Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
File: KqFL_4NIDRDND767gLLLUJH8-C8.mft (raw, json)
Hash identifier: fBjTpoyiBPt8inWKAnNYLD3uwn+EeA/jzvVa+SMvvOs=
Subject key identifier: 8C:2C:33:02:93:04:B5:75:10:38:42:F1:5F:D8:33:51:5D:44:08:FC
Authority key identifier: 2A:A1:4B:FF:83:48:0D:10:CD:0F:BE:BB:80:B2:CB:50:91:FC:F8:2F
Certificate issuer: /CN=2aa14bff83480d10cd0fbebb80b2cb5091fcf82f
Certificate serial: 0196451FEF9EDD9AF50083889BF7B38D5741
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
Manifest number: 14F4
Signing time: Thu 17 Apr 2025 19:00:42 +0000
Manifest this update: Thu 17 Apr 2025 19:00:42 +0000
Manifest next update: Fri 18 Apr 2025 19:00:42 +0000
Files and hashes: 1: 0zY-sGp0Ft0AM9Sf-NYlNdybUWg.roa (hash: eX1zp0GC5bqV6hOy4nxEisONQ8sH8x4mX06jY0ZL3fw=)
2: KqFL_4NIDRDND767gLLLUJH8-C8.crl (hash: SmHGzQzezA7SlEH8MmuPUEYPiFiWCRC8QLoU88+ggAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:1f:ef:9e:dd:9a:f5:00:83:88:9b:f7:b3:8d:57:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa14bff83480d10cd0fbebb80b2cb5091fcf82f
Validity
Not Before: Apr 17 19:00:42 2025 GMT
Not After : Apr 18 19:00:42 2025 GMT
Subject: CN=8c2c33029304b575103842f15fd833515d4408fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:22:ff:95:9e:6b:43:62:3e:11:0c:78:ea:5d:
7c:96:c6:f2:57:c0:65:03:03:52:92:33:a1:92:13:
f4:85:83:51:7b:b3:f7:2c:9d:bb:26:1b:c3:1d:da:
14:fe:67:d6:3d:ff:4c:d8:af:7a:21:59:7e:d6:3d:
aa:f3:cc:32:e9:21:70:ec:ee:bb:e7:e9:11:ef:b6:
36:a7:55:48:00:c1:06:60:dd:20:14:ee:27:40:64:
b6:f9:f5:74:18:f6:aa:28:6b:fa:89:ce:fb:61:27:
8c:3a:89:ba:2a:58:45:02:78:67:f1:d0:85:14:9a:
e6:20:a5:8e:9f:8e:9c:96:53:83:3b:67:9c:89:50:
de:55:4f:47:ca:3a:83:01:37:b7:d3:75:5b:6f:2a:
82:14:cb:07:49:b6:13:3a:4e:c3:bc:45:c2:36:e4:
a5:73:3f:0a:71:4b:ce:3b:0c:55:95:bd:8e:d6:74:
1c:41:ac:41:87:5e:f4:21:18:73:e6:1a:64:f6:e4:
8d:10:d5:16:54:9c:58:ea:0c:80:10:7c:9b:86:67:
8e:bc:1e:be:4e:d0:4c:85:c3:3a:6f:1e:74:d3:ae:
e9:c7:1d:00:c6:7e:ea:49:31:eb:7b:00:dd:a7:ca:
1b:d8:09:40:16:c4:28:52:79:ff:53:ae:d2:f3:04:
f3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:2C:33:02:93:04:B5:75:10:38:42:F1:5F:D8:33:51:5D:44:08:FC
X509v3 Authority Key Identifier:
keyid:2A:A1:4B:FF:83:48:0D:10:CD:0F:BE:BB:80:B2:CB:50:91:FC:F8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:5d:a7:77:48:1c:d2:ab:8c:15:6a:7f:b9:2e:c5:1d:8c:3e:
01:45:46:0a:4f:a1:d2:ba:5c:5a:d8:ad:f1:cd:a1:46:70:2a:
d4:64:1d:c9:3c:6e:da:2e:4e:33:a5:d6:f3:4b:41:a9:db:49:
bc:8f:e7:cb:98:2c:39:21:cd:f4:8c:0d:6e:b2:05:78:69:bb:
0a:b3:9f:45:99:8f:6b:22:91:dc:bf:73:c8:b7:fc:5a:11:28:
a4:ac:66:0b:f4:d0:ae:36:8e:ea:e3:a6:99:27:4f:82:ad:bf:
26:88:f3:4f:ba:ae:5e:84:7d:0b:5b:3e:2d:72:e3:71:7a:94:
31:6d:36:c9:5c:55:e4:e9:ad:f8:e3:4d:0e:b7:eb:67:0f:a3:
64:10:69:ba:c4:26:aa:b6:12:e3:03:99:dc:09:1e:e5:31:f9:
6d:3d:eb:95:37:01:f7:58:f2:03:09:16:7c:af:06:ec:68:73:
c4:73:d9:87:d3:d5:cf:8a:b6:d2:7d:ac:16:08:7a:21:e0:e4:
03:20:2b:e0:74:26:ca:62:1f:d4:fe:4c:7c:37:78:68:2b:73:
ff:24:0d:51:2d:3b:6d:9d:68:1e:34:ea:41:04:3a:1d:cf:b7:
9a:35:08:21:38:ea:32:5a:7e:f7:86:36:b4:b4:9c:19:a1:70:
65:65:55:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:08:06 2025 by rpki-client