Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier: 4Bz/W8SduXvSb+BPfgjaONrmaJ9eoI32zhJ2A+7fpJQ=
Subject key identifier: 63:BF:7B:08:94:1E:D6:39:8F:64:9F:74:0B:60:9E:86:40:5D:5E:78
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial: 01961132AADB2CFDD8C420F23531ED32EC4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number: 0231
Signing time: Mon 07 Apr 2025 17:00:55 +0000
Manifest this update: Mon 07 Apr 2025 17:00:55 +0000
Manifest next update: Tue 08 Apr 2025 17:00:55 +0000
Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: rGkHWxDoUHXUvk9W/LCV2tJv/wN5PDMdNPmxmSMMdxE=)
2: OsS2avf_SCsvTL1pRqTL_5n-su8.roa (hash: q2VY8Sbvggao2o4h3H+VtLne6bMzXujw9hwcUuBVuOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:32:aa:db:2c:fd:d8:c4:20:f2:35:31:ed:32:ec:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Validity
Not Before: Apr 7 17:00:55 2025 GMT
Not After : Apr 8 17:00:55 2025 GMT
Subject: CN=63bf7b08941ed6398f649f740b609e86405d5e78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:35:c9:97:ee:2e:2a:23:d7:18:be:bb:3f:8a:
ae:14:68:70:46:f1:ae:21:2c:3c:d1:89:2d:49:97:
d1:f0:3b:ef:38:95:21:b9:0d:bf:db:97:9b:59:66:
d6:97:68:d9:71:b7:9d:58:2e:51:b3:19:c7:9f:68:
6d:3f:85:6f:c9:7a:c1:a4:c2:6f:a9:94:ad:f3:38:
09:76:c7:89:67:a4:b7:73:2c:36:92:a8:ec:35:3e:
d4:ec:fc:03:13:c1:62:82:2b:91:78:4b:db:9f:03:
10:3b:c3:7b:89:84:d4:67:e0:20:16:fa:8c:f0:5f:
fd:60:c5:56:e1:fe:b5:ba:ec:8d:03:e6:38:b0:c8:
56:bc:79:c8:d7:40:54:17:53:7b:5e:62:72:83:a8:
41:b1:4b:b0:2f:24:d7:e2:e1:da:2d:91:4e:4e:77:
39:8d:5b:4a:01:68:65:7b:6f:d7:41:6f:97:61:53:
bf:df:14:d9:11:b1:a2:26:17:c0:93:40:cd:5d:f2:
6f:4d:f0:cf:ff:d9:a7:b3:c0:38:c6:ae:d0:ea:ea:
30:ad:e7:85:fc:ac:25:17:a0:d1:e3:f2:65:62:49:
81:18:92:db:53:b0:07:52:a7:50:4c:af:80:f0:fe:
b1:1c:a5:1e:c8:88:8d:00:6f:41:5a:4f:61:0f:bc:
ce:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:BF:7B:08:94:1E:D6:39:8F:64:9F:74:0B:60:9E:86:40:5D:5E:78
X509v3 Authority Key Identifier:
keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:cc:29:7a:05:bf:86:48:39:63:98:eb:d5:d0:43:eb:be:41:
7b:be:0a:7b:75:68:f2:82:5d:6a:f0:81:73:19:96:89:f2:2a:
05:4a:84:ab:7f:37:3c:a9:1f:18:ec:9f:4a:cb:0b:f9:9b:7f:
77:be:91:b8:51:5e:f4:25:c4:a2:ab:b9:fe:7b:fd:8d:e7:2d:
2d:04:99:0c:15:45:89:04:39:28:58:ee:54:35:8a:06:71:36:
c7:45:d5:3b:72:cf:c8:b7:7e:16:19:4c:c6:cc:bd:23:99:95:
b9:99:a9:3d:63:4b:3c:d1:a0:72:f2:dc:6b:86:80:5c:d9:d3:
8e:3c:65:c3:5e:ab:47:07:d5:e5:e3:9d:8f:30:2c:32:00:52:
4f:86:7a:13:c9:47:d1:11:fe:dc:e6:bf:e6:46:a7:92:61:9b:
f4:1e:66:a8:da:a6:66:e8:5e:3c:aa:6d:b2:72:e2:2b:7a:bb:
8b:11:ff:0c:56:8c:92:78:82:01:ab:73:3a:36:c4:6c:d4:71:
4d:a2:48:b8:c5:f2:62:31:e3:bc:d9:6c:b9:3b:0a:56:89:7f:
93:f3:0d:39:78:a7:ae:d5:18:07:28:e6:a1:51:d0:79:06:00:
c0:27:40:36:1a:ef:c1:86:eb:e4:76:74:04:46:b4:5a:5f:a8:
83:aa:96:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:29:32 2025 by rpki-client