Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
File: kNdTolR-A6Sw0vkccOnOTkRoBBg.mft (raw, json)
Hash identifier: XhgtdwPYILS/Lq5msfWjloOlipxkV1xDLBEdV1tbmUE=
Subject key identifier: E9:B1:8E:03:2F:70:51:3A:9C:4C:31:2A:97:FF:E5:B9:86:C2:5B:88
Authority key identifier: 90:D7:53:A2:54:7E:03:A4:B0:D2:F9:1C:70:E9:CE:4E:44:68:04:18
Certificate issuer: /CN=90d753a2547e03a4b0d2f91c70e9ce4e44680418
Certificate serial: 01964E5A0F6622AF174F2941CC83D32FB680
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
Manifest number: 099E
Signing time: Sat 19 Apr 2025 14:00:47 +0000
Manifest this update: Sat 19 Apr 2025 14:00:47 +0000
Manifest next update: Sun 20 Apr 2025 14:00:47 +0000
Files and hashes: 1: g5z8NV4dmlaKd11s7v3mxc0KYqU.roa (hash: bnZ9DFLSZGC/zi7MlcnpGi6LDIICQO79p3wjfCQfT+E=)
2: kNdTolR-A6Sw0vkccOnOTkRoBBg.crl (hash: 2mWxwSBsOGZayicCQkjoH1PTnvBBJ8+9KgnN8bOXXAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:5a:0f:66:22:af:17:4f:29:41:cc:83:d3:2f:b6:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d753a2547e03a4b0d2f91c70e9ce4e44680418
Validity
Not Before: Apr 19 14:00:47 2025 GMT
Not After : Apr 20 14:00:47 2025 GMT
Subject: CN=e9b18e032f70513a9c4c312a97ffe5b986c25b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:04:49:e5:7d:b8:44:62:60:e2:44:bb:12:77:
e3:a4:d7:bb:5e:07:8e:5e:7d:41:5c:2c:80:d9:57:
2f:38:31:ad:00:2e:d1:b2:2a:c9:3b:e0:a8:17:bd:
af:81:56:73:04:74:e5:74:62:5b:76:03:cf:d8:b0:
7d:a6:b4:5d:0c:78:98:34:bc:4a:f8:05:5c:7a:fe:
96:de:aa:21:e9:4a:5d:90:b8:46:2b:22:c4:86:58:
c1:0c:06:1b:6d:59:5c:94:e5:04:ea:7d:6b:93:55:
b5:b3:3e:af:45:9b:11:a5:2b:2b:aa:c8:a5:d1:60:
56:6f:7d:15:2f:92:0a:1f:70:b9:0e:1b:3b:96:32:
c7:78:88:c6:57:e0:f0:6a:b0:6d:3b:56:85:36:1f:
39:19:04:f6:04:31:7e:2f:44:04:23:05:28:7b:2e:
f3:1c:69:cb:4b:b6:dc:9b:23:e8:06:fb:0c:5e:df:
a1:08:d6:d4:ca:2f:0a:a6:4f:f5:3d:1a:5d:58:55:
8b:20:fc:37:9b:bc:f1:6f:32:5e:37:c8:f5:bc:fb:
54:dd:51:d2:6c:26:07:e6:c7:da:b2:2a:a5:66:57:
20:39:0f:29:1a:2e:7d:e5:98:d8:07:56:3f:e1:a3:
e1:a4:75:25:01:e3:fe:f4:82:1a:15:91:1a:9f:65:
ef:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B1:8E:03:2F:70:51:3A:9C:4C:31:2A:97:FF:E5:B9:86:C2:5B:88
X509v3 Authority Key Identifier:
keyid:90:D7:53:A2:54:7E:03:A4:B0:D2:F9:1C:70:E9:CE:4E:44:68:04:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:79:b3:41:14:f3:c1:b7:b6:b3:6f:20:dd:e8:f4:0d:9f:df:
f6:cc:53:a0:82:6f:ba:3c:b6:69:d3:dc:43:ec:81:77:bd:d1:
ac:58:de:0f:51:e8:99:36:fb:b5:24:6b:13:91:83:e0:4d:c8:
fb:d3:b3:73:33:53:17:89:57:86:6c:9a:88:d0:0b:4d:2e:90:
fb:fb:ae:1d:b5:53:b3:12:ee:cd:5e:25:4e:e4:25:ee:78:af:
41:bf:1b:9b:82:cf:3c:fd:4e:97:c4:d1:00:85:84:b2:27:f3:
3a:ac:4f:fb:42:bd:a9:ba:f4:47:13:93:98:66:14:f9:0e:c2:
a7:f7:8a:f6:4f:97:6e:0b:6a:fe:25:8a:9f:96:67:8d:f9:ff:
ae:2a:36:0d:9c:a7:f6:de:e6:25:7c:8e:98:dc:db:a5:ed:61:
8e:5f:6f:e7:79:a4:79:4f:e0:bf:07:dc:16:e5:1c:67:83:71:
b4:57:ea:9b:19:7d:b7:1b:03:32:06:1e:b6:35:b9:66:0e:ea:
ff:ce:37:8a:e0:c3:c6:ae:2a:5e:79:60:c9:22:6b:5c:c1:a9:
ce:02:37:31:37:90:11:93:bb:e3:91:bf:09:40:a9:95:51:64:
0c:07:b7:a3:f9:26:28:e4:22:32:64:58:9c:29:e2:c6:32:f1:
3a:26:9e:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:55:37 2025 by rpki-client