Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
File: KL69RlhhhHPtTIN2fFHejiM8MpI.mft (raw, json)
Hash identifier: gy9cBWYNkQ5iSN8ojEQ5f0lvhVjA/PnOoukELXqMPoU=
Subject key identifier: 18:79:F8:AD:3D:10:44:90:8F:28:82:9F:85:18:F0:15:F8:05:07:06
Authority key identifier: 28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
Certificate issuer: /CN=28bebd4658618473ed4c83767c51de8e233c3292
Certificate serial: 01951210A9FFDD5E70ABCA50BAFF96398AB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
Manifest number: 0DD4
Signing time: Mon 17 Feb 2025 04:00:36 +0000
Manifest this update: Mon 17 Feb 2025 04:00:36 +0000
Manifest next update: Tue 18 Feb 2025 04:00:36 +0000
Files and hashes: 1: KL69RlhhhHPtTIN2fFHejiM8MpI.crl (hash: qj8y52dcJncR89heUcsHCcm8CZdAdkCIgtnQv4d9d/A=)
2: jp-8lbUOvN6sUPZsTL-dh7MOVR8.roa (hash: /kMpoM5rzLA4Q5DdnfjuYEV0in2H+0XYtN+u4LENV/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:a9:ff:dd:5e:70:ab:ca:50:ba:ff:96:39:8a:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bebd4658618473ed4c83767c51de8e233c3292
Validity
Not Before: Feb 17 04:00:36 2025 GMT
Not After : Feb 18 04:00:36 2025 GMT
Subject: CN=1879f8ad3d1044908f28829f8518f015f8050706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:dc:92:5e:90:d7:4a:61:24:a2:d0:29:05:3b:
c2:39:16:99:af:99:4b:34:00:52:81:ec:0e:ee:b8:
09:84:f6:d0:c2:bf:03:d1:7b:b1:c8:d4:56:86:f6:
bd:d1:79:6c:15:e9:2f:36:59:42:bf:71:21:0e:94:
7d:54:31:d8:28:09:6c:89:0c:36:36:cd:48:44:04:
be:7c:c3:89:6e:58:27:78:96:29:e5:c0:69:44:67:
fe:24:fc:1a:76:f9:8c:ac:c5:47:d0:2d:01:56:51:
7b:ef:0e:fa:f0:2d:ea:17:6c:c1:35:3f:b5:d6:0d:
48:67:b0:ec:fd:98:36:a0:01:07:b6:8e:fd:de:d5:
2a:82:f0:fc:0a:e9:07:ed:5f:23:20:db:de:b8:73:
90:48:a0:04:3a:42:be:ae:3b:36:1e:45:1c:03:15:
e1:10:51:7b:3a:a8:81:50:5e:a0:b8:7e:af:4e:b2:
27:ce:12:f6:e5:68:8a:55:9d:1c:14:7e:d8:b4:68:
22:dc:d7:46:32:09:d6:fd:f4:6d:88:b4:c6:bb:38:
ea:85:49:7e:4a:75:a1:6f:70:50:29:cc:e3:82:31:
d5:52:68:41:38:10:30:6f:37:12:bf:cf:a9:20:99:
b9:1c:ba:3a:6f:a8:7d:dc:d7:c0:46:b8:08:c8:95:
6b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:79:F8:AD:3D:10:44:90:8F:28:82:9F:85:18:F0:15:F8:05:07:06
X509v3 Authority Key Identifier:
keyid:28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:47:d7:69:d2:92:cc:15:03:06:73:7b:f2:ed:e8:1c:f4:1d:
58:58:0d:bf:17:c3:61:2a:9d:e3:87:e6:c2:28:f6:c8:02:ff:
2a:cd:71:72:6b:0f:a6:10:30:57:cd:70:f9:60:13:e7:dd:50:
84:9d:9a:3c:88:6a:f4:13:cc:92:a2:7b:69:3b:95:d3:07:c9:
a4:53:62:90:e6:fc:4b:f9:19:64:41:3f:77:c0:01:c6:8a:b8:
d0:66:08:9c:cb:61:ab:99:b3:78:cb:70:b2:22:fa:e7:e1:a5:
81:14:3e:d6:44:e1:67:18:4a:5d:84:b8:1f:7d:ee:9a:11:b2:
14:b4:b3:52:b9:00:2e:b5:69:7d:71:c2:55:42:df:49:fd:59:
4a:8d:b1:ba:fd:50:aa:60:b0:15:a9:bd:24:fc:5d:e5:04:49:
09:b8:cc:0d:11:50:c3:35:9d:42:61:32:c1:25:ea:71:11:6e:
2e:96:01:10:6a:01:2d:1c:17:85:9c:cc:3c:2d:4f:54:8b:9c:
cc:a7:f4:0d:39:7e:77:78:d7:1f:a9:e4:1e:7d:c7:4e:10:a9:
16:41:76:2c:d4:43:35:4e:8d:76:4f:97:17:d4:9a:57:7a:4a:
87:59:38:ba:41:7c:54:18:92:e3:d7:09:b6:47:06:7e:1d:78:
24:81:a6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:21 2025 by rpki-client