c:26:3e:a0:bb:e6:5d:0e:d4:ae:48:93:
c5:0b:9d:92:16:9c:40:89:94:8a:25:51:ad:d1:cb:
a7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:75:A5:0B:10:50:82:FE:4D:E9:8A:D1:57:E0:61:EB:D2:22:BD:32
X509v3 Authority Key Identifier:
keyid:FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:6c:08:7c:e7:f3:8b:0c:66:4c:23:5b:22:d2:35:70:0e:d7:
61:87:37:98:69:72:7a:75:9b:84:a5:e0:70:04:8b:da:71:7c:
40:19:09:0f:ce:d0:e1:8b:93:ca:00:c4:a2:16:80:d3:81:e3:
80:51:b5:50:02:7c:f8:7d:81:a0:6e:f1:a5:58:ae:16:4f:67:
fc:84:5a:d2:17:d0:fd:15:b8:d6:d7:fc:09:03:54:ed:e2:29:
1e:09:ab:d4:95:39:a1:c1:55:1f:86:6d:e5:d8:7a:c9:5c:a2:
29:6f:80:9b:72:e2:14:c5:88:6e:95:97:74:8d:95:01:d5:42:
f4:06:35:fa:e3:59:24:93:d4:21:c3:ac:5c:21:bb:f0:07:49:
80:41:47:1b:4d:19:d1:71:55:01:d1:24:9d:80:b7:59:6e:aa:
c1:2a:06:70:74:dd:8e:d5:ab:9f:61:b1:c6:65:99:d9:cb:e5:
4f:c2:6e:ef:3b:46:ad:16:47:be:e1:e4:a1:e0:c5:0e:7f:24:
2d:d3:2f:08:c4:c9:96:ac:e9:ca:5f:66:f6:ca:59:97:af:0f:
b3:07:5d:61:ae:c8:6c:3e:b3:0f:fc:16:31:0b:3c:80:79:79:
c5:31:5c:26:41:1c:c0:d7:51:c7:0c:ce:06:fd:23:b5:f9:22:
e2:89:8f:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:03:47 2025 by rpki-client