Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
File: KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft (raw, json)
Hash identifier: yFZFR3a+KPS3r5G7eL0ElWjOjqM2pfbM5RhqJIo4cHg=
Subject key identifier: BC:95:6D:02:D7:6B:B6:B6:CF:6B:C3:1B:DA:53:D7:F6:81:06:CA:F3
Authority key identifier: 28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
Certificate issuer: /CN=28bbb54e37826c0390b04379279f8e06cff3a234
Certificate serial: 01964B900623A8DCD9972442AC78A4040E01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
Manifest number: 0412
Signing time: Sat 19 Apr 2025 01:00:51 +0000
Manifest this update: Sat 19 Apr 2025 01:00:51 +0000
Manifest next update: Sun 20 Apr 2025 01:00:51 +0000
Files and hashes: 1: KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl (hash: 83eE4YYYpNMLffg4FtnVHRfjkyxXsMiEKgQDX7yH70A=)
2: N3FIvLoAi-SrbWKri-QxAJXERl0.roa (hash: oePUnAR/4Fy7x02aEJQp05kRfdkIvxnqMAYzYP5D1B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 01:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:90:06:23:a8:dc:d9:97:24:42:ac:78:a4:04:0e:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bbb54e37826c0390b04379279f8e06cff3a234
Validity
Not Before: Apr 19 01:00:51 2025 GMT
Not After : Apr 20 01:00:51 2025 GMT
Subject: CN=bc956d02d76bb6b6cf6bc31bda53d7f68106caf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:46:1c:f9:81:c4:46:e5:12:60:d8:73:6c:bb:
52:e6:22:74:78:56:72:12:88:f7:3c:8a:09:20:e7:
73:a4:7d:d4:c6:ab:fd:c7:3c:93:b3:7b:2c:ec:3f:
13:c1:d3:6f:b7:97:1a:62:c1:83:e0:97:1d:d9:56:
0c:2e:3f:83:cb:18:88:6e:52:dc:a6:7b:3d:16:07:
c1:fa:34:3e:62:a2:d7:7c:24:d0:20:e6:3a:fb:5f:
9b:b6:30:55:05:66:7b:b3:3b:67:58:ae:ea:4d:db:
6d:57:28:ef:59:01:e6:cc:b7:44:be:39:9c:9c:ec:
e8:bf:40:b4:b1:07:47:7c:66:ea:fa:3a:30:74:67:
7a:cc:3f:0b:11:f3:f5:8c:80:2f:68:55:0b:c2:81:
c2:73:b1:10:2f:11:95:ad:a8:8c:f7:fb:bd:b6:6f:
cd:72:3b:e7:f3:79:c3:16:a3:d3:9f:c8:1f:98:d1:
90:8f:10:e9:07:95:9b:38:43:c8:5f:95:15:bc:0b:
37:05:dd:59:b8:d5:2a:a8:d8:ec:93:bc:e9:7a:43:
7e:04:9e:fa:8e:38:65:2d:5f:1c:14:d6:ea:15:c9:
0e:7a:67:56:56:68:f5:49:bf:f0:56:65:6a:6f:b6:
70:d0:c4:12:e7:5c:f3:6d:61:8e:29:50:fc:1a:03:
6e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:95:6D:02:D7:6B:B6:B6:CF:6B:C3:1B:DA:53:D7:F6:81:06:CA:F3
X509v3 Authority Key Identifier:
keyid:28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:43:4f:94:cd:0b:24:67:bd:13:53:83:79:23:f1:89:5f:88:
90:1d:c0:c1:01:43:72:9a:2a:d1:be:76:78:55:1a:d4:56:5d:
3c:2b:eb:bb:68:68:f7:28:51:6d:23:d3:86:56:cf:67:ee:d3:
98:22:cd:92:a4:1d:16:ba:54:21:0c:aa:2d:77:ac:33:45:65:
d9:64:e6:7c:4c:85:b6:b6:bf:2f:b6:4d:16:0a:cc:9b:7b:67:
74:f9:dd:9f:43:81:3d:f2:db:57:25:90:5c:c5:eb:f9:31:1c:
13:9c:9c:02:eb:4b:83:3e:ad:ab:a2:b4:c7:40:f7:e4:88:5c:
d0:22:9d:34:4b:10:60:40:57:34:b7:3a:41:84:53:36:14:94:
5b:77:a2:23:2d:4d:56:79:e1:10:1f:0a:34:9a:4d:92:da:74:
32:a8:78:12:46:8f:67:47:a4:fb:a3:81:cc:cf:df:1b:35:8d:
3a:84:a9:8a:58:5a:a0:f6:b1:a8:23:89:26:8f:c8:be:26:2e:
0f:82:e0:09:27:3e:80:39:93:aa:3b:22:89:7b:80:e9:36:ad:
1b:e0:41:cb:f2:17:62:68:72:9f:12:af:d9:e1:e3:8a:5e:0d:
9b:fe:c2:01:89:7a:fa:58:1b:f7:e6:75:60:ae:36:f8:c7:b3:
38:34:d4:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:10:16 2025 by rpki-client