Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
File: kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft (raw, json)
Hash identifier: lToGYGocpcSMnEfWSBo9FW/LeMOowtKJG87JoD7d95U=
Subject key identifier: 8C:DC:08:89:48:28:4D:D7:78:03:B8:15:59:ED:41:BD:D1:1B:DB:16
Authority key identifier: 91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F
Certificate issuer: /CN=91d01c47f00e64f35cc752d03b34a71b71406b3f
Certificate serial: 0196504829EF431FDA8E1759CC81685DA6DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
Manifest number: 1429
Signing time: Sat 19 Apr 2025 23:00:28 +0000
Manifest this update: Sat 19 Apr 2025 23:00:28 +0000
Manifest next update: Sun 20 Apr 2025 23:00:28 +0000
Files and hashes: 1: 6fnAZ8W2MGF8ZNrQkh_nCxeTpv4.roa (hash: VVdXTpC74ZKSlf0OaYeG4sfAbOWwASAnFr5UUxM1yrQ=)
2: jwF2Fe8ZjLBRTo3L_7TINNi10fQ.roa (hash: Ap/raQBvujEIQc3hDUBU94DRN1La9dL+OAKrqJu5rbU=)
3: kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl (hash: mR1VUIX0YDT2OCPVBSsVl/rDmZ/kn65CXUJjWuKWzCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:29:ef:43:1f:da:8e:17:59:cc:81:68:5d:a6:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d01c47f00e64f35cc752d03b34a71b71406b3f
Validity
Not Before: Apr 19 23:00:28 2025 GMT
Not After : Apr 20 23:00:28 2025 GMT
Subject: CN=8cdc088948284dd77803b81559ed41bdd11bdb16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3a:d7:c1:f6:2b:6d:b8:5d:20:27:a1:ad:3d:
88:57:06:b0:3d:84:ed:af:04:68:c0:45:61:52:2f:
1f:33:41:19:50:27:c7:76:b2:3a:cf:e9:99:fc:b2:
7f:9d:f2:2b:5a:e3:d4:fe:3a:9b:40:fe:fa:9e:e7:
f1:40:83:86:0b:6f:12:0b:4e:db:54:80:4b:a3:3d:
9b:ce:af:05:82:df:b2:6b:99:55:14:0a:c9:5a:ea:
78:dd:d4:55:b5:0f:bf:15:13:e3:89:d3:15:e7:cb:
56:a0:24:de:bb:c3:13:16:53:f8:e3:85:6f:6c:3e:
b0:a2:92:43:90:f9:4a:11:6a:0a:e4:ad:26:a6:84:
15:ec:29:b8:b1:65:5d:97:16:d7:83:bc:5a:f3:95:
21:1b:b8:59:ca:4a:92:e0:1f:3b:4f:07:1a:6c:c7:
c0:51:8f:6a:61:1e:bb:52:36:6b:d0:5d:2e:64:f2:
63:06:e5:fa:77:67:63:8f:74:ad:9c:ee:4b:aa:2d:
fe:5d:79:88:15:f5:b9:9a:6f:a9:25:77:b4:b2:5a:
fb:97:d2:92:4c:ab:3e:ed:70:29:4a:a7:76:a6:76:
44:9a:85:8e:42:19:9b:fe:5e:ff:c0:31:7b:21:a6:
66:d6:d0:a3:f2:3b:2e:04:a4:aa:06:8f:ad:c5:07:
22:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:DC:08:89:48:28:4D:D7:78:03:B8:15:59:ED:41:BD:D1:1B:DB:16
X509v3 Authority Key Identifier:
keyid:91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:46:24:0e:71:56:63:a5:7b:8d:3b:ac:05:a2:ef:71:5a:f0:
5c:54:9e:67:8f:16:96:b4:b5:5d:28:67:87:b2:ca:02:95:7e:
d4:99:c0:82:e7:17:b4:fb:1c:31:56:2d:8b:af:1f:aa:00:c3:
53:01:5f:c0:62:0a:59:6f:6a:13:c7:d8:22:2b:fb:86:0f:ba:
fd:1f:33:20:de:2f:55:eb:d8:06:5c:bf:a6:5a:e2:9d:61:4c:
2f:b2:d5:38:be:ab:31:77:49:3e:63:54:c0:ab:ba:b9:fe:f9:
66:5b:9b:e6:ee:7c:5a:67:c9:b3:71:6a:fa:5f:87:60:16:22:
ee:f5:fc:ef:e2:4c:62:c0:dd:83:15:6b:1d:b9:c5:60:c6:b4:
bd:c1:d2:00:7c:76:87:ab:e0:68:c2:45:fc:af:93:0f:17:eb:
3e:1c:9b:58:63:20:5f:d8:33:e6:89:fc:01:fd:42:6f:be:a8:
8c:dc:b6:15:a6:7c:6f:f8:00:c4:14:0c:29:8c:7d:e1:4a:34:
5d:70:5b:58:bf:f1:44:06:be:66:41:42:c3:45:a9:bb:50:cd:
2e:d1:cb:e4:33:ac:2d:27:d3:0e:bf:59:67:ad:a8:2b:95:00:
71:f7:cd:f9:81:5f:76:48:69:8d:d7:53:69:83:33:c7:9f:1f:
03:e9:cd:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:08:40 2025 by rpki-client