Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
File: KqPjBJdiCGjhestHhoLOegvRNTQ.mft (raw, json)
Hash identifier: PqEy8iCmjPcCAh/32+JL9iq0TTfHpXhCRGU4OCyMNKE=
Subject key identifier: 51:F1:86:A3:F9:B1:C8:7E:8C:F6:DE:C6:C1:78:3E:FF:63:78:98:CF
Authority key identifier: 2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
Certificate issuer: /CN=2aa3e30497620868e17acb478682ce7a0bd13534
Certificate serial: 019651C8F6C8DC27217787B14316B5AD15C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
Manifest number: 14FB
Signing time: Sun 20 Apr 2025 06:00:46 +0000
Manifest this update: Sun 20 Apr 2025 06:00:46 +0000
Manifest next update: Mon 21 Apr 2025 06:00:46 +0000
Files and hashes: 1: KqPjBJdiCGjhestHhoLOegvRNTQ.crl (hash: ON9GeyEdWU5Oh/giAHQ+Cm5CN3DnHxv67MmRNG3sVKA=)
2: _F5YjzIp4N7IiS5lXnJMJsPMLEU.roa (hash: HX+68oJeKBQGUaK3TL3s9cs53fsCINCeh8CnxLw+JsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:f6:c8:dc:27:21:77:87:b1:43:16:b5:ad:15:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa3e30497620868e17acb478682ce7a0bd13534
Validity
Not Before: Apr 20 06:00:46 2025 GMT
Not After : Apr 21 06:00:46 2025 GMT
Subject: CN=51f186a3f9b1c87e8cf6dec6c1783eff637898cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:c0:2f:8b:c9:e2:00:34:6d:9b:04:d3:6d:de:
f6:bf:6a:5a:a1:e6:b3:95:59:46:cf:fe:42:88:48:
34:42:94:74:5c:4b:8c:e9:0a:ea:91:5e:05:42:1a:
58:8f:80:ea:eb:d3:6d:f3:74:39:d3:fe:2c:f4:6d:
53:aa:78:a7:01:71:e8:87:f1:70:8a:b3:c7:ae:09:
76:bb:2b:41:8a:da:1d:ca:ac:25:52:d8:88:d4:01:
06:ef:23:6f:4f:9d:63:24:6a:46:39:8a:f8:08:f7:
22:d2:2a:3e:cc:c8:b4:68:af:91:65:89:66:4a:e9:
f0:7b:62:0d:b7:be:51:77:6e:f9:67:87:a4:07:5c:
fe:f5:de:4d:b6:cc:c2:f2:97:72:a8:83:7e:35:29:
41:ee:7a:2c:b3:c6:18:25:8c:2f:54:24:40:b3:e7:
24:ff:dd:db:94:f9:8b:ee:38:43:db:c4:e9:25:cd:
23:ee:ff:ff:81:51:fb:34:72:fd:c8:ff:c8:ca:cf:
78:3b:d2:2b:64:b2:36:67:b8:78:64:d0:d9:7c:e4:
d2:6d:45:bd:93:cc:24:d1:af:7f:09:4d:b8:15:99:
e0:d4:46:dc:ce:ba:d1:d0:82:f9:a4:66:f6:aa:5f:
cc:a5:3c:cb:9e:50:de:54:eb:d9:c4:0b:3b:32:a7:
b9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F1:86:A3:F9:B1:C8:7E:8C:F6:DE:C6:C1:78:3E:FF:63:78:98:CF
X509v3 Authority Key Identifier:
keyid:2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:57:e3:de:06:ee:99:97:85:21:15:5a:24:1e:45:03:83:83:
81:09:6a:ab:8a:b1:ad:e1:f7:6a:0b:db:ba:6f:96:bd:79:5c:
e6:f5:f1:57:45:32:ad:10:90:d4:9a:a1:c8:6c:04:dc:ea:74:
6d:4f:6b:69:f2:36:de:0a:c9:1f:97:a0:28:79:05:17:1b:64:
a9:b5:4e:92:6e:f5:d1:2b:41:5b:8c:5d:12:13:35:e5:5c:20:
0f:57:2e:76:34:1e:92:1b:a4:54:63:bc:3f:07:d8:d6:19:2f:
45:51:b7:bd:5e:fc:85:34:cb:32:30:e2:30:47:54:b9:c1:b2:
b9:dc:29:4a:f5:21:33:35:06:3e:18:d2:82:13:11:44:b4:68:
bd:72:c0:5c:f2:d9:64:1c:af:6a:26:97:fe:82:19:56:76:97:
41:74:60:ee:60:33:ec:61:20:8a:6a:9b:32:c5:ab:59:52:05:
80:1f:f4:4d:a5:23:5b:d7:63:ae:35:39:25:c5:41:3f:87:fd:
ac:3b:07:18:0a:5e:43:d8:cd:2d:0e:69:81:94:7f:af:52:bf:
06:2d:1b:65:9f:fc:46:db:74:6d:f5:c9:0d:ca:50:cb:1b:a6:
de:32:af:f9:95:50:a5:7b:55:89:b3:b7:7a:6e:76:08:69:37:
61:40:e1:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:38:39 2025 by rpki-client