Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
File: KaA5l7KPWbCAMciYQH3V5RN93bE.mft (raw, json)
Hash identifier: pK2JvyHiPp0QVO1MNQdcK7Q8HeRyjLLPfdfkTXeGKo8=
Subject key identifier: E3:EF:0E:D4:44:AE:34:66:23:1A:2F:5B:C6:25:DF:AB:B4:AE:EA:1F
Authority key identifier: 29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
Certificate issuer: /CN=29a03997b28f59b08031c898407dd5e5137dddb1
Certificate serial: 019652369927FF0A5223C754DCBD8659984E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
Manifest number: 11E8
Signing time: Sun 20 Apr 2025 08:00:31 +0000
Manifest this update: Sun 20 Apr 2025 08:00:31 +0000
Manifest next update: Mon 21 Apr 2025 08:00:31 +0000
Files and hashes: 1: KaA5l7KPWbCAMciYQH3V5RN93bE.crl (hash: 0c5EhQRLamOzPzVRNo9UwwvnTGCQsBrU63hPFPV4wms=)
2: TFGcxJc1hz5sSLNvCaBuhb3JcFY.roa (hash: IVGRn6jYdKaVvVkrmcrSKzMRsOoEhE2vOI0riR6WQTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:36:99:27:ff:0a:52:23:c7:54:dc:bd:86:59:98:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a03997b28f59b08031c898407dd5e5137dddb1
Validity
Not Before: Apr 20 08:00:31 2025 GMT
Not After : Apr 21 08:00:31 2025 GMT
Subject: CN=e3ef0ed444ae3466231a2f5bc625dfabb4aeea1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8a:e5:80:84:b6:d4:67:b4:0f:df:6d:39:57:
46:96:40:4a:38:38:41:91:22:31:87:98:06:de:6c:
99:3c:2f:05:f1:49:1f:0c:ca:27:34:ce:98:5b:af:
be:f6:52:68:b9:15:0c:78:7b:e6:91:15:83:62:8e:
99:d9:36:ff:55:13:e6:2e:80:5f:dc:3b:00:05:7d:
ad:f1:9d:bd:05:9d:41:78:0b:50:ba:df:c5:33:86:
ac:3e:65:3b:00:24:27:49:b5:73:f8:7d:fa:99:03:
4e:f3:c3:48:8a:db:94:fb:b3:41:14:7b:bf:2e:85:
4b:34:32:09:cd:8c:90:30:61:b8:c5:57:2c:ce:b7:
87:d3:fb:d0:86:90:4a:63:05:b6:0f:27:90:2f:4e:
2a:69:93:f5:c3:b8:2d:9f:29:76:f4:65:e6:cb:71:
a7:b3:86:ac:12:38:d2:74:55:c4:d4:20:09:2e:a2:
d6:96:10:d1:bb:11:8d:e5:2c:fa:4c:e5:d0:d0:d3:
91:20:5c:5f:0c:42:3d:80:de:af:37:cf:48:3a:ab:
3c:3d:77:92:4e:1d:d8:12:6a:1e:bc:ec:ad:14:72:
f6:e6:71:57:84:6b:d8:c5:ca:de:34:bd:7e:a2:43:
18:26:13:02:e5:35:04:f8:69:ab:1b:84:f2:c1:fd:
c6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:EF:0E:D4:44:AE:34:66:23:1A:2F:5B:C6:25:DF:AB:B4:AE:EA:1F
X509v3 Authority Key Identifier:
keyid:29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:04:4d:0c:fb:4d:de:eb:9c:57:e6:17:df:ed:49:9e:cf:72:
42:d2:05:bf:49:08:97:3d:90:fd:7a:64:59:3c:c8:3c:92:8c:
19:f1:53:2b:23:0d:53:fb:a6:e9:aa:bb:1d:50:a9:fd:c2:b3:
c7:7a:ae:b7:63:32:e2:53:e4:c2:ab:5f:c7:ad:5d:0a:36:9a:
46:96:a9:21:a7:6e:2e:30:c6:99:5e:4e:d1:ea:34:75:e1:b8:
3a:fe:6b:df:80:a5:e1:dc:5a:60:23:3b:12:9c:dc:da:16:e8:
81:a8:a7:f0:36:06:52:25:1d:29:fa:77:c2:c7:5a:52:3a:32:
22:6e:76:c5:0c:d2:ef:f3:4d:83:0b:38:86:71:06:ef:0d:70:
24:ac:aa:ff:0d:f0:5f:7e:34:e4:2e:f3:67:6d:29:79:5d:bc:
a9:02:d6:87:ef:3a:08:e1:63:7e:39:8d:ee:af:d0:82:8b:b7:
ff:cc:57:ad:90:b1:40:6d:58:95:17:53:d3:01:44:d7:73:b5:
86:85:d5:8c:3e:94:1c:76:c0:e2:77:84:5a:46:7f:28:fe:76:
1f:ef:8b:30:b0:1f:3f:42:63:51:46:b9:6d:a8:82:75:8c:aa:
1f:7e:a5:60:17:c4:81:e8:80:56:b6:c5:67:55:f9:46:90:b0:
f0:ac:61:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:27:16 2025 by rpki-client