Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: b8Lmue5jWAf0i34FbinLwBhveoN0xDa37qbjwCh6lYw=
Subject key identifier: C2:04:2D:2E:86:D2:0D:78:09:8B:BD:1F:4C:1E:F8:FD:07:CF:99:95
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 019655DCD1832EBA6A5E91008C2DD62EE7AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 08B0
Signing time: Mon 21 Apr 2025 01:00:56 +0000
Manifest this update: Mon 21 Apr 2025 01:00:56 +0000
Manifest next update: Tue 22 Apr 2025 01:00:56 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: h0BcNhUQjo2nHrZO/S3FzMqXvRdXOMva+S3AnocvGAk=)
2: sEY4t-bPe6btAR7wv3UJWwU-X2E.roa (hash: aU4yEzDR1E1BJAYcSFYYldSWQZ2ELBxfjYhJldcUrMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dc:d1:83:2e:ba:6a:5e:91:00:8c:2d:d6:2e:e7:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: Apr 21 01:00:56 2025 GMT
Not After : Apr 22 01:00:56 2025 GMT
Subject: CN=c2042d2e86d20d78098bbd1f4c1ef8fd07cf9995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c2:52:bb:c2:85:ee:9d:0a:e2:48:fc:dc:37:
f2:cf:7b:03:b5:de:de:04:b6:76:8d:ba:23:5b:0f:
be:1b:01:a9:56:2e:83:e3:0c:34:18:aa:be:d6:c0:
47:ec:91:70:e6:b6:57:ae:31:f9:f0:be:fb:9f:49:
04:2c:15:22:cb:89:82:31:4e:f7:d6:fe:f0:b9:fa:
83:fe:4c:cd:0c:fa:d8:5f:6b:21:46:b7:95:32:a7:
72:cc:da:10:1b:ec:27:7b:e4:96:da:e4:f1:8f:ca:
21:c3:ad:67:e6:f8:8e:7c:0e:dc:81:57:c2:96:61:
56:1e:26:5a:99:5e:22:2b:85:55:a0:a3:b0:f3:a9:
41:ce:1e:e9:21:9e:1a:69:f1:fe:c4:2a:d2:12:f6:
f8:d9:a8:ba:3c:a1:64:a7:e0:2d:4b:94:53:67:fa:
76:c3:4f:e2:3f:6f:14:c1:db:f1:9b:40:3d:64:73:
ae:e8:fe:f4:65:4d:7a:8e:85:92:ec:4b:2b:ab:48:
80:f4:58:8c:68:37:36:40:7b:12:54:8d:36:27:16:
2f:4b:65:ba:18:fe:8d:87:a5:ca:e2:2f:58:68:2a:
cd:6f:7a:e0:bd:8c:bd:de:2b:5b:b7:b7:5f:06:ce:
e3:ea:71:71:f6:d8:96:3f:9e:54:96:48:49:91:0a:
6d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:04:2D:2E:86:D2:0D:78:09:8B:BD:1F:4C:1E:F8:FD:07:CF:99:95
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:aa:41:d9:87:be:3e:e5:83:7c:48:ef:80:17:d3:65:36:9b:
d4:04:e5:c8:6e:a2:48:e7:e8:ac:09:7a:78:13:a7:46:b0:02:
ee:10:1e:36:3c:67:ec:23:13:dd:0f:7f:8e:19:03:26:29:19:
27:70:41:fa:be:9d:f0:4f:8d:31:1e:9c:16:2d:ef:d9:8d:ae:
09:67:71:93:90:3b:54:17:4f:1e:b7:53:59:6d:0e:a8:11:11:
99:ab:e7:a6:da:ae:a5:07:f5:f1:f9:45:45:8b:bd:cb:9d:4b:
df:9a:98:39:f5:9a:f2:3b:f8:30:3b:de:f9:18:7f:76:32:11:
19:bd:78:4b:a6:b8:eb:73:6b:41:8b:6b:ac:18:27:01:a0:31:
1e:80:df:07:f8:6e:ae:62:5e:00:d3:88:c7:93:c4:61:1e:8b:
d9:e3:13:84:55:cc:34:61:2d:af:fc:0e:d5:b1:b0:41:f7:af:
83:02:e1:88:1c:25:19:28:06:a6:60:cb:f4:cc:d5:a1:e6:55:
c8:c1:73:b6:12:b4:03:b0:97:2d:fb:71:a3:5e:e9:61:76:3f:
9f:d4:4d:4c:6a:c8:da:ab:93:22:7a:a2:2a:b7:d1:6b:83:53:
d8:d3:e4:73:b9:cc:cf:4d:a3:88:3c:9c:6e:fe:31:70:73:34:
ae:bc:63:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:30:40 2025 by rpki-client