Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: GnmaoXPBUW+oUjaA3Zv4oyaKzjdBnfZcPZenNRjQayo=
Subject key identifier: 9B:AB:E8:34:7C:FD:64:62:7C:23:16:2B:84:C1:5D:3A:BA:8C:16:CD
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 01965348F4BAE41CBC0B6F8111B5C57C1B54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 13:00:12 +0000
Manifest this update: Sun 20 Apr 2025 13:00:12 +0000
Manifest next update: Mon 21 Apr 2025 13:00:12 +0000
Files and hashes: 1: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: XisZSP6zxkJsvhnlb6+w1RLyXUAzLLLWhH57pBQgQ58=)
2: r4bjJ2cCOInhIlG1f9hIdTm3g6M.roa (hash: aZToxg96BEY8Qvj4uVJxCXKyOgQmRt2zg6OKjNY/eQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:48:f4:ba:e4:1c:bc:0b:6f:81:11:b5:c5:7c:1b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: Apr 20 13:00:12 2025 GMT
Not After : Apr 21 13:00:12 2025 GMT
Subject: CN=9babe8347cfd64627c23162b84c15d3aba8c16cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d5:c7:49:97:88:67:d0:00:ad:54:a2:7d:f6:
0a:31:6d:2e:b3:04:48:68:ee:56:c7:3b:bd:cd:48:
9a:a8:7f:49:e7:cd:15:24:45:8a:39:61:90:f0:bd:
ae:77:fd:6e:e7:41:38:17:5a:93:14:66:6a:fe:94:
0d:4e:b8:2f:4b:0c:4e:d8:45:51:6a:68:dd:37:e6:
a3:f2:2a:48:ac:71:8b:01:94:86:d7:f8:a2:48:af:
65:a1:34:a4:4c:95:ca:91:6b:21:6a:31:e9:d7:da:
53:f9:43:8f:9f:1d:c1:10:88:3e:4e:00:3f:1b:45:
af:1b:fe:bc:97:8a:6e:df:81:61:06:3c:93:d9:d6:
47:f5:80:22:82:9e:7e:11:36:c7:8b:eb:08:a6:0c:
84:18:48:63:a4:d4:bc:f3:aa:6e:e9:1d:9d:c8:a2:
30:8f:09:a7:d2:72:a4:94:97:ee:44:90:8b:44:b7:
94:b2:b9:90:7d:c5:10:a3:f1:5f:ce:0e:7f:a5:99:
43:86:46:5e:e2:be:5d:36:21:be:6a:24:11:62:25:
dd:34:4c:a7:93:b5:bb:cc:33:95:d7:95:54:4a:5e:
68:35:4b:69:3c:60:91:2a:82:b7:69:87:da:5e:df:
f7:ab:4e:3a:80:84:94:06:64:45:c3:79:c8:03:9e:
24:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:AB:E8:34:7C:FD:64:62:7C:23:16:2B:84:C1:5D:3A:BA:8C:16:CD
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:98:37:7d:cd:2d:59:9d:b9:10:24:6e:37:78:f0:f0:b7:2f:
1f:6e:0e:5a:a9:5d:14:71:e1:ce:a5:e4:c5:cd:81:10:c9:98:
54:91:75:e1:bd:e8:fa:a7:83:e6:0a:d0:9f:33:3a:5d:29:a8:
67:7b:38:7b:b8:f1:a9:43:79:01:b8:b5:1c:35:12:cf:1a:a9:
e4:04:97:94:9f:1c:52:79:fa:22:91:b1:86:4d:93:9e:bc:be:
2e:01:24:7a:c8:42:a7:c4:d3:a3:d9:2a:e1:29:2e:ff:f8:a1:
1d:3b:68:cb:25:a6:f1:03:d3:0a:cd:b5:55:98:8e:d2:9c:b6:
96:d7:43:45:6f:4d:f8:52:3a:23:b4:d7:1e:31:e3:8c:07:b0:
61:3e:d7:4d:41:b6:e7:3a:07:8b:ee:b9:11:40:e5:bf:84:93:
a2:3e:a4:ac:c8:82:f6:82:ca:60:aa:c7:20:a9:41:ea:9b:22:
a0:d6:c1:53:b2:8e:d5:9c:e0:47:f7:b1:7e:d4:28:9c:df:0b:
a4:58:56:c0:60:3d:6e:28:07:9b:4b:24:16:f9:d5:74:68:df:
42:93:c0:ca:a2:5d:95:b9:75:80:d2:cf:a1:06:ff:e7:13:66:
2a:7b:17:4b:4a:26:a6:e3:dd:32:e7:30:fe:ee:0c:39:b2:20:
e2:f2:15:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:40:40 2025 by rpki-client