Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
File: KfFNQRwg7PxJYhX82w9D2EchkJY.mft (raw, json)
Hash identifier: /X1ST0yv0WsDRdxtXkbWDkxHrMdoZjQMHVbDBtSkF0Q=
Subject key identifier: 15:28:D3:ED:46:32:C3:19:AD:16:24:42:09:C7:89:1A:22:B7:89:A6
Authority key identifier: 29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
Certificate issuer: /CN=29f14d411c20ecfc496215fcdb0f43d847219096
Certificate serial: 0196327641DAD5B90039C56F0C9E0C4999AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
Manifest number: 117F
Signing time: Mon 14 Apr 2025 04:02:12 +0000
Manifest this update: Mon 14 Apr 2025 04:02:12 +0000
Manifest next update: Tue 15 Apr 2025 04:02:12 +0000
Files and hashes: 1: K3k_GCXnaMv59dLKq-rHfPOR6HE.roa (hash: 5Q6jyJMRb9gad/mJLct+/fYWsLJ0GiEE1wJJESuoLsM=)
2: KfFNQRwg7PxJYhX82w9D2EchkJY.crl (hash: F08SvoRBgx26FEyxXheh6dA11DQ9U6Czd6VFUij7IFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 02:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:32:76:41:da:d5:b9:00:39:c5:6f:0c:9e:0c:49:99:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f14d411c20ecfc496215fcdb0f43d847219096
Validity
Not Before: Apr 14 04:02:12 2025 GMT
Not After : Apr 15 04:02:12 2025 GMT
Subject: CN=1528d3ed4632c319ad16244209c7891a22b789a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:03:b6:22:d8:98:3d:cf:88:75:20:41:0a:2c:
53:28:c4:4a:6e:06:e9:d0:49:08:85:e2:73:28:d7:
e5:43:44:cf:fa:98:65:9c:a9:4b:4b:59:bb:fc:5c:
ff:33:b9:90:b8:62:aa:cf:1d:05:96:39:79:24:32:
b1:3d:12:4d:89:70:21:4d:31:77:12:2e:68:15:39:
b4:c4:f1:3b:a0:70:34:22:88:c5:49:d6:54:97:66:
ad:93:c2:2d:a6:de:77:b4:0c:35:ca:e8:f7:b1:84:
a1:2c:7b:6a:f9:ea:59:aa:b4:a2:ae:53:dc:ca:e3:
0f:0f:7a:53:2f:7e:53:c2:90:e9:66:b0:f5:6e:a8:
a6:cd:86:19:e6:6f:e8:c3:f7:f3:b9:b1:42:ab:2f:
45:22:e4:8a:1b:9d:9d:47:92:a9:21:7f:ed:de:f9:
0f:44:37:ae:ce:3b:8b:46:fe:98:68:eb:4e:28:01:
ac:4c:4a:74:8e:ac:4c:a8:e5:bf:c3:97:a0:0e:e1:
7b:dc:cc:31:0b:ca:d6:7e:c0:01:d9:9f:18:ff:6b:
7c:6b:13:a3:83:cc:d8:be:59:c6:e7:2c:65:6f:a9:
36:10:f2:68:9c:24:b7:9f:13:7b:75:56:ee:8e:ff:
94:bd:64:84:60:ec:5c:54:ba:0f:74:24:2e:97:7a:
eb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:28:D3:ED:46:32:C3:19:AD:16:24:42:09:C7:89:1A:22:B7:89:A6
X509v3 Authority Key Identifier:
keyid:29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:50:bd:6c:25:4e:ed:cc:45:16:b4:39:a9:92:cf:aa:3f:fc:
a3:a5:b2:7e:38:8d:9e:f6:13:2c:39:c3:7c:46:55:b0:2a:67:
4b:1e:e1:97:ff:d0:5b:71:47:2b:9c:df:59:3b:93:e1:5a:a5:
07:f2:03:9e:08:d4:f5:f8:ac:00:51:d4:44:13:0a:00:99:18:
ea:be:f8:88:93:41:9f:cf:32:34:87:4e:82:90:b1:b3:8d:8d:
f1:cd:4e:7e:a5:44:b4:88:ae:b8:49:0f:08:e9:00:0e:5a:b3:
86:92:fb:35:88:ef:b6:d6:f1:80:56:77:00:2c:15:4e:da:01:
3c:a8:17:48:c0:9d:e9:39:39:10:77:b0:66:9c:7f:2f:5e:ac:
24:e6:97:4a:1f:74:00:0f:f8:fa:54:e7:b1:18:49:40:bd:0b:
19:1a:d8:3e:f0:01:99:91:33:49:e3:4d:0d:7f:64:3b:2f:17:
de:53:cd:42:f1:57:7a:64:16:15:b0:9d:25:0c:22:85:1a:18:
ba:55:72:22:77:86:34:63:ce:5a:47:9a:da:94:d6:92:f7:71:
ef:80:9a:e0:ff:08:2d:e3:51:f5:b2:3f:d9:76:b0:7e:a4:d6:
3f:f5:bc:13:54:d6:bd:92:8e:c4:3c:91:8d:b4:79:20:c2:e4:
88:71:0e:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:32:28 2025 by rpki-client