Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
File: KkRyM2ydAqSIzdd1NNZfsUZewJo.mft (raw, json)
Hash identifier: LBbRPDrp9c0qJ3I+GDPFhueuwGLV3zYUGzT1zvVN0lU=
Subject key identifier: 33:70:64:F1:2E:BF:CD:15:0F:24:E1:77:66:BA:1B:FB:1F:62:EA:8C
Authority key identifier: 2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
Certificate issuer: /CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Certificate serial: 019643D61674E714BF3EB1F21829F1484C3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
Manifest number: 14F4
Signing time: Thu 17 Apr 2025 13:00:25 +0000
Manifest this update: Thu 17 Apr 2025 13:00:25 +0000
Manifest next update: Fri 18 Apr 2025 13:00:25 +0000
Files and hashes: 1: KkRyM2ydAqSIzdd1NNZfsUZewJo.crl (hash: IS7iybRkp2DwGGu81yPM5mBhrDJD+W3GdYUJmrCd16U=)
2: _x206HZGagtA6dAvfxStsmKc3n4.roa (hash: b78aj5rvx2Xy9g+pAEN4tSwQJDBl/+csOAL8uop4FGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:d6:16:74:e7:14:bf:3e:b1:f2:18:29:f1:48:4c:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Validity
Not Before: Apr 17 13:00:25 2025 GMT
Not After : Apr 18 13:00:25 2025 GMT
Subject: CN=337064f12ebfcd150f24e17766ba1bfb1f62ea8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:01:78:dc:62:db:7b:c7:a7:92:c4:5a:80:cb:
9b:f5:45:4b:8f:f5:17:8d:9a:a2:63:53:cc:c6:14:
fb:fd:f5:29:ba:11:eb:34:83:f2:bb:4d:b8:c9:35:
bd:7b:f1:90:78:68:6c:ae:6b:05:3e:98:c1:df:d5:
94:a5:a3:9a:8d:a3:9e:cb:cb:98:cb:c1:b2:4b:2c:
dd:01:2b:37:ad:8e:d8:a7:3b:f3:52:c0:cf:90:67:
ae:99:5f:4d:53:f2:a4:d7:be:03:2c:cb:76:76:55:
a2:96:c8:55:7c:e1:84:66:d7:e7:f8:da:51:6d:3d:
a4:b5:55:de:82:06:f1:80:c7:a0:37:f3:b1:f3:30:
19:25:bd:fd:c0:69:e7:8d:81:ad:15:75:a4:12:14:
2c:94:0b:27:f5:95:0c:f1:46:09:01:70:af:8a:40:
e7:1a:ef:5e:2e:8b:18:a4:a2:8d:fa:a4:7e:11:f2:
fd:28:11:49:27:75:d5:3d:c0:5e:df:9e:c8:c1:ff:
67:c7:ce:16:8b:ae:e7:d9:10:d5:de:ab:9c:c9:f5:
b3:26:a6:2c:e4:49:52:d6:6a:07:48:d3:30:28:6e:
31:34:21:e6:ea:cf:88:f5:28:7b:81:b6:bc:d1:99:
1d:c4:6d:45:fa:54:8b:83:ef:1f:7e:96:a6:4e:02:
3b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:70:64:F1:2E:BF:CD:15:0F:24:E1:77:66:BA:1B:FB:1F:62:EA:8C
X509v3 Authority Key Identifier:
keyid:2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:63:1a:07:65:ae:eb:0e:fc:ea:3d:f3:69:9c:c9:09:6d:f7:
ee:cc:b5:4d:ff:15:f9:bd:ed:e2:fd:99:41:15:1e:25:9e:f9:
69:67:28:5e:bf:ce:20:1d:ad:77:c1:d9:ab:12:87:68:a6:4d:
0e:20:3b:07:e0:ad:44:a0:6c:cc:4e:f6:88:a9:02:31:1c:09:
0c:f5:4f:7f:c9:ca:a0:83:db:74:35:c2:40:24:55:9a:fe:80:
e3:11:b2:32:2e:3b:4d:c5:bd:e1:fd:c2:2d:be:78:85:aa:4a:
13:80:04:fa:ba:a9:a9:a5:48:13:3b:7c:a6:3a:15:1a:dd:b0:
e1:d9:0f:62:6f:d7:a1:78:e6:e2:17:2b:fb:d6:7e:cd:0f:e9:
b1:24:bb:b9:95:83:9e:99:89:bd:03:b8:7b:42:d2:51:89:8a:
bc:5b:75:98:f1:8f:31:31:9f:be:ca:0b:38:8a:01:38:ec:ce:
df:df:b6:40:61:35:40:a3:89:78:3f:d0:86:b4:bb:9c:54:15:
4b:aa:c6:5e:e6:78:5f:96:1f:03:bf:43:56:b2:68:a9:92:6f:
51:6b:73:8e:3d:40:23:3b:5b:28:95:76:1e:a3:db:97:7c:68:
78:96:31:9d:9f:6e:07:d2:62:6c:c9:3b:62:38:43:6f:73:c8:
e0:cb:12:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:37:32 2025 by rpki-client