Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
File: KT0QRM1I1hcW11ngIN29qoFNXNU.mft (raw, json)
Hash identifier: WiA6UaS8TSuSO9lPITIFft1jlxP8Gp0YpNJmfibv0ok=
Subject key identifier: 4F:32:A3:3D:1C:09:C1:C5:25:77:AB:18:B9:E3:84:57:25:C6:35:70
Authority key identifier: 29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5
Certificate issuer: /CN=293d1044cd48d61716d759e020ddbdaa814d5cd5
Certificate serial: 01951134F7B25711269479755F31512AA9E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
Manifest number: 0C5D
Signing time: Mon 17 Feb 2025 00:00:38 +0000
Manifest this update: Mon 17 Feb 2025 00:00:38 +0000
Manifest next update: Tue 18 Feb 2025 00:00:38 +0000
Files and hashes: 1: KT0QRM1I1hcW11ngIN29qoFNXNU.crl (hash: PASw19liigbR9OJxDv6z/MlUf2+9KxlGRmg7r4HTLO8=)
2: dJ6Z6uHBiaScsgFwBNYwQYgTmkk.roa (hash: A47IWxTys6UPyaxxT7KgUDJag9HKcyHJ4nrmIQJOjaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:f7:b2:57:11:26:94:79:75:5f:31:51:2a:a9:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293d1044cd48d61716d759e020ddbdaa814d5cd5
Validity
Not Before: Feb 17 00:00:38 2025 GMT
Not After : Feb 18 00:00:38 2025 GMT
Subject: CN=4f32a33d1c09c1c52577ab18b9e3845725c63570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c3:86:33:df:48:a1:5a:b2:62:57:c0:e1:e2:
03:2b:ec:1e:1d:91:07:6c:0c:c7:70:03:1e:25:03:
97:8a:aa:df:05:49:d2:83:9a:29:5e:17:be:af:cc:
73:9d:5e:44:42:c3:4b:8c:48:c5:0b:ad:45:28:7d:
d8:1b:07:7d:ff:59:c9:c1:04:00:53:50:88:2c:cc:
5f:25:30:a3:19:7c:50:c1:93:49:fb:10:07:cd:70:
02:1b:92:f5:c6:08:89:ab:6e:2a:ea:f6:d0:d3:c3:
7f:ce:e8:85:4d:34:20:a4:69:f6:7a:72:e6:e6:5c:
b3:44:bf:9a:fe:29:a5:a8:c3:79:3d:fe:c1:0d:63:
9d:39:c9:67:09:90:28:b7:42:fe:25:79:00:5a:be:
d3:ff:9c:96:0a:1d:9a:d7:ef:75:2b:e5:2b:51:c5:
da:ab:ee:3d:d7:c8:93:7e:b9:5f:77:dd:25:ed:d2:
d4:45:c1:e6:d3:5b:d4:d1:4d:dc:ee:b9:0f:1b:c7:
77:e3:ad:38:37:c7:c7:b0:11:45:7c:1d:2d:01:05:
61:e3:3c:a4:70:1c:f7:70:67:37:4d:52:2f:f7:a7:
6f:61:37:df:53:57:e1:f4:1f:00:0d:82:66:af:f5:
44:6d:f9:59:5f:bf:a3:36:64:8c:06:91:c4:2b:c7:
b0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:32:A3:3D:1C:09:C1:C5:25:77:AB:18:B9:E3:84:57:25:C6:35:70
X509v3 Authority Key Identifier:
keyid:29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:11:6f:a1:cd:65:d3:a2:c5:1d:be:aa:1d:76:ee:e1:d7:3b:
4d:14:ef:15:42:23:95:36:93:cf:c3:4a:98:1b:52:66:42:d6:
f2:9f:96:bc:d3:62:18:5a:98:7a:1c:bf:fd:42:a8:8e:56:b7:
df:0f:64:56:f0:0e:ff:3b:a0:ca:f9:98:93:d4:63:99:6d:da:
80:c2:fc:f3:de:e2:d7:d7:35:12:fc:68:56:1a:8c:d6:4a:9e:
7e:ed:59:7a:93:ee:9d:14:5f:d9:2e:89:d3:a0:07:e1:ff:bc:
32:e5:88:45:80:5d:dc:8f:b7:3d:ce:1d:5f:72:6a:47:f7:44:
1a:64:93:de:80:63:aa:f3:4a:71:51:35:4d:d9:84:a9:36:ac:
91:ef:92:d7:5c:8d:38:c7:db:1e:8e:18:7e:af:4d:ba:6e:bb:
14:16:4c:7b:fb:f1:7b:26:cf:43:cb:1c:49:05:ab:4b:50:4e:
9d:46:8b:e7:de:5d:0a:8f:93:a6:25:1a:ef:84:32:9f:f7:87:
12:6b:fc:7c:48:6d:f1:74:e2:83:79:09:dd:5c:d6:90:83:aa:
51:95:cd:54:b6:a7:d7:26:f6:e7:cd:f7:51:86:50:0b:8f:62:
7d:5d:ad:27:57:87:84:8e:62:72:51:fa:8b:2b:5c:18:62:27:
32:93:a7:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:31 2025 by rpki-client