Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
File: KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft (raw, json)
Hash identifier: H9n/2ifrvoyoDS9y+FNbjdOfC58eaeKOms9AK1ozJvA=
Subject key identifier: 32:55:79:80:45:39:EC:2F:5D:8F:76:8C:CB:59:86:3B:F9:24:FA:F9
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 019638E5109134431F4FE94F2825FE6A3B37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
Manifest number: 146C
Signing time: Tue 15 Apr 2025 10:00:58 +0000
Manifest this update: Tue 15 Apr 2025 10:00:58 +0000
Manifest next update: Wed 16 Apr 2025 10:00:58 +0000
Files and hashes: 1: CgAYwcYqjGUwI5cuY-inYF9ViL4.roa (hash: DG9lxho2Qdp+1bj1jPdlMwaM6onKyvGHv7zkZeOCV70=)
2: KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl (hash: hgR9yi56C48itdKbMizUqsvI76lLOVBN+AGs5qR6pIE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:38:e5:10:91:34:43:1f:4f:e9:4f:28:25:fe:6a:3b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Apr 15 10:00:58 2025 GMT
Not After : Apr 16 10:00:58 2025 GMT
Subject: CN=325579804539ec2f5d8f768ccb59863bf924faf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f0:23:a3:ec:61:c0:79:6d:f5:56:04:bf:28:
31:bb:b6:50:64:42:a5:87:79:00:9b:3c:f0:bf:d8:
52:db:e5:1d:73:3f:3a:a8:a0:9c:0f:d4:57:f0:4a:
f1:77:46:de:5a:04:92:5c:d0:af:b2:bc:ce:b0:46:
72:58:9a:25:84:55:fd:fd:1c:6b:c4:41:30:04:24:
50:d7:0b:6a:c4:bb:6a:31:5b:c4:e0:22:5e:79:7b:
c8:99:0d:51:dc:4d:7d:12:18:3d:75:a6:8e:e8:8d:
82:37:c0:dc:c6:45:da:6c:dc:b1:47:ef:3e:04:64:
a9:98:fa:df:21:8a:41:63:cb:02:33:cf:5c:82:6f:
de:8d:e7:af:7a:38:69:28:10:ce:0a:3f:87:d8:00:
f5:e1:d5:9a:d1:05:5a:68:ab:ec:86:2c:af:0a:55:
37:50:f0:ab:71:a1:be:4d:87:fc:9b:e5:bb:99:ee:
78:8c:f1:3b:dd:d7:95:bc:48:09:d4:53:18:13:72:
38:ac:b7:dd:33:cd:63:c1:48:d4:7d:f5:13:bb:63:
55:0e:23:36:b6:c6:d9:cc:cf:5d:3e:e7:35:7b:70:
5d:fc:d0:60:70:8a:40:bf:57:d9:b2:44:45:0b:56:
55:4a:1b:f8:0f:65:c9:5f:6e:e0:8a:a7:d8:58:69:
60:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:55:79:80:45:39:EC:2F:5D:8F:76:8C:CB:59:86:3B:F9:24:FA:F9
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:6a:81:63:66:4a:b6:ab:16:f8:ee:65:f5:4f:bf:3c:73:a0:
b9:88:59:e2:23:1b:f7:c3:9f:a4:59:d8:c6:0a:86:36:65:46:
1c:9d:7e:39:9a:2e:bb:9c:cc:1e:c9:08:e1:f8:64:0b:3c:1d:
71:a2:38:de:2c:63:c5:c7:99:1f:99:3f:60:af:2d:2f:da:95:
de:57:f5:ab:25:d5:b0:70:f4:12:6b:96:45:46:f1:c5:9f:8f:
7e:49:4b:f2:0b:01:14:89:8c:5a:83:71:08:60:18:21:0a:6a:
7a:c3:b4:f1:49:4e:6f:7d:0e:3e:94:e7:09:13:a7:d2:fb:ed:
b7:69:24:c2:95:48:3b:df:1f:52:0c:4e:aa:c9:de:9b:c3:31:
ee:a5:ae:6e:ab:2b:9e:79:71:6f:9e:fa:d4:aa:5c:cc:79:83:
89:0d:97:0b:19:65:6e:df:06:4f:d2:3a:d9:39:21:67:ee:bb:
08:49:87:f1:7b:aa:05:2a:8a:58:0e:68:0a:55:85:74:ce:79:
52:7a:40:4d:b9:90:7d:79:5e:65:78:7c:35:d1:04:dd:49:80:
67:5b:1a:f9:91:26:b8:c6:40:a1:02:75:42:41:2d:e1:f6:23:
5a:26:fa:b8:3e:9f:4e:8e:01:75:3a:5c:3a:bf:1b:60:26:60:
3b:0d:1b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 14:18:02 2025 by rpki-client