Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
File: KoyNUYbIdxRVvhMbDHz9ZufThlU.mft (raw, json)
Hash identifier: tFktYYE/+rCCpJF7Cbdm2GXbN1IlAEyNxwoKHSCoqWg=
Subject key identifier: D7:94:77:54:B9:91:D3:A8:49:AD:17:1F:C4:CA:B4:A5:26:DB:97:8C
Authority key identifier: 2A:8C:8D:51:86:C8:77:14:55:BE:13:1B:0C:7C:FD:66:E7:D3:86:55
Certificate issuer: /CN=2a8c8d5186c8771455be131b0c7cfd66e7d38655
Certificate serial: 019656EF59CC3D12908472584D619FEF6931
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
Manifest number: 0305
Signing time: Mon 21 Apr 2025 06:00:48 +0000
Manifest this update: Mon 21 Apr 2025 06:00:48 +0000
Manifest next update: Tue 22 Apr 2025 06:00:48 +0000
Files and hashes: 1: KoyNUYbIdxRVvhMbDHz9ZufThlU.crl (hash: M5zPM2VAOxVvHwiHjDO6YkY6U18UHu0cmb7pSM5NXOM=)
2: _L4_714o--k52AHUTKE5ELIZMFQ.roa (hash: ji6+L6kBm6VqOpTZxUmb7EEqHaNzozcu4JNvhJv1V2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:ef:59:cc:3d:12:90:84:72:58:4d:61:9f:ef:69:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a8c8d5186c8771455be131b0c7cfd66e7d38655
Validity
Not Before: Apr 21 06:00:48 2025 GMT
Not After : Apr 22 06:00:48 2025 GMT
Subject: CN=d7947754b991d3a849ad171fc4cab4a526db978c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:94:6b:47:e0:2b:c4:65:97:46:54:a7:56:73:
07:23:f2:c4:f7:10:0e:da:00:6c:f5:08:f7:48:61:
38:30:37:c9:7b:7b:26:2d:a2:3d:43:9d:e8:5a:a8:
2f:f9:90:01:bb:cb:c4:49:a2:57:21:f5:7d:ec:7d:
b1:e2:ea:30:4a:5d:b1:5a:8d:39:11:71:bd:f1:c9:
0c:40:0a:99:8b:96:7f:95:2b:10:30:f9:66:33:d8:
40:da:2c:2f:4f:52:86:3a:06:aa:43:07:6d:c3:3f:
25:e0:35:06:ca:aa:7c:e4:d4:a9:1d:60:61:49:c4:
32:84:c6:29:42:c4:3e:50:df:08:14:05:8d:41:a4:
f5:47:0e:df:0d:e5:28:2c:02:d1:95:00:bc:35:18:
95:e2:33:d4:c5:fe:98:0b:08:31:54:58:c7:0e:93:
da:59:1b:2f:c9:79:38:73:e9:91:d4:35:72:16:39:
3d:50:98:97:7c:15:3f:98:a5:5c:2f:6e:de:88:23:
ad:77:49:f3:3d:c5:69:b1:d5:f7:4f:97:aa:2b:86:
ce:e8:20:ae:a9:7a:a2:02:ce:95:da:de:1d:cc:70:
92:3a:72:7c:5e:ae:94:ac:46:dc:8b:cd:b7:df:c8:
19:e9:4f:d1:95:ec:d5:2a:44:0a:c9:74:6a:ad:f3:
a8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:94:77:54:B9:91:D3:A8:49:AD:17:1F:C4:CA:B4:A5:26:DB:97:8C
X509v3 Authority Key Identifier:
keyid:2A:8C:8D:51:86:C8:77:14:55:BE:13:1B:0C:7C:FD:66:E7:D3:86:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:45:a5:cf:a0:3b:8c:b1:63:f3:4d:e4:17:ef:06:c5:01:2d:
23:b1:a2:2d:71:ac:57:3c:5e:11:f3:2f:56:fc:aa:8d:6a:11:
7c:31:a9:3d:06:94:ed:7d:2b:27:5e:64:6a:57:11:c8:41:6e:
06:45:d8:f9:30:a8:e2:36:2f:83:78:00:24:c1:cb:47:4f:f9:
8d:8d:29:d6:02:b7:60:c2:ef:cc:b2:69:d2:4c:b0:05:c8:0e:
db:87:01:ea:d0:16:4b:aa:b3:12:30:56:a8:25:18:84:ec:a0:
54:a5:56:a3:0c:32:8f:af:40:f8:bb:9e:e1:ae:b2:f2:ce:19:
b9:c2:27:eb:f1:ad:65:90:f9:1b:16:42:74:f6:1b:35:7e:24:
1f:32:2d:21:ad:d5:32:04:15:2d:7c:6b:e9:58:85:88:24:29:
17:88:44:d7:1e:5d:92:ec:2f:1f:e7:22:36:3b:59:de:84:be:
8b:a4:2e:36:76:02:a6:1c:3a:d0:26:ba:21:9b:6b:78:50:9b:
50:53:5e:51:cc:12:f2:ea:fb:d6:a0:be:1e:d6:09:01:00:ef:
57:07:c2:af:3d:06:75:74:b2:1e:c2:ea:02:b3:19:1d:b3:98:
ab:53:03:bf:a8:bc:9f:d9:34:b5:fb:a7:9e:39:24:41:29:82:
d8:47:df:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:19:25 2025 by rpki-client