Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: OUvBRlaZ2xxyb6ZqVYp9MBZQcGklAC2M5irz3J7//wY=
Subject key identifier: 82:9E:82:B3:36:26:9B:C5:33:B5:11:B0:CB:B9:69:C4:BD:38:FA:E0
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 01965C4C11F6EDBB3EE458CD6CD4D5A63095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1509
Signing time: Tue 22 Apr 2025 07:00:11 +0000
Manifest this update: Tue 22 Apr 2025 07:00:11 +0000
Manifest next update: Wed 23 Apr 2025 07:00:11 +0000
Files and hashes: 1: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: beO3G4rPDg0gd254tRGqxlPutOMlD3+LGPBwSoB0dwU=)
2: t6aLSSMcfA7Wmiqf40BGuDSs16w.roa (hash: QoJ0LZB+2Of6cXEGtrOrsAOrDyP5OnzmUXKVyd4YZpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:4c:11:f6:ed:bb:3e:e4:58:cd:6c:d4:d5:a6:30:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Apr 22 07:00:11 2025 GMT
Not After : Apr 23 07:00:11 2025 GMT
Subject: CN=829e82b336269bc533b511b0cbb969c4bd38fae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0a:a2:31:13:52:fa:04:f5:60:89:6b:f4:ef:
97:e7:6e:62:6f:c4:ac:45:7f:a7:7b:ab:3a:cc:43:
67:f9:87:51:66:44:f9:72:f0:41:a0:ef:0f:4b:78:
b1:98:9e:6d:96:b6:b6:ed:18:b8:6e:7a:02:cb:c3:
1e:6c:8b:e4:ce:0b:9a:9e:bb:99:3e:94:fd:d6:5c:
75:64:e0:6a:df:9d:21:14:82:73:61:4a:fa:31:1e:
e8:b4:40:e6:8a:2f:2b:f5:91:b1:d4:a2:d8:a6:18:
d3:e1:d3:ab:90:71:93:fb:57:e0:1f:91:35:17:7f:
ba:cc:b5:c1:10:8e:4c:74:62:93:a3:4e:0c:f9:e6:
24:ad:93:07:83:c6:35:3e:78:f8:c0:04:26:2b:c4:
e4:bd:f6:14:df:9c:c1:c3:0e:8a:04:b6:9d:87:2a:
1a:38:5c:8c:cc:cb:a6:ba:76:3a:54:6b:e1:f3:c6:
d1:00:61:c1:99:dd:8b:9a:44:db:c4:81:29:ec:e1:
5f:ee:f2:22:5e:51:0f:ad:48:a6:b4:5b:cf:58:40:
7a:96:fb:ac:53:a8:08:88:4d:3e:db:21:04:0e:12:
0a:0c:85:50:e5:d3:28:3f:3b:83:8f:d2:8a:ab:dd:
67:65:37:90:30:2f:53:64:32:7d:03:b4:0d:d8:31:
39:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9E:82:B3:36:26:9B:C5:33:B5:11:B0:CB:B9:69:C4:BD:38:FA:E0
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:02:8f:00:d1:bf:3f:ec:c2:58:41:9f:c8:04:9d:56:d2:2e:
a2:46:0f:54:76:5e:a4:a0:87:97:5f:53:41:c7:e9:70:96:71:
e2:fc:12:f2:26:fb:53:97:86:05:97:a2:32:d5:a2:b8:a5:2f:
f2:d9:f6:c2:a2:2b:90:09:bb:00:5c:8e:57:c0:4b:74:b8:2f:
6b:6a:31:c5:3c:7e:ba:7e:66:4b:d9:05:94:e8:d2:f4:fc:37:
db:48:22:09:87:cd:04:c0:83:02:96:92:d6:4c:28:2a:d1:c7:
73:63:41:94:ce:aa:dd:e4:02:84:df:7d:4b:6d:5b:59:19:ca:
73:c6:66:0b:4e:08:b8:ee:6d:66:55:f7:9a:29:6f:d0:d0:89:
96:11:99:8e:5f:0d:fe:9f:7b:fa:c1:b5:66:de:a1:22:16:f0:
77:96:3c:fa:8c:6f:b1:58:13:d5:78:a8:83:1e:b0:0a:78:b8:
c0:8b:e2:25:c5:53:52:3f:93:45:80:63:6b:12:f4:9f:a2:c0:
0f:fb:02:b4:a0:76:a7:25:d3:71:7a:04:a3:36:af:67:80:13:
61:14:69:17:14:20:af:45:42:1c:4a:60:84:ad:44:dc:fb:7a:
18:b5:aa:e2:e5:42:79:35:da:97:01:e5:9c:85:35:14:d4:48:
06:ef:fb:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:31:27 2025 by rpki-client