Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
File: KvD7S5rcsuyisQbeCok5YVlszRg.mft (raw, json)
Hash identifier: XgHOnWlldB8NWNRLi5siIEQEF00szaQFA/av/eS0Rmc=
Subject key identifier: 1F:DB:EF:B2:EC:A1:69:A0:DB:33:B9:FF:5C:BB:4B:00:20:E8:5D:9B
Authority key identifier: 2A:F0:FB:4B:9A:DC:B2:EC:A2:B1:06:DE:0A:89:39:61:59:6C:CD:18
Certificate issuer: /CN=2af0fb4b9adcb2eca2b106de0a893961596ccd18
Certificate serial: 01964BFDE9C932B9A7E10AA8F88B83BEBEFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
Manifest number: 0B7B
Signing time: Sat 19 Apr 2025 03:00:53 +0000
Manifest this update: Sat 19 Apr 2025 03:00:53 +0000
Manifest next update: Sun 20 Apr 2025 03:00:53 +0000
Files and hashes: 1: KvD7S5rcsuyisQbeCok5YVlszRg.crl (hash: FTMuy1+X59RJu2cjvBFsfyySSVwUUXJOmFbECX76A7w=)
2: zXRn6qUdykmyNBlVs8F5lijyofI.roa (hash: ocGQIF9V1x5fsDLwah9aysnQL0wM33g0zDeGg9Z68IM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 03:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:e9:c9:32:b9:a7:e1:0a:a8:f8:8b:83:be:be:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af0fb4b9adcb2eca2b106de0a893961596ccd18
Validity
Not Before: Apr 19 03:00:53 2025 GMT
Not After : Apr 20 03:00:53 2025 GMT
Subject: CN=1fdbefb2eca169a0db33b9ff5cbb4b0020e85d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c2:c6:49:f2:5a:6b:19:1e:96:7b:56:60:9f:
e5:cc:85:6f:eb:a2:73:dd:b5:c1:be:d4:25:54:55:
62:3c:ce:97:b6:b3:57:b1:84:9a:84:4c:f0:18:05:
7e:f2:84:4b:5e:14:07:86:64:13:ef:3d:be:63:82:
8b:da:f0:16:90:d3:b9:19:d1:f4:bf:29:de:e8:41:
a2:8e:dc:7f:3b:24:be:93:a7:c0:04:0d:89:a4:bd:
94:93:7f:8f:f8:49:e4:84:19:40:ab:c4:4a:7a:b3:
a5:68:a0:b2:d7:2b:1f:ad:2e:c9:82:72:91:3c:48:
6d:9d:b7:a0:6b:f3:b8:5f:e4:bc:37:0b:42:3b:6b:
61:6e:ea:f0:45:f8:90:57:35:3d:5f:35:bf:2a:c4:
db:f9:ba:3e:2e:d9:5f:5e:ec:4a:64:84:7f:cb:a4:
25:c4:d4:50:8b:df:ad:41:69:dc:8a:36:bb:0f:71:
94:d3:c4:2a:02:ae:90:86:e8:5f:1c:3d:7c:f0:7d:
3b:d7:b1:be:16:7d:3f:4a:3c:36:73:bd:79:ad:db:
68:59:a1:e5:26:cb:a9:ab:3e:4c:28:7b:37:d0:e4:
ef:71:83:16:ea:a5:f8:d7:45:62:5f:8d:cb:17:35:
d1:e3:a2:e1:b0:cd:20:50:28:52:32:28:86:d4:4d:
72:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DB:EF:B2:EC:A1:69:A0:DB:33:B9:FF:5C:BB:4B:00:20:E8:5D:9B
X509v3 Authority Key Identifier:
keyid:2A:F0:FB:4B:9A:DC:B2:EC:A2:B1:06:DE:0A:89:39:61:59:6C:CD:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:d9:9b:ca:68:83:8a:70:9b:91:72:e8:0e:31:2e:6a:88:51:
19:4f:69:7b:ec:f9:1d:d2:2a:72:f4:c0:e8:7c:d3:ac:41:cf:
f8:9e:66:18:34:91:90:64:f7:44:2f:11:bc:bb:a4:36:d3:b9:
08:78:45:30:77:94:c1:0d:ff:3d:4c:1a:09:72:6d:ea:a9:a1:
a2:29:85:07:17:51:69:e0:a5:86:01:2f:c9:cd:15:f7:60:c7:
c5:f3:2e:f7:7f:4a:dd:63:3d:3c:ed:8a:c8:c6:a0:b6:59:5e:
93:87:a6:81:db:6b:69:e0:f2:08:21:d6:c8:2e:df:14:c2:71:
22:ae:4b:9c:15:28:c3:15:79:3f:92:74:a2:e5:f7:10:67:14:
0b:2d:ce:85:ee:14:7a:31:21:b1:65:f6:32:b4:a7:36:58:a0:
e5:8e:2f:1c:eb:c9:97:5c:43:b5:99:ec:06:c5:e1:9b:7b:c9:
ba:0f:ec:f4:f7:14:af:9d:ac:c3:82:60:bb:35:99:83:05:a3:
5b:ff:e0:80:8a:58:8f:12:4b:d8:64:18:09:eb:5d:92:5e:7c:
54:0a:56:a6:0f:98:6b:5d:c5:5d:32:fd:0b:e4:3c:21:91:de:
99:b8:7b:1b:76:f7:a1:0a:a9:8f:c7:9b:3c:45:97:08:6b:df:
0e:5c:c3:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:19:38 2025 by rpki-client