Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
File: KQzE0K1dr8J6pONC-oDjSBToRcM.mft (raw, json)
Hash identifier: FG4V3tWEUTz17RYR26xBDKkf9DiNQOQT/wXxqJA6TGA=
Subject key identifier: A2:E8:C8:66:A0:25:76:54:B8:F5:A6:01:B2:E8:52:6B:90:9E:1D:BE
Authority key identifier: 29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
Certificate issuer: /CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Certificate serial: 019652DB5B6672D7E5677DC43391C78A3AE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
Manifest number: 053A
Signing time: Sun 20 Apr 2025 11:00:29 +0000
Manifest this update: Sun 20 Apr 2025 11:00:29 +0000
Manifest next update: Mon 21 Apr 2025 11:00:29 +0000
Files and hashes: 1: 187N4PB5lNzYnkhVyKxTgG2ufTQ.roa (hash: nnFT2Pv1VSMMW5/AFw9H17xWytd4IEI7JaypDZR0hFg=)
2: KQzE0K1dr8J6pONC-oDjSBToRcM.crl (hash: 1pvJ7ck+0FIvsKqX57S9x2dL4Hqz8WI5o20MtcaW8u8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:5b:66:72:d7:e5:67:7d:c4:33:91:c7:8a:3a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Validity
Not Before: Apr 20 11:00:29 2025 GMT
Not After : Apr 21 11:00:29 2025 GMT
Subject: CN=a2e8c866a0257654b8f5a601b2e8526b909e1dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:21:28:12:73:67:f2:1f:43:e8:ad:41:92:06:
72:eb:1b:97:77:37:34:02:ed:a8:ec:66:c7:ba:fb:
65:71:41:3f:53:06:46:43:5f:44:8c:fe:fc:30:9f:
ed:c6:27:a8:cc:cb:29:2c:3f:96:5b:52:c6:e9:d1:
af:e5:c0:7b:f1:4d:7f:7e:ea:dd:ac:c0:70:a8:0e:
75:12:f0:e7:71:14:8e:9e:7e:ec:d7:3d:de:3c:4c:
23:99:93:2b:b1:9e:68:c9:1b:06:22:09:06:d4:7b:
ec:c1:ef:4f:e6:bb:2b:18:97:40:de:9e:49:22:c0:
54:6b:8b:3d:a9:20:22:66:32:3b:f1:ca:39:02:63:
1b:79:f4:6c:18:b8:61:cc:30:c0:9e:c1:b0:49:af:
89:12:a8:d3:00:6a:fe:98:df:75:c0:4d:53:d3:a8:
2c:39:e2:0e:c7:5e:1a:1c:c5:9c:92:c0:f8:af:61:
59:7b:a9:b5:94:88:e5:b3:c7:15:b9:03:0c:45:7d:
dd:9e:c3:c4:0a:3a:bf:60:e2:c9:20:11:57:6c:e2:
c6:b9:94:a1:26:69:57:f8:cd:68:32:a4:fa:40:33:
cd:28:49:47:3a:21:f6:7a:9f:26:a2:0f:e3:4f:e6:
82:ad:a3:5d:63:fc:f9:8f:8d:22:16:bc:92:fc:93:
45:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:E8:C8:66:A0:25:76:54:B8:F5:A6:01:B2:E8:52:6B:90:9E:1D:BE
X509v3 Authority Key Identifier:
keyid:29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:bd:e4:e3:b1:7b:cb:77:f4:4b:c0:8d:9b:27:11:74:c2:a0:
b1:9f:67:e7:1b:80:1e:2e:87:41:e3:c1:2b:3a:db:c9:a2:d0:
19:2c:aa:08:e0:70:34:10:f6:6a:d6:34:d6:bf:d8:10:07:58:
97:6c:05:70:77:ec:d3:bd:ad:b3:4f:db:e4:5a:3d:91:ee:41:
65:42:2c:ab:9b:dc:98:78:c2:a8:13:80:02:44:1b:65:6b:22:
5f:c6:66:7f:c3:ef:54:51:b6:84:6f:ca:22:0c:25:45:d8:b5:
b7:7e:1e:fe:60:81:57:16:bc:31:29:2a:84:e8:2b:7e:c0:05:
6f:da:5a:3d:01:3c:9f:de:c7:6a:9d:d3:95:9d:cd:4d:61:a7:
75:93:7f:07:79:8c:af:cd:e7:fb:7b:d4:d8:94:c3:7d:4a:de:
a5:17:f3:26:e7:3e:df:f5:1d:b9:5e:4e:a9:b1:a2:bc:1e:af:
50:d5:fd:db:86:9e:d0:59:27:ae:ef:c2:44:a3:b8:2f:a0:72:
b1:15:e3:17:91:71:2c:54:72:7a:0a:29:ed:48:53:01:9f:7b:
29:92:d7:66:3e:ee:a1:dd:d8:c4:3a:d4:ca:78:71:52:9f:b9:
13:54:17:96:a7:90:54:43:0c:f8:be:e9:19:00:f7:fa:3b:1a:
fa:59:9c:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:56:03 2025 by rpki-client