Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
File: kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft (raw, json)
Hash identifier: 8Uu+kIqxbbGDHJNK49owhB3aECHZLqq6SHGr0nHiAuE=
Subject key identifier: 3D:35:24:8F:DD:F6:E5:10:3C:18:46:8E:4E:C0:6B:24:6D:F6:26:5F
Authority key identifier: 92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
Certificate issuer: /CN=9202036a43dad06b6c2cc64bde767870676f87b3
Certificate serial: 019655A57C37BFD2B91B03A43329DA8644C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
Manifest number: 0D9B
Signing time: Mon 21 Apr 2025 00:00:30 +0000
Manifest this update: Mon 21 Apr 2025 00:00:30 +0000
Manifest next update: Tue 22 Apr 2025 00:00:30 +0000
Files and hashes: 1: 9Bw4s7L1PZyJ0cmK8dHggvZkyc8.roa (hash: k8G5zSf+pp8Di/1i1Rk8bBBXkqYoG95ba1/+ZDXAe1E=)
2: kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl (hash: dmfG/fckavmxM9WqdGBpQKegDDubeeacGfeJCqpv0G8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:7c:37:bf:d2:b9:1b:03:a4:33:29:da:86:44:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9202036a43dad06b6c2cc64bde767870676f87b3
Validity
Not Before: Apr 21 00:00:30 2025 GMT
Not After : Apr 22 00:00:30 2025 GMT
Subject: CN=3d35248fddf6e5103c18468e4ec06b246df6265f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3f:1e:ee:64:f9:e8:24:c3:34:61:e8:37:d1:
2c:d5:fb:ab:6f:1d:04:af:27:8f:ff:88:30:e1:33:
78:e8:6c:79:a3:9e:35:94:99:68:03:37:0e:3f:39:
3c:4d:78:57:c7:70:ea:d5:a0:f9:2d:33:78:68:10:
08:e5:72:e4:c7:a3:a9:fc:ce:3a:ec:07:e5:e4:fc:
ee:dd:56:43:f9:33:fd:f9:ce:42:15:6e:88:18:eb:
87:2c:33:89:05:74:65:a8:01:23:57:67:d2:97:4f:
b7:be:c4:2b:e2:a3:e8:d2:db:65:f3:30:27:6f:e4:
e5:d6:6a:d6:2f:71:bc:1d:2c:a4:a1:02:9f:9c:bc:
17:0c:24:5c:0a:7f:d9:d1:17:c4:cb:93:25:56:9f:
b0:be:7b:9e:50:4c:6e:4c:27:9b:99:bb:3f:ab:ea:
6f:2a:cb:ec:35:f3:66:3a:ee:6a:21:31:d3:39:d1:
e9:de:fe:5e:f2:76:eb:41:05:1f:6b:cb:a0:73:ec:
31:07:61:3f:44:2d:b1:2f:70:4a:a0:c6:aa:5d:4d:
87:a1:e8:27:6f:7c:8f:8a:9e:7b:78:b8:44:8a:a3:
70:8a:f0:b2:3b:f4:8c:ac:2c:42:ca:e4:09:9f:c2:
12:83:fe:a3:86:ba:9e:c6:41:18:41:9f:74:10:ff:
c3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:35:24:8F:DD:F6:E5:10:3C:18:46:8E:4E:C0:6B:24:6D:F6:26:5F
X509v3 Authority Key Identifier:
keyid:92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:46:c5:d3:c1:b2:8b:95:bf:f6:44:d3:dc:1c:22:d8:16:d7:
7e:e4:7f:c0:d6:73:f8:83:53:dd:5c:01:99:79:73:4b:ff:48:
89:8a:6e:22:9c:26:ee:46:53:1a:68:3d:65:e1:36:c9:7c:68:
86:69:cc:6d:1f:5f:96:c7:fa:25:16:6d:d3:cf:13:6d:38:6e:
96:49:8f:4c:6f:30:b0:1c:2b:e7:d1:4a:4b:4b:2e:77:f4:f8:
1b:05:fd:b8:2f:d4:c6:28:d5:bf:d0:5e:53:e5:93:9d:c7:2e:
d7:16:72:ab:45:72:0e:9a:b9:0a:e5:c7:1c:7f:f3:45:c1:0b:
64:c8:52:c2:8c:ca:18:61:e8:dc:81:c0:c2:30:2a:d3:c3:78:
61:e7:5b:0e:49:63:67:1e:ae:75:78:90:c3:64:95:8d:d1:34:
4c:ee:c3:9d:71:f8:8f:4c:3d:af:e9:1b:43:8d:79:18:4e:9a:
1b:85:0a:29:1f:60:9d:f4:0d:15:1c:d6:a8:9f:87:d9:83:28:
08:28:2d:b9:b7:63:f6:75:be:7a:00:a1:aa:d7:81:42:2d:69:
31:90:12:96:ba:c6:0e:13:fb:d9:09:d1:be:e6:a8:b8:8c:93:
d8:b3:2c:53:99:d5:04:ba:45:2b:4f:50:d3:63:2d:09:69:5a:
88:b6:93:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:53:06 2025 by rpki-client