Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
File: k9t6NCzZOS76XNM4lHQcqKW09Cs.mft (raw, json)
Hash identifier: Y1UUIjGstTLDF12A2SLD1dIchG9tQIHvpX6RRB9N/Pw=
Subject key identifier: 7B:CF:19:5C:1D:CC:84:03:95:B5:21:47:F3:A0:1C:94:04:67:F7:51
Authority key identifier: 93:DB:7A:34:2C:D9:39:2E:FA:5C:D3:38:94:74:1C:A8:A5:B4:F4:2B
Certificate issuer: /CN=93db7a342cd9392efa5cd33894741ca8a5b4f42b
Certificate serial: 01964BFD9394545188BEA99C8EDFBEF11C67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
Manifest number: 11FD
Signing time: Sat 19 Apr 2025 03:00:31 +0000
Manifest this update: Sat 19 Apr 2025 03:00:31 +0000
Manifest next update: Sun 20 Apr 2025 03:00:31 +0000
Files and hashes: 1: SboGMTB-9QHWroFpAbYSHcl3CKo.roa (hash: rffHNVeJmra0y8Rg18pTmGMriRjMrSI/KkXaHsDinBM=)
2: k9t6NCzZOS76XNM4lHQcqKW09Cs.crl (hash: S+m9oi2+j7qlPxBEDZynwYnFBTzjCa7LDTvq3Lr4GQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 03:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:93:94:54:51:88:be:a9:9c:8e:df:be:f1:1c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93db7a342cd9392efa5cd33894741ca8a5b4f42b
Validity
Not Before: Apr 19 03:00:31 2025 GMT
Not After : Apr 20 03:00:31 2025 GMT
Subject: CN=7bcf195c1dcc840395b52147f3a01c940467f751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c8:fa:26:c9:53:9b:31:bb:62:60:d6:9e:25:
51:ce:78:17:83:2e:6b:aa:c5:7d:60:7f:58:a8:79:
06:7d:f5:cf:c9:14:16:07:87:7c:83:20:ca:2b:42:
13:88:f4:04:d9:d4:e9:9e:52:d1:77:4d:a2:24:7f:
30:1a:4f:2c:3d:62:d1:ea:24:56:77:61:69:1f:0a:
91:ae:68:b5:a5:17:ac:fc:8d:54:b1:6e:3e:65:fb:
13:5d:01:42:45:37:8b:84:ad:aa:1a:56:a3:c9:22:
4e:c6:4f:02:eb:77:67:57:b8:80:4f:37:ac:42:f8:
fd:7e:87:ab:3e:61:88:00:aa:5d:d4:6d:9b:f3:76:
c8:1c:8e:2a:98:c8:0a:82:07:ac:78:f8:7d:33:61:
cd:81:aa:a6:67:bf:31:a2:4e:05:5c:ec:a1:80:dd:
61:61:77:0c:ca:92:e0:6b:52:db:b2:c8:76:fd:e4:
6e:26:e3:4f:10:3c:ed:27:cf:44:9a:8f:e9:5f:f6:
28:5c:1c:30:bb:20:43:c8:ac:f7:24:5f:29:53:51:
b0:c4:28:0f:37:2a:90:84:8c:2e:36:87:94:ce:81:
c6:fa:ea:8b:fc:31:7c:27:38:72:6b:75:8d:b7:a1:
37:26:43:25:62:34:e0:0c:18:3a:5e:47:06:3a:08:
26:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:CF:19:5C:1D:CC:84:03:95:B5:21:47:F3:A0:1C:94:04:67:F7:51
X509v3 Authority Key Identifier:
keyid:93:DB:7A:34:2C:D9:39:2E:FA:5C:D3:38:94:74:1C:A8:A5:B4:F4:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:d1:63:7a:c8:f8:d3:4d:8f:2e:e2:b1:c8:ea:9e:f6:21:eb:
32:eb:6c:05:0b:88:f5:c2:17:4e:c3:cd:31:f4:3e:78:29:61:
10:88:a8:6a:ee:8c:03:f1:d6:f5:05:59:24:6f:bd:c5:24:ac:
04:48:0a:cf:33:36:e5:47:73:69:82:33:27:c5:cb:b7:bc:82:
7b:bd:a1:de:1e:3f:0d:ef:36:dd:f2:45:98:43:40:83:73:87:
96:e5:40:1b:d2:13:cd:4f:1d:0f:2d:0f:5a:df:c0:53:c7:66:
f0:dd:a6:25:7a:7e:74:37:10:b6:cb:fa:af:3c:42:7b:fc:8a:
de:2b:6c:ed:e2:a9:ba:e2:0b:e5:3c:a1:62:e2:ef:1d:2f:20:
82:21:0d:07:bd:10:70:02:89:67:b7:52:30:1d:92:b9:98:6b:
78:d4:e9:8c:4c:c8:0c:07:25:e8:d6:76:fb:9f:a4:01:13:99:
52:b7:f5:31:01:19:36:e4:ad:26:d8:40:5b:95:3e:85:5d:4f:
d7:a4:b8:54:f6:73:b9:e1:21:a8:95:ee:10:3d:dc:6b:e4:98:
7f:06:e8:05:af:4b:b2:61:3e:5a:69:87:e3:8a:0b:e1:85:c3:
9d:a7:9a:31:dc:30:7c:7c:48:83:8f:a9:0b:37:70:73:b0:b3:
83:0f:0b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:27:56 2025 by rpki-client