Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
File: kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft (raw, json)
Hash identifier: prrSNBe7qRUepXanB/YM6q0wknIGJC/ZpSWjduvOvFY=
Subject key identifier: 6E:0B:D0:1D:FB:3B:EE:59:ED:25:6B:16:D1:F0:2B:3A:58:C6:13:D7
Authority key identifier: 90:7D:17:81:C2:8A:02:74:1E:A7:A6:3A:CE:3A:95:31:7E:EB:8B:7C
Certificate issuer: /CN=907d1781c28a02741ea7a63ace3a95317eeb8b7c
Certificate serial: 019655DCA8650F27BC48C8A56132ACA0CAF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
Manifest number: 0495
Signing time: Mon 21 Apr 2025 01:00:46 +0000
Manifest this update: Mon 21 Apr 2025 01:00:46 +0000
Manifest next update: Tue 22 Apr 2025 01:00:46 +0000
Files and hashes: 1: kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl (hash: WlzHdm1nhzeW2/iTyLHD78HhfbWTdAbKRtRg9ylsToM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dc:a8:65:0f:27:bc:48:c8:a5:61:32:ac:a0:ca:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=907d1781c28a02741ea7a63ace3a95317eeb8b7c
Validity
Not Before: Apr 21 01:00:46 2025 GMT
Not After : Apr 22 01:00:46 2025 GMT
Subject: CN=6e0bd01dfb3bee59ed256b16d1f02b3a58c613d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:31:6f:0c:ce:77:9b:fa:d0:f5:0c:51:80:24:
89:39:ce:22:f5:d8:37:eb:4b:91:4d:d8:8b:27:8d:
a8:ea:80:fc:2b:22:3c:82:e4:75:16:81:c0:13:79:
cb:99:e8:7f:b0:f7:6a:03:c5:82:f3:53:7a:88:1d:
22:b6:3e:2f:7f:3f:58:ec:4c:3a:b0:3e:6a:c0:44:
e5:e7:c4:97:34:79:4f:2c:34:86:49:70:04:4e:58:
75:b5:22:2b:46:53:c5:9a:bc:89:10:f3:9a:52:39:
12:80:e9:db:8a:24:04:fa:d4:48:de:f8:d2:de:89:
f2:bc:3a:26:e7:b2:6b:4e:3b:0d:1e:e9:28:58:c9:
e3:89:9a:fe:ba:34:51:f7:a5:e4:fd:00:b3:38:fd:
5a:b3:11:ae:fe:5a:5c:40:ea:d9:3c:8b:e0:7e:72:
d6:01:42:80:bc:14:e7:da:c4:1d:95:7c:6d:df:a9:
ec:84:4c:2e:76:e9:99:0c:7d:79:e2:99:e8:45:2d:
7e:87:20:2c:94:0a:05:b0:ac:89:48:e8:64:f7:bb:
7c:39:61:ee:c2:27:3c:22:7f:06:a3:50:1d:73:3b:
73:1d:7e:27:da:66:c3:7a:25:50:b8:d1:a0:e9:de:
8a:b1:0a:6e:73:db:c4:22:5e:83:84:57:90:36:33:
2a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:0B:D0:1D:FB:3B:EE:59:ED:25:6B:16:D1:F0:2B:3A:58:C6:13:D7
X509v3 Authority Key Identifier:
keyid:90:7D:17:81:C2:8A:02:74:1E:A7:A6:3A:CE:3A:95:31:7E:EB:8B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:0f:98:42:7c:97:4e:d7:b4:1e:eb:dc:3f:d5:37:ed:a5:2e:
37:ad:3b:47:7b:2c:c6:0e:f4:99:f2:34:c0:4f:68:7c:46:ea:
49:54:9e:10:23:07:a6:01:d8:15:97:5c:57:11:87:db:ce:df:
49:36:b4:9e:67:0c:f2:2b:f2:17:21:d7:0b:6e:07:4e:7d:87:
84:03:9e:ef:67:b4:05:dd:78:d2:8a:17:d4:9f:fc:42:3e:85:
e1:6a:b2:03:b9:70:ef:c3:ff:a9:6b:ab:e9:26:4d:33:48:02:
11:1f:4a:7b:87:1e:e4:1d:b5:58:9e:af:b5:db:b6:c4:d5:f2:
15:44:57:b0:3d:4a:df:59:89:78:c6:a4:c2:fb:3b:d5:f4:4b:
d0:cb:88:90:1e:7a:37:2d:e7:06:23:75:ae:66:60:be:6b:3f:
98:a1:e2:21:21:f2:4e:0d:95:ed:8b:09:5e:8f:b5:03:54:f2:
bd:27:a9:15:0c:62:67:81:40:b9:d5:dc:54:54:fb:8c:8c:a3:
64:2a:5d:30:a2:91:1e:a5:4f:b8:59:2a:50:de:c7:0d:a5:d8:
9e:a6:da:2f:db:de:1e:75:13:6f:c9:8c:2d:8e:45:a7:a9:0b:
a0:74:ef:f9:ca:c8:fe:93:84:d6:14:e3:12:a0:3c:11:0a:94:
44:93:4c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:25:19 2025 by rpki-client