Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.mft
File: kNQmIJvYxAXL7-5XQbGlJUgBK6s.mft (raw, json)
Hash identifier: r8sfym1Zrs1JVlkMqHenjWjvG8A3yZU+zg3SyiCHjpY=
Subject key identifier: 62:9F:09:E6:D8:2C:9D:5D:E5:22:4E:9C:88:5E:D8:D6:D1:F8:8C:3C
Authority key identifier: 90:D4:26:20:9B:D8:C4:05:CB:EF:EE:57:41:B1:A5:25:48:01:2B:AB
Certificate issuer: /CN=90d426209bd8c405cbefee5741b1a52548012bab
Certificate serial: 019653492FF6097DC81322F8E23D27F1C880
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNQmIJvYxAXL7-5XQbGlJUgBK6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 13:00:27 +0000
Manifest this update: Sun 20 Apr 2025 13:00:27 +0000
Manifest next update: Mon 21 Apr 2025 13:00:27 +0000
Files and hashes: 1: 81r7MDlREVnve0gPHpK-YMqPGos.roa (hash: LBj0CTTN9bH+FtAXQEk67Yy3EpjLyRKJ5E4kGwybQXs=)
2: kNQmIJvYxAXL7-5XQbGlJUgBK6s.crl (hash: gZY24Vvdzs8ivuCJGcvJMRwYADOi9K5tIEff4Amz8QU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNQmIJvYxAXL7-5XQbGlJUgBK6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:2f:f6:09:7d:c8:13:22:f8:e2:3d:27:f1:c8:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d426209bd8c405cbefee5741b1a52548012bab
Validity
Not Before: Apr 20 13:00:27 2025 GMT
Not After : Apr 21 13:00:27 2025 GMT
Subject: CN=629f09e6d82c9d5de5224e9c885ed8d6d1f88c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8c:db:11:50:8f:3f:c3:19:d8:c8:1d:13:c1:
8d:43:3e:4d:90:70:a9:9d:9f:99:69:db:5c:d8:c7:
b9:a4:be:ec:90:9f:f4:4e:8d:3e:c3:2d:9a:51:a7:
ab:ca:a1:4d:e2:6b:62:55:4e:60:45:5c:7b:65:a3:
d6:ce:d1:0a:75:43:d9:56:af:19:6f:f4:5d:55:1a:
e2:b6:c2:0d:63:8f:f3:6d:46:ab:3a:b1:1c:11:5d:
ad:d1:98:f3:d8:31:c0:ca:a6:70:59:05:ad:92:1c:
a3:5f:02:62:57:84:eb:9b:8c:a3:81:07:69:f2:a9:
25:b9:42:6a:e9:7a:f0:58:c0:b9:5a:cb:43:a8:5b:
38:ac:71:2f:ed:8c:af:89:aa:cd:ce:5b:3f:44:17:
e1:87:53:80:ce:1c:80:01:ca:e4:94:71:70:35:d0:
42:a1:12:7e:b9:04:56:fc:c8:bc:90:a6:f7:85:95:
0a:84:cd:b9:0d:32:79:5d:c4:89:ef:44:64:04:cc:
83:2d:df:b5:2b:0a:c5:55:08:e4:6a:d6:6c:8f:31:
d3:17:5a:d3:17:0b:d7:16:c4:55:5c:38:4c:ce:4b:
cf:95:64:46:5a:ec:a8:df:92:37:45:5a:6e:82:f1:
28:df:8d:04:63:66:dd:0b:a1:16:b8:bd:94:73:01:
4e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:9F:09:E6:D8:2C:9D:5D:E5:22:4E:9C:88:5E:D8:D6:D1:F8:8C:3C
X509v3 Authority Key Identifier:
keyid:90:D4:26:20:9B:D8:C4:05:CB:EF:EE:57:41:B1:A5:25:48:01:2B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNQmIJvYxAXL7-5XQbGlJUgBK6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:bb:28:7d:86:2b:35:10:0d:04:0a:84:e6:8c:22:d3:81:1e:
1c:be:fa:23:ed:1e:c2:06:d6:c7:be:6a:04:a0:c6:d4:e6:f0:
9b:e8:10:b8:ca:19:85:c4:92:39:d1:cf:16:c0:b4:89:fd:6e:
cd:9e:b6:7b:42:66:93:9f:ac:50:52:75:91:d2:a3:3b:8e:1b:
c2:64:b1:0b:88:63:57:b0:87:24:0e:9f:08:55:93:d1:77:35:
3e:be:78:60:07:cf:b3:34:88:af:60:36:25:7c:1e:4c:fb:ea:
02:b1:b2:d1:20:e1:3a:de:6e:0e:3f:55:02:75:a6:fa:bc:5a:
3b:ca:4b:c6:f1:57:85:5f:b0:40:9a:31:f5:81:97:8d:54:46:
12:85:28:7e:a9:9a:2e:2f:33:a9:c6:7d:94:ca:15:e8:41:61:
20:62:2c:93:ec:b3:71:5f:29:3e:3c:ba:ae:9c:9b:94:68:f1:
86:a2:9d:47:8d:5c:f1:12:d4:4f:a9:76:b5:c5:22:49:a5:c7:
a4:8c:c7:4f:1f:45:5c:4e:c2:be:5e:b6:02:8e:c4:6f:eb:2b:
60:48:30:2b:5e:89:6c:46:29:70:fe:ed:25:53:88:ff:f2:b9:
61:96:f4:78:77:1d:05:a3:15:e5:36:58:46:d2:b1:0e:76:cd:
c4:40:db:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:07:19 2025 by rpki-client