Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
File: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft (raw, json)
Hash identifier: nfKJ9hNHin055zDhUXLxSuFA4dgxL/FQJgbD4+etZ14=
Subject key identifier: 65:30:15:41:FF:D5:59:70:3C:1B:62:26:D7:18:FD:3D:3B:C8:B6:F1
Authority key identifier: 72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
Certificate issuer: /CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Certificate serial: 019658389E589AC93713E8D485A58ED658F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
Manifest number: 1443
Signing time: Mon 21 Apr 2025 12:00:27 +0000
Manifest this update: Mon 21 Apr 2025 12:00:27 +0000
Manifest next update: Tue 22 Apr 2025 12:00:27 +0000
Files and hashes: 1: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl (hash: X9m0s8R5COyqSLlPOXdZWoC7N1a/fNX/A099yoQ3m+Y=)
2: hML-Tag6b9qlpG18VlhLUkClkKg.roa (hash: LEX7BjdOFqa/vQo+qGyu7UsdS3xFcEis6fY7DeQDRek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:38:9e:58:9a:c9:37:13:e8:d4:85:a5:8e:d6:58:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Validity
Not Before: Apr 21 12:00:27 2025 GMT
Not After : Apr 22 12:00:27 2025 GMT
Subject: CN=65301541ffd559703c1b6226d718fd3d3bc8b6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:38:b4:12:ed:02:ca:a3:1b:fc:c9:6f:33:6d:
a6:b6:5b:eb:19:b4:c8:d4:ab:df:96:e5:53:97:6b:
ff:bc:24:4d:d5:c2:2e:50:9c:55:b3:9c:59:59:b5:
71:8b:89:92:95:9b:2f:22:45:14:91:cf:1d:bb:e6:
13:45:33:cb:85:8f:fe:34:73:d8:36:50:60:63:01:
82:77:cb:92:b3:ef:f5:1d:7b:b3:69:ee:77:b5:a3:
f3:a3:38:11:52:f7:c4:a6:f8:9e:2a:51:5e:33:6e:
64:55:85:7f:c0:d6:38:29:89:78:4b:3f:db:de:c4:
63:8f:4b:cd:bc:2a:62:fd:7e:82:a5:fa:2f:39:a4:
db:8b:9d:35:69:f1:1a:82:5f:3e:f0:42:bb:08:96:
24:06:55:b1:7b:96:b6:a9:d4:28:46:d1:96:5f:9e:
94:c3:2f:44:e2:e9:0a:5c:43:65:63:1f:2a:f5:46:
dd:31:3b:ba:ae:d9:01:66:86:91:32:a5:06:45:af:
f5:3c:65:af:41:d1:b7:b5:20:86:8a:ce:5d:7d:a6:
d3:4f:ce:9f:09:20:71:52:1a:0b:57:e0:6c:4a:86:
b9:57:31:27:7c:09:e5:4c:32:ce:79:55:c3:a9:40:
8e:4d:18:e9:d9:82:04:57:20:4b:3f:22:2a:2b:db:
eb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:30:15:41:FF:D5:59:70:3C:1B:62:26:D7:18:FD:3D:3B:C8:B6:F1
X509v3 Authority Key Identifier:
keyid:72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:aa:7c:5d:a4:73:54:13:39:19:4c:88:67:3c:c0:23:96:ec:
17:5e:8d:14:37:60:c0:93:65:c7:8e:be:9a:32:6e:25:fa:d2:
ac:53:50:5c:42:c8:aa:a0:4e:a0:3f:47:8f:c0:3d:1c:17:ef:
6a:6a:54:4d:d3:87:b5:7a:39:43:45:e6:fe:d8:b4:27:6d:3e:
69:6c:63:07:c2:f0:b5:a8:be:ea:55:e6:e1:73:26:57:22:9a:
01:65:dc:d3:81:0a:b2:f6:ba:79:ef:fb:a0:52:a1:8e:f1:27:
ab:c8:6f:d6:39:92:df:a4:b5:d5:c5:d3:80:f1:69:50:a6:e1:
90:91:74:3f:4b:7c:34:e2:46:01:fc:ab:80:7f:1e:27:3d:a5:
2b:22:6c:ca:03:7e:e2:ac:3a:02:12:c5:d2:a4:8c:9d:68:48:
23:28:99:f9:b8:e9:c3:02:e8:ac:69:ce:73:bb:3a:74:40:df:
82:ea:f2:c7:ef:7d:08:a2:27:98:3d:38:e8:e0:64:01:d4:6f:
82:09:6b:67:f7:4e:52:c2:44:79:95:fe:95:69:91:a2:37:7f:
0d:67:83:d5:76:bb:57:54:9f:0e:83:08:d9:15:b8:63:19:6c:
2e:1b:ce:00:1a:be:e3:a2:ae:08:f4:52:46:30:6c:11:fd:6d:
03:76:67:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:41:48 2025 by rpki-client