Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
File: kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json)
Hash identifier: UPLEwB/tv5e19ClegYM7gGHGHLsPHM1LSpx9+moTc2A=
Subject key identifier: 0B:FE:BC:CD:40:9E:2D:1C:3A:EE:34:2A:33:DD:92:EC:0F:9B:FA:6B
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 019630F4E28F17228ECA056F85F542BF18E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
Manifest number: 08DF
Signing time: Sun 13 Apr 2025 21:01:17 +0000
Manifest this update: Sun 13 Apr 2025 21:01:17 +0000
Manifest next update: Mon 14 Apr 2025 21:01:17 +0000
Files and hashes: 1: REM4mLJG7EnsBgBtsv162D0wKhg.roa (hash: lvlcTJIeXHpqeTqGfZTwiMwS8+bWAY5YDqELcR5epC0=)
2: Tkqht9ZvM7aeuWPx5RB29sIJQsY.roa (hash: GjW60rpkATBwTZcA2wdYPAVMSlJOCTBR0jsl1OrgYgE=)
3: XddNSlbeSdL2BDOBSBtXKwmbrLQ.roa (hash: YTwv2DMMu/UpDiaZkqxeVtYaDul2+Oka8KEh6z36NkA=)
4: b10-uyzSDsE84X1NxkfqXsdCqjM.roa (hash: 656/1JM/Gtv27/XvapYOtDJ81ebQFKIEF9n9ARvTwoo=)
5: bXzPu6L2HXchD9ZujQmLXPM_bDM.roa (hash: KqR406WMI/nRws1aNrGcGP+z2vKLl1H8bxnYaFt2+LA=)
6: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: 8FaNorgP69Xx9KTsu1bY8sHtosuScQon9F9UsrIyi1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 17:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:30:f4:e2:8f:17:22:8e:ca:05:6f:85:f5:42:bf:18:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Apr 13 21:01:17 2025 GMT
Not After : Apr 14 21:01:17 2025 GMT
Subject: CN=0bfebccd409e2d1c3aee342a33dd92ec0f9bfa6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:30:a9:cd:7a:63:dc:1b:14:67:0f:d2:ee:d2:
b0:d5:54:d1:b3:b7:4f:89:19:0d:96:b2:55:43:cb:
ba:ab:c2:21:a0:6a:2f:a2:3b:2c:88:08:39:b4:24:
1f:d1:97:73:ba:0b:9b:41:07:54:d1:36:63:62:d1:
76:27:21:ec:2f:b7:75:af:04:cd:c2:16:dd:55:bb:
32:ea:85:fb:ef:42:3b:9b:04:ec:55:1a:26:ec:e2:
5e:50:00:01:aa:8a:8c:dd:5e:61:28:2a:3c:7e:45:
7d:43:d7:29:d9:09:36:ee:45:37:c9:08:ad:12:8b:
a2:1c:1f:93:a9:89:ca:36:1a:1b:d2:90:0a:45:96:
d9:ec:5c:7d:59:c5:92:57:ac:42:52:a6:f9:3f:df:
6e:67:0a:12:a8:eb:0c:1b:ad:c0:8c:7f:01:48:b9:
4d:3a:2c:19:a4:1d:0e:0d:4e:81:a5:fd:28:9a:fe:
de:ed:ea:26:7c:f8:8e:3c:55:4e:02:ca:c9:2c:e9:
bd:c2:a7:49:8e:e1:98:8b:96:be:86:ac:b5:66:74:
7d:35:00:89:21:e1:4b:e5:f5:2d:53:c1:69:07:c4:
a1:76:73:67:54:46:57:64:4a:7d:a3:c7:f7:ab:87:
a2:1e:99:c0:78:dc:6c:b6:2b:20:d2:39:a3:0a:19:
a7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:FE:BC:CD:40:9E:2D:1C:3A:EE:34:2A:33:DD:92:EC:0F:9B:FA:6B
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:f1:de:b4:b2:98:f2:c8:3d:3d:24:1c:00:82:67:43:b2:87:
39:70:a4:34:60:4b:f7:b7:bf:d0:68:ae:5b:c9:32:49:b2:06:
ae:37:41:1f:3d:b0:33:b6:ad:75:2a:3d:5d:0b:a1:a2:14:0d:
f8:5b:8e:d4:9f:69:15:74:4d:02:f8:6d:67:e7:37:09:6b:ba:
d9:ee:57:a4:e4:f4:24:2c:f3:a9:c5:6d:94:6d:c0:4d:85:17:
61:67:c3:ba:50:28:fd:5d:b1:0e:61:4b:28:d5:c3:f1:9c:d4:
76:64:ab:d1:0d:1b:ba:f8:10:bb:18:7e:48:76:7a:a4:0d:69:
c0:6f:61:76:6a:77:6e:10:08:07:36:ce:01:29:df:35:17:ab:
41:b8:40:39:af:68:81:03:97:9e:7b:3c:c3:a6:97:1f:a9:f8:
9e:a0:89:d7:c6:57:5e:2f:3d:9d:64:0b:17:f4:23:d0:28:cd:
da:4c:01:40:03:7a:8d:ca:73:48:a9:21:68:7f:7d:29:54:97:
33:e0:61:5b:bd:87:68:3c:43:c4:de:ae:35:a8:d6:ea:3e:cf:
bf:55:6c:82:1d:de:75:b2:50:7d:8a:fb:94:0d:86:1e:89:07:
16:ee:95:a2:34:ba:3b:02:a8:25:32:b8:05:ee:fe:d1:6e:e9:
79:90:a0:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 01:09:24 2025 by rpki-client