Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
File: kRAQDzzHh9YxUwPLf8iNniXlbqg.mft (raw, json)
Hash identifier: RiewU1FvuRpqDhuuQax/+asVL09DJJJZihJzRsV5KCQ=
Subject key identifier: B5:C4:4F:5B:76:30:5B:08:21:DE:28:DB:C3:C1:6C:BA:B9:FE:60:87
Authority key identifier: 91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8
Certificate issuer: /CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8
Certificate serial: 019655375676D7F41A0046796D608C949E6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
Manifest number: 0912
Signing time: Sun 20 Apr 2025 22:00:12 +0000
Manifest this update: Sun 20 Apr 2025 22:00:12 +0000
Manifest next update: Mon 21 Apr 2025 22:00:12 +0000
Files and hashes: 1: bRhGJqv0p8mJ4Y5Zi3hw3lkQdsk.roa (hash: z2JalsCXdVTGdLdK888EdCX/YOon+kmiEVhkkUSf3/w=)
2: kRAQDzzHh9YxUwPLf8iNniXlbqg.crl (hash: jDBaoYGBi0xDYNii7vl3EdYeIUM5Ys5Ew04Bl7YjO04=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:56:76:d7:f4:1a:00:46:79:6d:60:8c:94:9e:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8
Validity
Not Before: Apr 20 22:00:12 2025 GMT
Not After : Apr 21 22:00:12 2025 GMT
Subject: CN=b5c44f5b76305b0821de28dbc3c16cbab9fe6087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:50:51:a2:c1:05:60:c5:65:fa:da:b0:6c:bd:
4e:e1:dc:f4:15:dd:cf:4c:86:96:70:cc:75:af:92:
95:9f:6f:ff:d9:94:6f:25:e8:a2:94:bd:17:7b:bc:
f3:e0:5a:1c:a7:43:38:ac:78:d9:45:48:ff:23:e1:
dd:25:2f:93:e9:01:85:bd:c0:84:bf:63:53:9e:69:
30:51:cc:c9:23:ae:09:f2:59:06:b8:67:2a:ca:fe:
85:5f:6d:c4:3a:ea:9f:2f:6d:22:1a:be:54:e4:00:
bf:2f:19:08:6c:b4:d7:e9:39:3e:57:40:fd:1f:6f:
70:fb:f2:24:fa:d3:73:77:70:12:47:80:81:c0:72:
3a:4a:78:f0:ba:85:6f:fb:31:35:83:1c:f6:56:6b:
12:37:6a:43:91:37:7e:8a:d3:a2:33:da:5b:59:5e:
ac:af:dc:e1:fc:4c:68:dc:bd:8e:bb:33:0e:12:7d:
52:42:39:f1:df:70:d0:a5:b9:2e:69:29:8a:0d:e5:
1d:7b:39:12:7d:da:b5:8f:47:13:0e:31:c0:a6:ba:
b9:45:a3:0a:1e:71:67:b8:b6:ec:89:ca:1f:94:62:
17:62:90:87:a7:cf:90:96:90:2f:ed:fe:a4:f9:40:
9e:4f:33:70:82:9c:e7:91:df:fc:81:ac:1d:e2:25:
09:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C4:4F:5B:76:30:5B:08:21:DE:28:DB:C3:C1:6C:BA:B9:FE:60:87
X509v3 Authority Key Identifier:
keyid:91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:fd:16:66:7f:07:b3:df:ac:b2:29:fe:e6:e5:18:f0:97:5f:
a2:21:ac:3e:d7:ae:9f:c8:3e:22:96:74:ef:6b:64:b0:2a:65:
da:8a:7c:fd:2f:9d:c8:75:fb:5a:6e:93:ae:55:98:13:3f:7a:
db:f2:c4:b1:42:7d:07:de:3c:ba:b0:1c:bd:b9:f7:93:27:fa:
ec:62:3c:87:5f:ce:dd:c4:a7:05:1a:d9:2a:e4:b5:8e:a5:50:
ce:23:aa:6f:d7:9a:76:3f:53:f2:89:06:37:0e:80:5a:f3:16:
da:7d:0e:83:0e:c7:d9:b6:93:97:b6:c9:86:14:2d:9e:a0:24:
ea:9e:63:9a:d0:d0:db:b7:04:68:38:d6:f2:f5:ea:26:5b:59:
c7:fb:df:16:89:d0:cf:41:17:18:94:a1:a4:e4:fa:43:90:da:
9d:ed:77:79:73:5f:c9:ea:2f:8f:b2:25:d2:1e:32:84:ee:e3:
ca:e3:5c:9c:73:ff:42:00:94:38:db:52:f8:74:26:6e:49:d3:
36:cc:7e:3d:e8:fe:c1:d1:b1:f0:1c:b6:2e:a0:bd:3d:cd:5d:
2b:ac:ed:16:c5:8d:13:a1:c1:27:37:fb:77:be:5f:df:04:44:
a4:c0:50:18:9c:17:58:49:38:66:ab:b1:b1:62:fd:43:59:1c:
4d:ac:89:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:53:29 2025 by rpki-client