Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
File: KT0QRM1I1hcW11ngIN29qoFNXNU.mft (raw, json)
Hash identifier: Url+TFPCpujYG20Q46zhRjm3HIktggaMXZt0m30v/Ss=
Subject key identifier: 74:6C:9D:88:D9:A1:7C:E6:43:BC:F9:3F:E6:0E:3C:FC:73:D1:D4:BA
Authority key identifier: 29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5
Certificate issuer: /CN=293d1044cd48d61716d759e020ddbdaa814d5cd5
Certificate serial: 019651C8C247EC903F5FD4D770EF3D924AFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
Manifest number: 0D03
Signing time: Sun 20 Apr 2025 06:00:33 +0000
Manifest this update: Sun 20 Apr 2025 06:00:33 +0000
Manifest next update: Mon 21 Apr 2025 06:00:33 +0000
Files and hashes: 1: KT0QRM1I1hcW11ngIN29qoFNXNU.crl (hash: wshUY7KjO6KAGP/J189SuCBLKPq8fI8DmSDIToacvBQ=)
2: dJ6Z6uHBiaScsgFwBNYwQYgTmkk.roa (hash: A47IWxTys6UPyaxxT7KgUDJag9HKcyHJ4nrmIQJOjaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:c2:47:ec:90:3f:5f:d4:d7:70:ef:3d:92:4a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293d1044cd48d61716d759e020ddbdaa814d5cd5
Validity
Not Before: Apr 20 06:00:33 2025 GMT
Not After : Apr 21 06:00:33 2025 GMT
Subject: CN=746c9d88d9a17ce643bcf93fe60e3cfc73d1d4ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d9:47:c3:e9:36:08:e0:f3:69:1c:a1:ad:f4:
82:99:56:e4:a0:09:4c:c6:c3:e0:57:fb:f8:c3:5d:
8e:dd:04:6a:2f:8a:c7:b1:31:ab:57:d8:3b:2d:24:
0f:a0:fe:2e:ce:77:72:ad:f0:c0:36:72:e2:8e:3a:
5b:13:7c:43:44:41:b1:eb:2d:2c:c7:95:d0:7b:75:
8f:61:fd:c5:89:2d:53:35:a7:8d:a7:f9:fe:6a:9d:
41:5e:9c:c6:c1:e2:6c:4f:ac:4c:1f:e1:54:13:35:
d5:31:fc:e7:5e:62:b6:3c:73:94:fb:43:42:46:1b:
b2:be:e9:14:b2:8f:19:9c:c2:59:46:1a:5e:11:bc:
aa:42:94:11:e9:eb:8d:9a:8d:88:bf:aa:10:22:52:
9c:06:00:d4:92:30:7f:ac:a5:68:fa:4b:38:5d:78:
7f:0a:6b:ad:27:8a:7c:ca:f6:aa:07:77:fa:1d:a7:
8b:46:2c:02:3e:a9:1e:c5:d4:58:25:31:84:a1:da:
27:55:a8:d4:41:02:a7:2a:96:05:24:28:87:4f:bd:
cb:a0:da:55:76:c5:bb:09:6a:61:31:30:13:f4:32:
e3:aa:2f:5f:b5:28:67:68:20:c6:cb:f7:a7:92:29:
96:6e:2e:6d:20:c8:87:2f:6f:13:1a:32:79:27:94:
e0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:6C:9D:88:D9:A1:7C:E6:43:BC:F9:3F:E6:0E:3C:FC:73:D1:D4:BA
X509v3 Authority Key Identifier:
keyid:29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:12:7a:b4:d6:3b:9f:44:34:6d:f5:8a:65:be:94:84:9d:63:
bf:c8:55:95:5c:98:72:2e:1c:5c:4d:e1:93:bc:ff:a3:4e:77:
1d:92:55:74:ce:f6:40:3a:d9:58:39:e3:13:bf:0d:5d:8b:7b:
9f:4d:24:ad:57:22:e6:74:9f:15:cc:a8:b2:ec:1e:2b:d1:f8:
67:0b:0d:b8:57:94:8b:c0:1b:51:a6:f0:5e:99:b2:9b:d8:ca:
02:dd:67:e8:e6:8c:b0:cf:bd:b7:5b:73:6a:3c:4b:e4:ae:e6:
d5:f0:0b:37:53:27:48:3e:28:61:8d:50:ce:5d:52:2f:12:6b:
0c:a7:6b:11:69:49:1a:65:b4:23:f5:0f:c5:da:f6:d6:0e:56:
b3:1f:78:e6:55:63:a3:d2:ba:17:e8:50:2f:15:cf:c5:ac:9d:
77:e6:57:52:07:3a:f3:12:22:aa:23:00:83:10:a4:14:f3:e7:
08:72:af:88:1a:79:39:14:38:30:b2:44:ea:a3:bf:91:08:5c:
9b:c9:8b:47:ce:6e:aa:41:5f:18:64:3d:82:12:aa:11:f7:d5:
c7:99:ad:75:43:f9:80:35:19:5e:be:18:64:04:04:30:fc:59:
2a:0c:b0:51:ac:97:0c:f8:9f:f7:fb:ef:67:89:c4:e6:21:04:
6b:fe:85:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:55:32 2025 by rpki-client