Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
File: KkRyM2ydAqSIzdd1NNZfsUZewJo.mft (raw, json)
Hash identifier: Uy9c6QWztrkk+drANJcNJ1xMFj0JYBKI4OY33I94WhQ=
Subject key identifier: 90:EE:00:36:71:6F:67:CC:4A:3B:3C:12:D9:75:E5:AB:EE:71:74:39
Authority key identifier: 2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
Certificate issuer: /CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Certificate serial: 019510C706E03AB845E9239C6A302133927B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
Manifest number: 1455
Signing time: Sun 16 Feb 2025 22:00:33 +0000
Manifest this update: Sun 16 Feb 2025 22:00:33 +0000
Manifest next update: Mon 17 Feb 2025 22:00:33 +0000
Files and hashes: 1: KkRyM2ydAqSIzdd1NNZfsUZewJo.crl (hash: Tz+/2Wqv1YWRmSn5zTpIw0cK/7HJG1HW7uoJ/R/oglw=)
2: _x206HZGagtA6dAvfxStsmKc3n4.roa (hash: b78aj5rvx2Xy9g+pAEN4tSwQJDBl/+csOAL8uop4FGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:06:e0:3a:b8:45:e9:23:9c:6a:30:21:33:92:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Validity
Not Before: Feb 16 22:00:33 2025 GMT
Not After : Feb 17 22:00:33 2025 GMT
Subject: CN=90ee0036716f67cc4a3b3c12d975e5abee717439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d2:59:f9:42:ee:8a:7c:7b:42:83:87:c9:ab:
cd:8b:8d:e8:ea:3e:f9:e1:ac:1f:04:ee:1e:0d:56:
25:e3:37:d2:77:94:82:8c:d1:d8:1e:89:16:f1:e2:
69:84:05:8b:70:fb:30:c5:50:4d:dc:a1:dc:74:f7:
b0:42:c6:a4:29:38:a5:9a:c6:71:9f:4c:3a:64:16:
95:4c:f4:cc:a7:b1:e2:67:8a:e3:fc:fa:50:0f:4f:
16:6e:94:dc:45:7f:dc:2f:1e:69:70:40:c1:8c:79:
ad:bb:a6:9d:03:70:d1:10:63:e5:5b:6a:a9:26:cc:
e4:d4:c5:f6:9e:da:28:d6:a4:ec:41:4a:01:94:7a:
33:04:8b:25:4b:14:b1:f9:40:b5:7d:25:df:f6:a5:
25:18:7b:be:45:f0:4d:f2:f2:46:43:4c:63:f3:fc:
b4:29:3f:35:6f:c4:87:a1:c8:ee:33:de:35:b7:0a:
49:b0:f9:13:58:aa:f4:a1:3d:89:3d:57:ad:03:5d:
43:1c:f9:8b:b2:93:b8:0d:84:4e:14:82:c1:73:29:
d1:72:55:ab:fd:ab:d4:53:e9:87:fd:d2:63:a4:95:
5b:25:29:4c:d8:76:ae:59:af:74:4e:98:e4:c4:96:
2b:de:28:e4:1d:77:cd:97:37:1d:8f:1d:79:11:46:
54:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:EE:00:36:71:6F:67:CC:4A:3B:3C:12:D9:75:E5:AB:EE:71:74:39
X509v3 Authority Key Identifier:
keyid:2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:da:cf:8d:83:89:32:2d:c5:b9:c8:6c:a7:f3:69:b0:d0:cd:
fa:b2:03:4e:96:99:30:72:88:03:79:4f:7b:6e:59:37:93:ab:
d4:bc:68:4c:52:95:f4:7b:78:9d:87:19:f2:04:72:03:5b:8d:
b5:b1:81:e4:ec:af:08:e8:2f:97:43:4a:c5:8a:86:6c:0d:b3:
46:c5:01:cc:9d:66:2c:bd:ce:1f:cf:f5:2d:ec:6a:07:62:cd:
94:3b:d2:2f:d1:16:c6:ec:8b:3e:67:3c:26:10:20:97:a1:2a:
a4:75:63:31:85:8d:69:da:e4:04:a4:f7:ea:f4:54:1e:a7:9e:
1f:ca:5f:f3:d9:50:a3:c7:d6:f6:9d:19:db:05:5e:db:f3:83:
23:2c:e9:c8:2b:bd:46:86:0e:94:8e:06:e4:ef:92:5d:8d:6f:
4d:ea:b3:04:b5:8b:e6:5b:ec:69:5b:ea:1d:1e:87:3a:30:23:
54:66:c1:40:57:cd:37:f5:ba:31:ea:a7:26:fb:d5:5d:8f:b9:
ba:fe:2e:e5:4b:c3:b0:5e:d5:cf:c6:91:c6:9c:f7:9d:9d:43:
75:90:44:12:98:c9:73:24:4e:92:9e:3a:26:61:f8:1b:1d:a1:
0d:9e:04:63:40:85:da:55:d3:40:ba:93:0b:f4:35:36:74:fa:
66:5d:fd:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:29 2025 by rpki-client