Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: aWzVAXN/6u8wE7Imi7mhMUnSfZpOvnTBtiSvo2thOY4=
Subject key identifier: 62:0F:07:35:87:C6:4A:E0:9A:A0:22:97:53:8D:98:CF:A9:EA:D0:95
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 019655DD35425902CD59B93A2B53104A6BFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: BC
Signing time: Mon 21 Apr 2025 01:01:22 +0000
Manifest this update: Mon 21 Apr 2025 01:01:22 +0000
Manifest next update: Tue 22 Apr 2025 01:01:22 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: vozQB7Nj2EZgAahBnPX9WpGALqy6dzb9w2t5nbFtXNk=)
2: q2_sbJziOr7rwxyhvKWnkNjMans.roa (hash: 0BH7DATsPfSUKJPP/TZdwOG931UfHO+OV4ftBhPZrwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dd:35:42:59:02:cd:59:b9:3a:2b:53:10:4a:6b:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Apr 21 01:01:22 2025 GMT
Not After : Apr 22 01:01:22 2025 GMT
Subject: CN=620f073587c64ae09aa02297538d98cfa9ead095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:25:0d:2f:b6:74:df:a4:82:31:78:8b:ae:3e:
83:bc:95:0b:ab:82:b9:00:36:9c:36:e8:ee:bc:89:
b9:b6:bf:0c:b6:5e:ab:6c:ad:16:81:a2:1a:2b:80:
05:a5:4f:5c:53:23:0c:3f:9f:dc:66:c6:51:ce:0d:
a5:dd:43:9e:ff:68:0a:4c:8c:c4:d7:a7:30:2a:3e:
a3:49:55:7a:31:3e:5c:f4:d8:d5:82:e3:6d:9e:0f:
54:9d:fa:f3:81:54:cc:0a:4c:9c:79:b2:2e:5a:3b:
0d:86:99:24:b8:2e:00:d2:58:ae:aa:ea:b6:97:d2:
36:07:ac:50:7d:7c:44:05:1d:22:4e:2d:a8:eb:a2:
9b:83:33:94:b4:9a:8b:49:4d:fa:9a:a4:92:fc:dc:
51:3b:dd:cf:5f:71:13:84:f2:ce:eb:0e:f4:72:3c:
fa:4a:ec:7e:6c:05:31:85:8d:92:6e:c2:ce:5d:68:
57:89:54:8d:98:36:50:a0:8a:31:96:9c:55:e0:b6:
ec:bf:4d:6c:31:9f:7b:88:d1:78:7f:00:0e:c3:7c:
a1:b4:86:8e:71:b3:9b:f7:4d:43:4e:ce:c9:a4:c2:
22:ac:84:88:0b:ce:94:c2:30:80:83:83:3c:fd:b7:
78:8a:7f:7e:41:1f:21:b8:a2:a2:09:a1:c7:e5:62:
4a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:0F:07:35:87:C6:4A:E0:9A:A0:22:97:53:8D:98:CF:A9:EA:D0:95
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:1d:cd:42:2e:2e:34:64:40:38:68:58:97:56:43:38:f5:73:
27:1a:77:7b:d9:30:e0:7c:3d:2b:23:69:e2:1f:75:a3:bd:da:
11:f7:f7:43:34:2e:3c:dc:25:07:22:ca:8f:c1:a5:92:f2:bd:
c2:b4:77:7e:0b:23:32:33:c3:00:cf:81:bd:3f:74:dc:24:45:
50:ea:d2:f7:6c:fe:ea:d4:52:22:e1:91:db:27:5e:18:58:2d:
8d:1e:7c:e6:b4:9f:f7:59:9a:8e:2d:04:99:d0:b1:ca:e2:71:
6f:82:8e:93:2b:f1:4a:42:3f:63:bd:6d:4d:19:9f:4c:6f:e5:
b4:ac:99:e8:4a:6f:8f:e0:bf:44:14:9d:52:94:76:c2:53:1f:
ef:c5:ad:2a:59:ad:99:2c:d6:0c:1c:fa:da:6b:8a:10:ea:b1:
3e:fa:e3:79:20:9d:3a:1c:f0:3a:78:63:be:f4:e7:ff:c7:37:
d7:89:9b:8e:17:ac:18:2e:12:9a:e6:2b:34:2e:e1:29:7b:a4:
26:e5:59:69:db:20:aa:ae:5e:0e:17:7b:24:9b:ca:dd:96:d5:
13:e1:08:d5:06:8d:76:56:c1:e0:eb:69:f0:50:b0:b4:f1:a4:
e9:53:0b:e1:bb:a5:3d:27:80:e3:e0:72:b4:00:4c:fc:44:56:
ab:80:9e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:41:28 2025 by rpki-client