Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
File: k0S0h58Z7nGaNRRjABcm9obWWe8.mft (raw, json)
Hash identifier: zEFFOKmK53b9g7NLSKfRST4O+1XaAPt4uA/TOPLUVQI=
Subject key identifier: 4F:14:23:A8:DF:91:E1:EB:66:EF:EC:09:16:6E:52:A3:71:8F:65:AD
Authority key identifier: 93:44:B4:87:9F:19:EE:71:9A:35:14:63:00:17:26:F6:86:D6:59:EF
Certificate issuer: /CN=9344b4879f19ee719a351463001726f686d659ef
Certificate serial: 019655A5ACBAA37A7B16EBB488477BA1182D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 00:00:43 +0000
Manifest this update: Mon 21 Apr 2025 00:00:43 +0000
Manifest next update: Tue 22 Apr 2025 00:00:43 +0000
Files and hashes: 1: Sp6LS-Lr7aNgCkiG-x4vIYL0m7M.roa (hash: 4a/RW16MYDyNLA++zl3ynSiVWGswaNsaMa2lua4RkWg=)
2: k0S0h58Z7nGaNRRjABcm9obWWe8.crl (hash: F6niUr4AKHi4VeQGTYsNZiliOYT/Lva9Wm2vFVB/QZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:ac:ba:a3:7a:7b:16:eb:b4:88:47:7b:a1:18:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9344b4879f19ee719a351463001726f686d659ef
Validity
Not Before: Apr 21 00:00:43 2025 GMT
Not After : Apr 22 00:00:43 2025 GMT
Subject: CN=4f1423a8df91e1eb66efec09166e52a3718f65ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:7b:44:c4:81:8d:91:6d:69:c3:34:a5:23:8e:
51:c5:9d:1a:cb:ab:c2:fe:3e:a4:18:b5:54:38:f8:
3f:22:fd:63:2a:0e:54:86:62:a3:9d:56:8e:94:96:
62:90:e5:b4:80:5f:a9:9c:a3:62:00:e6:26:07:77:
ec:d3:9c:c9:f0:49:1b:35:15:b9:94:c5:b3:9a:ca:
79:7e:63:04:b3:9c:5f:ed:8c:61:e8:3b:28:1f:4e:
43:25:61:56:13:bc:67:57:7e:09:19:69:bc:7d:98:
57:c2:e6:fa:07:be:10:cb:1b:50:9b:21:31:bd:79:
73:1e:59:06:24:57:10:aa:e0:68:3e:e0:1f:3a:cf:
27:06:23:58:e6:b6:29:38:92:d6:5f:7e:e5:ca:13:
a8:3f:26:01:30:8e:47:c0:0c:d5:fe:b0:5b:eb:ac:
16:43:2e:84:fb:1e:74:cf:ce:95:e6:70:d8:8e:39:
27:f6:31:02:ec:ab:b0:f3:8e:2e:47:9a:8b:dc:7c:
44:45:0d:7e:ac:08:a9:ee:03:f6:1d:43:eb:d7:0d:
bf:6a:f3:97:8e:91:ae:c9:0c:71:e1:27:c0:5f:68:
6e:b9:87:eb:9a:a7:49:4b:a9:66:ed:4d:70:98:49:
66:25:0e:99:ca:b3:1e:95:ff:1d:fe:f0:06:b4:08:
72:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:14:23:A8:DF:91:E1:EB:66:EF:EC:09:16:6E:52:A3:71:8F:65:AD
X509v3 Authority Key Identifier:
keyid:93:44:B4:87:9F:19:EE:71:9A:35:14:63:00:17:26:F6:86:D6:59:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:1c:af:f3:b7:c1:e9:3f:51:bf:11:72:dc:d3:5c:79:d8:13:
8e:c8:3c:6e:3f:38:9f:96:54:99:ce:c9:83:20:81:89:30:04:
de:04:dd:af:c8:41:bd:fe:94:e0:a2:fd:3c:b1:3e:1c:4d:4b:
a6:fd:e2:52:b3:eb:ca:9d:ef:1c:e7:b2:9d:28:f2:b6:48:76:
1f:f0:81:21:c6:91:da:20:69:a3:6f:27:e3:7a:df:6d:1f:f1:
4b:6e:ad:d0:bf:11:ae:16:0f:ec:f8:08:20:49:fc:b8:71:46:
c3:28:5d:3e:76:b3:bb:ec:a9:8b:56:29:eb:5b:fb:f1:24:17:
2d:80:5f:69:05:e9:2c:f2:04:b3:0b:af:d0:3e:45:5f:41:78:
8f:ef:e6:90:20:2a:97:43:e6:73:b8:ce:c1:86:4b:0a:a7:b3:
54:e8:85:3f:85:e3:b9:f1:7d:23:4a:5f:37:87:bd:b2:1d:57:
aa:0d:92:89:02:d4:20:23:df:10:09:24:03:e6:72:94:d7:f4:
4e:0a:d3:60:28:7f:c8:82:8d:2b:f7:b2:b3:87:a1:1e:33:79:
9a:ec:e9:8d:6f:81:b7:20:05:0c:24:45:2b:78:24:07:94:d1:
6f:37:6b:7b:29:1f:2c:79:39:91:1f:92:b2:6d:4f:6b:f8:25:
00:96:20:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:05:19 2025 by rpki-client