Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json)
Hash identifier: 6QKIGOHU1Z2OvtYlX+g7ALz8yLZaUCxH6Ex+2j9nwAA=
Subject key identifier: 6E:93:93:2B:26:B7:4D:0C:7C:DB:E5:23:7F:03:8E:85:3B:F8:30:B1
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 01963B7826DDF9B50544A003369689886946
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
Manifest number: 14EE
Signing time: Tue 15 Apr 2025 22:00:52 +0000
Manifest this update: Tue 15 Apr 2025 22:00:52 +0000
Manifest next update: Wed 16 Apr 2025 22:00:52 +0000
Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: 29ReM7l4T/gVthBhKpOxvcx0lLGdrm0zBV14jYUCxpc=)
2: qCYAPp7Dim0U2WN8VdnzBt9dUOY.roa (hash: A0zVfMWFcmAvQiJtyOik4/Esuwb1ukoj8nbTE0+n850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 22:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3b:78:26:dd:f9:b5:05:44:a0:03:36:96:89:88:69:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: Apr 15 22:00:52 2025 GMT
Not After : Apr 16 22:00:52 2025 GMT
Subject: CN=6e93932b26b74d0c7cdbe5237f038e853bf830b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8c:06:eb:06:e9:50:4f:f3:c3:99:f2:3a:d2:
cb:76:21:64:54:ce:a3:49:e3:ce:44:e3:c5:59:6e:
68:71:84:e7:23:ea:9d:50:4d:8d:5a:48:46:45:f3:
88:22:21:70:9c:30:01:86:f7:af:56:dc:24:f7:d3:
af:09:2b:e4:fa:69:71:25:06:eb:a0:87:3a:b6:ca:
f5:7a:53:f1:20:a6:f2:50:46:a2:fc:25:b0:95:9c:
13:33:67:57:7d:5b:fb:3e:37:36:f2:bc:8a:10:a6:
c3:ed:7f:77:94:29:3a:64:57:03:70:74:88:45:a7:
06:f4:04:c6:69:4e:15:65:61:00:39:99:bb:c1:63:
4a:7a:c9:b6:d4:17:31:a4:48:2c:c2:02:e8:d7:fa:
89:2f:ea:89:4d:bb:90:b6:5e:5e:3b:8a:d1:25:50:
a6:20:73:44:93:5b:bd:b1:bc:c8:97:25:ac:4c:eb:
9f:01:2b:b5:53:0c:84:c7:e0:c6:b4:8c:93:c2:2d:
89:52:d6:a9:56:64:a7:cb:f4:60:f4:97:da:7e:9e:
cf:ea:76:e8:3a:fa:49:92:7a:8b:9b:4d:cf:bd:79:
a9:a5:b7:ce:80:31:11:c1:f2:b5:3b:26:4b:38:c0:
30:67:f9:55:a9:9d:76:f0:76:cd:d3:03:bf:2b:64:
78:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:93:93:2B:26:B7:4D:0C:7C:DB:E5:23:7F:03:8E:85:3B:F8:30:B1
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:4b:38:92:b2:d4:8d:5d:60:f9:23:94:c0:ed:aa:eb:e2:03:
f8:79:86:14:95:4e:49:21:c6:22:fd:bc:2a:31:27:21:64:e5:
a5:ef:47:36:d9:9f:63:05:b1:83:96:37:96:ae:94:b5:ba:7b:
eb:58:9e:75:c1:d9:fa:51:06:33:2e:da:2b:28:db:0b:43:07:
6a:b7:3d:34:fd:ee:66:67:1a:d6:3f:ce:7a:e9:a0:c2:df:07:
50:a8:88:6d:db:fa:c5:b6:64:42:96:27:43:c7:51:7e:a0:49:
fb:16:d2:f8:67:40:fc:10:7e:7e:be:35:d9:72:ca:9b:7b:5a:
13:21:64:17:7a:84:17:17:9d:58:7c:28:5d:80:20:aa:9f:f0:
ec:f0:d0:ab:96:54:e5:a6:0e:a9:5e:d5:10:8a:7f:c8:b5:77:
59:1e:d1:b6:17:40:ec:cd:f1:4c:a7:85:7d:67:bf:d9:e3:74:
a7:ef:fe:1b:a9:d8:b3:e8:b3:65:fd:49:6a:a4:a9:8c:bb:4f:
0f:f5:5f:8c:a8:eb:ca:d8:56:4c:4e:1c:67:07:77:71:67:50:
b2:6f:b7:d1:aa:de:80:8d:63:e2:d9:49:9f:c5:e6:a0:b6:d4:
43:56:e6:25:1c:83:bd:7e:11:22:f6:bf:d6:62:39:d6:3c:7b:
dc:df:5a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 04:52:59 2025 by rpki-client