Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
File: KUoc22jxVM-VQYowjILY2lB3UQk.mft (raw, json)
Hash identifier: /BS8tHusk3/eQOXe8roioOuivB1seU3hZ5lyuuyw1MI=
Subject key identifier: E8:A6:6E:80:0E:57:AD:18:7A:47:1B:2D:CF:1C:EB:38:4B:A5:6D:D4
Authority key identifier: 29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
Certificate issuer: /CN=294a1cdb68f154cf95418a308c82d8da50775109
Certificate serial: 0196146B6CA3ED2D85510394A0FE0267CC84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
Manifest number: 1171
Signing time: Tue 08 Apr 2025 08:01:46 +0000
Manifest this update: Tue 08 Apr 2025 08:01:46 +0000
Manifest next update: Wed 09 Apr 2025 08:01:46 +0000
Files and hashes: 1: KUoc22jxVM-VQYowjILY2lB3UQk.crl (hash: jv7lidsAqQ/XHXE1vRcNjfAN4ZgRbxstOjC2Lj7p8Lw=)
2: KZGod_BqVRdmwfNvBiSAHniE4gQ.roa (hash: 6XoOJiv494XxgxSZpKNQsumj729QUswWc6xs9n2QuB0=)
3: M1t61zFriLUhV6w-rpKhVc5pbtI.roa (hash: SMrR4aeWQHwd+VhRNHme2dIKoEpbr73IPaO3PrfJOhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 08:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:6b:6c:a3:ed:2d:85:51:03:94:a0:fe:02:67:cc:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=294a1cdb68f154cf95418a308c82d8da50775109
Validity
Not Before: Apr 8 08:01:46 2025 GMT
Not After : Apr 9 08:01:46 2025 GMT
Subject: CN=e8a66e800e57ad187a471b2dcf1ceb384ba56dd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:67:80:02:91:5e:eb:b9:e8:ef:b1:9d:43:44:
13:10:ab:89:3a:93:8a:1a:89:12:0f:9b:4f:33:ec:
f3:f2:87:91:35:fa:6a:82:86:70:3c:ac:c0:cd:bc:
ed:c0:0e:de:54:10:65:df:28:ca:8d:e1:9f:a3:33:
8a:25:b6:7a:a7:5a:fa:5e:f7:bb:48:51:22:c1:e1:
76:65:91:25:28:a6:01:b1:99:ae:3e:47:8f:15:b8:
6a:03:a1:12:8d:1e:b3:04:7a:a4:65:31:b7:fd:b5:
bd:86:fc:0c:70:d9:e1:0c:1d:02:e2:99:e4:31:81:
45:f2:c6:6a:e4:cb:5f:e8:81:36:19:52:78:58:f5:
a1:0c:f0:13:f5:8e:2d:ce:37:5b:30:72:02:c3:17:
83:d5:06:cd:13:71:68:2a:6a:7d:8c:e4:d4:9e:bf:
eb:fe:1c:a5:70:99:76:e7:68:73:4a:d7:27:a2:f3:
10:a6:de:ce:90:57:c9:f7:6e:38:32:09:79:64:92:
6f:bd:f0:bd:60:87:cd:5b:5c:cb:a2:da:98:c2:c3:
55:13:7f:08:1a:c9:2a:ba:e8:09:59:d2:87:2e:6a:
cc:b1:0b:9e:f4:21:56:21:eb:b4:99:a2:3e:49:3a:
21:70:33:b1:90:1e:21:c4:96:23:68:2b:40:5f:2a:
be:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A6:6E:80:0E:57:AD:18:7A:47:1B:2D:CF:1C:EB:38:4B:A5:6D:D4
X509v3 Authority Key Identifier:
keyid:29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:69:3f:cc:96:18:50:14:fe:4d:71:15:40:25:15:1a:ac:3e:
07:10:ba:ae:2d:01:4b:d1:2e:b6:4a:1d:d3:19:5d:dd:a9:61:
64:dc:41:6c:72:d7:5a:0b:b1:9c:25:41:1a:b5:3e:1f:a9:e6:
36:32:bc:d6:7a:00:2d:c8:37:f6:60:ac:a2:65:a0:e2:27:fc:
ca:02:e4:9e:2d:2c:de:9e:3e:a2:4e:7b:3b:b4:eb:35:27:f3:
bd:10:f1:29:32:2a:11:37:46:74:23:94:1e:13:ee:04:48:09:
4e:02:34:81:67:cd:d3:26:6a:d9:06:d2:dd:ae:2f:a3:c4:3e:
fb:e1:01:41:15:93:01:cc:d6:ea:3f:f3:a9:4e:13:f0:46:db:
8c:64:81:f8:32:f5:86:c7:ef:c2:90:5b:dd:21:18:5d:51:7f:
50:62:3d:e3:1b:91:1e:8e:9d:a1:23:46:86:1d:c8:29:34:b6:
08:93:04:84:6d:5c:b2:89:91:51:fb:2b:43:db:f9:9c:9f:01:
c7:df:06:f4:20:21:8a:6f:f8:10:bf:ae:3a:ff:f1:d9:e5:91:
e7:35:b4:a9:39:ff:11:ac:ed:1f:68:09:eb:be:b7:93:df:2d:
70:3a:03:16:a3:d0:69:ae:85:45:c4:e4:a4:53:ef:3a:11:45:
1b:02:04:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:16:04 2025 by rpki-client