Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: DXlxihduNVkhg2Ai4Bi7wMCsQ47YRIthEjwBOnYjqCo=
Subject key identifier: 7C:EA:0C:81:F3:11:F6:4E:D1:EF:3B:56:C7:7D:07:2E:53:F9:37:18
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 0195121080AC93F05E3DB8CA7B2B39A16872
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 1458
Signing time: Mon 17 Feb 2025 04:00:26 +0000
Manifest this update: Mon 17 Feb 2025 04:00:26 +0000
Manifest next update: Tue 18 Feb 2025 04:00:26 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: 2sW198y4ttsZd23xZsxlJ5nrLvQCqTDXSxNa3LSv8AM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:80:ac:93:f0:5e:3d:b8:ca:7b:2b:39:a1:68:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Feb 17 04:00:26 2025 GMT
Not After : Feb 18 04:00:26 2025 GMT
Subject: CN=7cea0c81f311f64ed1ef3b56c77d072e53f93718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ae:3d:85:63:cb:ff:01:1c:77:5b:f7:1d:e4:
fe:41:c3:b0:3b:4b:62:48:10:62:b9:9e:80:89:51:
bb:15:55:26:96:6b:0c:f5:3f:c5:f4:ca:17:7c:b6:
e7:e0:28:b9:c9:6d:0a:d5:20:99:8f:d5:b2:26:ad:
6f:6b:8b:a5:d4:f6:1d:29:40:0c:3d:85:8a:c6:d4:
fa:dc:d2:c6:1c:85:b6:52:04:73:00:89:77:be:c3:
38:ed:59:bd:47:7c:27:09:af:93:15:c8:83:80:25:
59:e0:4c:31:7d:46:83:ab:a1:76:af:3f:21:58:4a:
52:95:23:e0:55:e3:6f:e5:b3:48:b7:9f:2e:34:97:
ef:82:3b:0b:04:59:16:9e:60:5d:b1:db:50:aa:15:
eb:84:db:4c:35:d0:a1:6e:ba:16:31:c5:3c:65:4f:
d8:39:86:1c:85:c4:dd:ea:44:1b:b8:e6:65:0e:41:
b4:a7:73:64:4e:44:e2:d2:10:0a:8c:9d:00:f4:2c:
97:5c:48:0c:92:3e:ca:ae:75:aa:04:26:0a:76:e5:
f3:f2:cb:cb:84:57:63:d9:9d:02:07:64:25:14:bb:
7f:cb:18:4d:9c:48:0f:ae:c8:2d:e5:ad:4a:27:3f:
42:bc:45:82:7a:9d:35:ac:85:67:8d:38:9b:92:5c:
85:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:EA:0C:81:F3:11:F6:4E:D1:EF:3B:56:C7:7D:07:2E:53:F9:37:18
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:fa:19:0a:27:0d:6d:97:13:ca:a5:3f:44:ca:0a:1c:93:b9:
05:2a:a5:7c:14:f8:72:7f:e8:d3:d7:da:d9:6d:b7:0e:d9:96:
04:6f:38:90:e1:76:32:03:27:f6:2b:a8:cc:03:7e:c4:a1:0d:
85:56:6f:53:3d:b0:3e:f9:c7:af:d9:0e:48:55:34:9b:2c:8a:
2f:8f:aa:0a:fe:3c:65:8b:08:79:8a:f4:4e:14:af:ad:43:45:
9c:46:a2:d0:c5:97:a2:23:a1:ea:63:a0:28:c7:84:9d:53:d4:
bf:49:e8:3f:16:3d:2f:df:fc:92:47:91:a5:80:38:a4:1d:c9:
b3:2c:61:84:90:db:d6:25:2b:7d:4c:01:36:5e:c2:58:94:ce:
f2:96:13:89:26:6e:30:f6:8f:d8:32:22:b9:93:db:30:7f:39:
f8:78:62:b9:cf:89:0e:cd:13:c7:a7:78:10:73:c6:dd:30:68:
4a:be:28:92:b1:be:c5:7f:44:b0:57:1c:8d:77:76:67:ff:c2:
be:0a:09:aa:4f:17:cd:86:02:8d:12:70:0f:bd:05:35:b6:37:
0f:95:85:3c:4d:ab:5e:f7:72:0a:ac:22:d1:e6:10:09:9c:ba:
06:b2:20:2e:29:75:fd:2a:cf:91:58:8c:c7:76:0c:7c:cf:ce:
28:8e:7a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:55 2025 by rpki-client