Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
File: KqJOWBL8wxBrnrCusA5ie6I10FY.mft (raw, json)
Hash identifier: +tg5VPWBhW1vQFZYt3PbWEOBfzrTqpDYiOnrlHCEV/g=
Subject key identifier: 43:67:CB:5D:9B:E7:C9:5F:C7:FA:26:28:AA:20:27:DE:30:B8:4A:6D
Authority key identifier: 2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
Certificate issuer: /CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Certificate serial: 01964179A6C4B718FECE1071CB60F74A1174
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
Manifest number: 0787
Signing time: Thu 17 Apr 2025 02:00:13 +0000
Manifest this update: Thu 17 Apr 2025 02:00:13 +0000
Manifest next update: Fri 18 Apr 2025 02:00:13 +0000
Files and hashes: 1: KqJOWBL8wxBrnrCusA5ie6I10FY.crl (hash: PMngVCdfFmLRAb833lD+S0jlzU99bZDE7KyDqzFmRUU=)
2: cNLYAjPMpLbcGOrpCslyUiLMP34.roa (hash: JmHm3+B47TlFvMWFE2W9uNvIfC/wvizwOPaVYVDTxDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 02:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:79:a6:c4:b7:18:fe:ce:10:71:cb:60:f7:4a:11:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Validity
Not Before: Apr 17 02:00:13 2025 GMT
Not After : Apr 18 02:00:13 2025 GMT
Subject: CN=4367cb5d9be7c95fc7fa2628aa2027de30b84a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8f:a1:c2:0b:f0:9a:90:f1:54:87:16:b1:ce:
29:4f:8b:34:03:83:58:23:35:55:28:5d:eb:d8:b1:
f1:0d:10:8a:89:de:22:34:66:6f:9c:5c:fc:1c:51:
22:21:43:a9:bb:89:91:bc:7e:e4:89:1b:48:3c:21:
6d:d3:92:c0:d4:5b:f4:5b:c7:f9:9f:1f:14:97:2d:
79:4c:fe:c6:d2:75:52:a9:99:c4:58:31:6d:66:7a:
2a:d1:89:2a:fd:6a:2e:8a:87:c4:4f:f6:7a:26:02:
5c:c1:4f:8e:dc:d5:45:81:17:65:a6:49:cc:4b:30:
45:8a:47:7e:f8:47:40:e9:a0:26:83:1c:ac:17:ec:
2b:2f:2e:b1:c8:bc:dd:5a:3a:59:e0:8e:59:16:bc:
af:6b:a1:ae:2f:c1:0f:f4:e6:29:06:17:5f:68:cf:
6b:12:1c:e1:87:ee:aa:9f:3d:0f:06:56:74:2b:6e:
88:6d:b8:df:31:dd:a2:e4:45:4c:fa:c5:b1:6c:36:
78:7a:0d:e5:15:cf:4c:37:89:54:fd:3f:0e:f4:d9:
b2:3b:5b:09:10:61:ac:cb:2f:19:ca:7c:ba:f7:dd:
db:b5:3d:70:1c:03:88:83:34:eb:2b:16:7a:fa:a9:
c5:ac:9f:d6:e8:14:59:d7:1b:28:e3:ff:d9:50:b4:
5d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:67:CB:5D:9B:E7:C9:5F:C7:FA:26:28:AA:20:27:DE:30:B8:4A:6D
X509v3 Authority Key Identifier:
keyid:2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:42:56:ba:d9:b6:50:7f:62:ce:5c:27:28:7a:fd:a3:2d:af:
a5:62:f5:51:ff:2e:99:5c:48:ff:b8:d1:4e:cf:94:06:47:3f:
05:7e:7b:b8:06:35:2a:a6:a5:b1:0b:32:3c:72:1f:39:a2:1a:
3d:3b:66:9a:47:4e:af:e7:4d:bf:18:d2:ce:6a:c6:b6:a5:7f:
e8:91:9b:af:7b:b3:ab:48:9b:24:fa:be:32:06:1a:59:7b:be:
96:22:0a:ca:9e:b9:e1:cc:a3:14:f4:3d:64:76:e8:84:12:5d:
ca:8c:3d:d0:1c:6d:4a:43:3d:0a:90:ec:27:25:bb:76:bf:82:
d6:64:73:f1:be:3b:25:35:48:53:ed:62:a2:6b:7c:ba:fc:b0:
f1:13:97:d7:47:b1:65:2e:e1:86:fa:82:38:ac:f2:16:45:e3:
35:7f:a4:1b:6a:90:f6:f0:db:4b:39:ff:da:59:4a:b4:b4:35:
68:a6:bf:39:80:2a:3e:6f:ff:25:c5:e9:6d:c2:b5:fb:f9:a0:
d4:b7:dc:84:4c:f1:77:29:95:1f:17:61:62:a8:d0:c4:0e:0d:
23:2a:09:65:11:c6:0f:03:2e:d9:83:d0:83:af:11:fe:12:98:
41:d5:7c:b9:da:33:b5:6c:e6:d9:3d:5a:e4:6a:87:20:c3:b8:
c5:93:80:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:50:31 2025 by rpki-client