Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
File: kFLex7dhf-OchVDuIMOCIBq5ryo.mft (raw, json)
Hash identifier: 9iv1xzy+Kr7dgAgnJeYmzr31Z+dgQB/i97aI9lUtrGY=
Subject key identifier: 57:96:93:36:CF:A2:59:F0:FC:5C:A4:A4:1E:FB:36:54:86:2F:46:48
Authority key identifier: 90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A
Certificate issuer: /CN=9052dec7b7617fe39c8550ee20c382201ab9af2a
Certificate serial: 019641B114787F7BC2B8B2CFF595759FC796
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
Manifest number: 0F7C
Signing time: Thu 17 Apr 2025 03:00:46 +0000
Manifest this update: Thu 17 Apr 2025 03:00:46 +0000
Manifest next update: Fri 18 Apr 2025 03:00:46 +0000
Files and hashes: 1: DoqnptEmFDIWhd5INYDJmXuCj7c.roa (hash: knJh69OYwi71VIfestV+KfQIeq85PlXtAbjPJg+Zm8w=)
2: kFLex7dhf-OchVDuIMOCIBq5ryo.crl (hash: bvgenl/nJtxXV636UPONTDYjHsE5FYbNS5oi0a8F9oQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:b1:14:78:7f:7b:c2:b8:b2:cf:f5:95:75:9f:c7:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9052dec7b7617fe39c8550ee20c382201ab9af2a
Validity
Not Before: Apr 17 03:00:46 2025 GMT
Not After : Apr 18 03:00:46 2025 GMT
Subject: CN=57969336cfa259f0fc5ca4a41efb3654862f4648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3c:87:38:9f:a8:73:7e:e4:5c:8d:02:9d:d7:
48:44:a7:ae:20:0b:5a:45:4a:5d:35:c0:98:71:aa:
29:81:ac:f3:ba:61:e2:95:8c:35:81:0f:f0:58:6e:
24:b6:bb:e7:64:21:85:c3:dc:2f:bb:29:8f:73:da:
00:7a:83:d1:68:35:24:b4:eb:b2:13:8f:52:6f:a9:
2c:14:85:e6:e4:8c:26:13:38:e1:3d:28:62:e3:5b:
e7:ca:f1:53:df:13:ef:11:78:ad:d7:71:ef:56:fa:
40:1c:12:33:79:d7:6b:32:a7:18:90:1b:a2:01:13:
11:73:1b:58:69:15:68:b4:72:94:98:12:b5:15:58:
fb:28:b3:4a:cb:de:ed:70:52:1e:26:bd:3e:d8:3a:
e9:18:06:39:68:54:87:17:a8:17:7c:2d:cd:1f:f9:
6e:42:45:57:e4:19:3d:e8:ef:d8:e2:15:a9:56:c1:
a0:d3:03:16:7d:b8:31:87:fe:ea:2e:9b:a9:a6:b4:
d8:3d:fb:20:1d:13:ba:4f:76:66:c2:ad:2c:51:6f:
ea:af:c1:61:07:b2:e1:9f:d9:6e:94:33:74:db:03:
71:4b:23:df:3c:0d:d1:cc:17:55:b1:c7:a5:3d:b1:
a4:8e:11:7e:d5:fd:c7:ab:8b:c9:19:0e:14:b5:22:
13:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:96:93:36:CF:A2:59:F0:FC:5C:A4:A4:1E:FB:36:54:86:2F:46:48
X509v3 Authority Key Identifier:
keyid:90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:22:60:31:f8:28:b6:42:6c:cc:d4:ab:d5:cb:f0:87:d8:ce:
db:fd:20:01:18:88:37:bb:97:12:1a:cc:7d:90:2f:8b:1f:10:
8b:43:4b:ca:74:88:85:54:2b:c5:2f:1b:3f:48:29:75:23:ca:
f5:ce:1b:94:ad:c8:30:7f:03:ff:65:12:3f:15:73:4d:c4:a0:
27:0a:ed:e8:9b:ea:54:c9:40:f4:46:db:81:fb:3f:c5:7f:1c:
5e:80:24:72:30:66:c3:f8:ac:1d:df:45:c4:e1:c6:f6:6b:a0:
92:0f:7f:a0:0c:5c:4f:d7:e4:dd:fb:01:59:ce:26:80:f8:dd:
b5:18:e9:65:e9:b3:ca:49:85:ab:68:31:e7:3f:7e:b9:43:a7:
1f:b9:f3:ea:fb:8b:42:b2:dc:91:90:f1:e1:7e:fa:ce:c7:07:
e3:3d:63:70:6b:d3:ba:97:ae:ad:4b:e4:70:07:9d:aa:67:69:
ee:8d:cc:9a:16:42:23:34:25:8f:70:08:0d:94:3f:5b:9f:df:
2c:dd:30:cf:1f:5f:e7:1a:5d:7b:01:c2:57:5b:81:d5:f9:24:
c8:4f:ca:02:77:76:fc:1d:fc:42:dc:1e:cf:ec:2b:c5:28:80:
e5:ec:28:34:61:d9:0b:ca:05:c8:15:b7:91:8b:fd:c5:ce:33:
54:d6:27:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 06:50:51 2025 by rpki-client