Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
File: kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft (raw, json)
Hash identifier: b7APFPHe+E5PzsQSxIe9lQWWtsBEZUzCHg/ZZ6EDrYw=
Subject key identifier: 0B:FD:96:F8:EC:9B:A3:59:20:33:6D:EA:C6:9D:84:7B:D8:2F:C4:CC
Authority key identifier: 92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
Certificate issuer: /CN=9202036a43dad06b6c2cc64bde767870676f87b3
Certificate serial: 01958CCEF608E3B0BCBD3FCD92D9369AB057
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
Manifest number: 0D33
Signing time: Thu 13 Mar 2025 00:02:08 +0000
Manifest this update: Thu 13 Mar 2025 00:02:08 +0000
Manifest next update: Fri 14 Mar 2025 00:02:08 +0000
Files and hashes: 1: 9Bw4s7L1PZyJ0cmK8dHggvZkyc8.roa (hash: k8G5zSf+pp8Di/1i1Rk8bBBXkqYoG95ba1/+ZDXAe1E=)
2: kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl (hash: Ma3FJJg0QNyUPFvunlJPAxU0EdIk91TM3omMGA6kNLk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:ce:f6:08:e3:b0:bc:bd:3f:cd:92:d9:36:9a:b0:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9202036a43dad06b6c2cc64bde767870676f87b3
Validity
Not Before: Mar 13 00:02:08 2025 GMT
Not After : Mar 14 00:02:08 2025 GMT
Subject: CN=0bfd96f8ec9ba35920336deac69d847bd82fc4cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7b:00:a9:fb:09:0c:7f:73:9e:31:c6:60:45:
1a:b3:c7:01:3e:c3:4e:b0:2e:f9:f8:21:2f:fe:92:
e0:45:4f:e8:4f:90:87:f0:ff:cb:57:01:aa:d4:01:
26:c8:9d:bf:83:5e:a5:ad:4d:a3:6a:93:92:1e:17:
57:a7:9e:04:00:7a:4c:95:5e:97:ac:47:a8:4a:5b:
c5:f9:3d:e2:6d:19:db:05:fa:d5:cb:8a:a8:7c:5a:
f2:8c:1b:d6:da:a5:ec:89:ea:2c:ea:87:90:b0:12:
3e:a2:94:6a:82:0c:74:a9:52:63:2e:e7:66:bc:06:
f5:4f:96:b8:4b:20:70:86:5f:a9:1a:60:a6:d6:81:
ab:a7:f0:a0:3b:dc:e8:4f:24:1c:26:f4:d9:9a:42:
ee:5b:e5:9a:0f:eb:83:6e:0c:cf:17:8e:7f:bb:23:
7f:b0:86:68:c3:c7:49:d3:e8:79:23:10:ac:22:fc:
03:42:34:49:41:8f:a3:72:e2:d6:40:fa:6d:70:79:
bb:df:6a:d1:16:91:3b:6b:fc:22:c0:ce:42:aa:78:
9c:b5:9d:1e:51:57:a2:a5:16:a9:08:8e:72:db:35:
54:15:b5:0b:1d:59:57:61:72:17:48:80:19:8d:4d:
b6:7f:d2:ea:54:bd:50:15:c9:82:2b:5c:4b:5c:a3:
24:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:FD:96:F8:EC:9B:A3:59:20:33:6D:EA:C6:9D:84:7B:D8:2F:C4:CC
X509v3 Authority Key Identifier:
keyid:92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:a6:d4:d0:20:77:5b:c9:12:b3:5e:ff:8f:a1:18:57:68:ff:
a4:67:12:6c:a9:48:cb:23:e8:c8:f8:14:da:4c:34:de:76:ed:
a9:bb:5a:2f:3f:f6:26:ba:df:2e:cc:cf:f4:d3:70:80:16:3b:
2a:c6:b8:50:5d:a4:4a:0d:0e:c6:4d:a2:75:9e:7a:0f:d3:0c:
7b:8a:8c:ab:f3:8b:98:03:f7:1d:e2:9a:40:a1:a5:79:64:2c:
1e:ba:59:78:e1:fb:a8:8f:c8:39:60:af:26:58:41:a4:bb:71:
a9:43:fe:99:4d:73:78:f7:c1:f2:88:d3:46:2e:e9:71:0a:2b:
9b:a3:da:ce:b0:fc:28:0d:8f:db:e2:a7:46:4a:b6:b9:bf:47:
bb:8e:70:4d:25:c1:14:ad:41:23:b4:dc:47:94:c0:9c:66:21:
ca:36:bc:02:4f:59:06:8d:ec:c2:ad:f4:d6:ac:aa:ae:6f:52:
af:a1:0e:64:2a:5c:2c:d6:09:89:a3:ab:0a:38:bc:1d:9d:32:
02:cd:a1:b8:ed:4e:cd:51:6d:b7:11:50:bb:41:e9:09:d0:2f:
f8:20:8a:4b:b6:c4:61:e9:11:23:e6:6a:2a:c0:20:55:20:13:
76:af:f5:28:1e:e5:0b:76:a8:58:f3:7d:6c:66:76:e5:a7:80:
b0:3d:de:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:40 2025 by rpki-client