Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
File: klbr9muA8IE1hY0UTO1veFg09fQ.mft (raw, json)
Hash identifier: SSto5tplT/xuX+VZviqd+AHAueMv/Qq6RJJ/SY1YsJ4=
Subject key identifier: DF:96:EC:FF:29:8C:49:1F:C5:02:6F:F3:90:DB:AF:30:73:F7:57:09
Authority key identifier: 92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
Certificate issuer: /CN=9256ebf66b80f08135858d144ced6f785834f5f4
Certificate serial: 01960DFAD374EB49B3071447179D58810BF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
Manifest number: 14D9
Signing time: Mon 07 Apr 2025 02:01:03 +0000
Manifest this update: Mon 07 Apr 2025 02:01:03 +0000
Manifest next update: Tue 08 Apr 2025 02:01:03 +0000
Files and hashes: 1: 0cwv1kps50n5fxH17jZ6DrIm1N0.roa (hash: undM2lyLTll3NMITFEXa/JcW5GP1KelrAOfh7Rau6zQ=)
2: DFcDai4MmMP-4I9ZmvHSmiuuiVo.roa (hash: P1EgClV7bkG9omjLGc5Uu3/ShqO9L3Dji7Yyz/EuHLk=)
3: V_xEHpefO5u5KSTu-XYSWan-kRo.roa (hash: jYILx7U+IDJR4gLw2si3w1xLilgSY3Xi257sg6Z15eA=)
4: Z26jB8MmkVPCobutKSYkZRRffSw.roa (hash: jtYR3qZJ5WEi/+pEZva2m9kUb9g5HMevovBDi8SuUfU=)
5: e1u7bA6PuDBeHm9U9nKjSLDhACw.roa (hash: DvBt+9eFN/dfM+tx+F5jn+yDWZNZsODtMhC5M+LFI08=)
6: klbr9muA8IE1hY0UTO1veFg09fQ.crl (hash: ifiepifOqS2GakZjK0mDwManrT56/YON8FKrgURoj+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0d:fa:d3:74:eb:49:b3:07:14:47:17:9d:58:81:0b:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9256ebf66b80f08135858d144ced6f785834f5f4
Validity
Not Before: Apr 7 02:01:03 2025 GMT
Not After : Apr 8 02:01:03 2025 GMT
Subject: CN=df96ecff298c491fc5026ff390dbaf3073f75709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4e:85:2a:a4:bd:05:2d:af:a9:2d:02:c6:59:
49:96:dd:9d:41:03:42:40:c6:5c:e3:d1:53:3f:04:
a1:64:b2:09:3e:68:30:46:bc:be:31:86:ec:f0:a4:
a9:07:a9:f7:dd:2d:50:29:1c:da:01:26:4a:07:4b:
40:8d:a6:45:f9:44:9e:19:54:1f:a8:57:f2:77:27:
e4:97:3a:25:e7:9d:ad:be:a9:56:ab:a5:79:17:f3:
a0:90:3d:04:de:5d:00:7e:92:bf:fd:d1:d6:76:5c:
15:69:db:db:ee:02:bf:8e:e7:dc:76:cb:87:50:80:
de:ec:71:0b:ff:24:d0:4a:6c:b9:ad:b3:ca:c7:9b:
cb:94:ac:21:c4:d0:65:9c:23:b3:cd:ef:c6:4f:56:
17:2f:68:11:f5:cf:4d:d6:0d:b9:2b:61:9e:4a:8b:
85:2f:48:21:37:d8:2d:01:d8:23:21:70:6e:d7:47:
0e:27:f4:ec:48:c9:b3:de:c1:6a:5f:84:f5:fc:a8:
66:ff:08:5a:db:54:5b:26:71:50:5e:e5:38:9e:5d:
93:7b:f9:1d:d1:cc:98:79:3d:00:c6:07:ae:9a:3d:
de:9c:0b:8e:21:86:93:86:f6:e9:fa:86:1f:39:42:
0f:ed:5d:ea:ce:21:16:b6:c6:e8:39:29:a1:a0:d6:
cd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:96:EC:FF:29:8C:49:1F:C5:02:6F:F3:90:DB:AF:30:73:F7:57:09
X509v3 Authority Key Identifier:
keyid:92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:27:73:af:65:d5:1b:14:2c:e9:ac:af:44:7c:dc:77:de:69:
fd:93:a1:c4:d2:14:8a:7f:e5:b6:ae:be:fb:fa:16:7b:b7:3b:
b5:2e:78:07:21:8f:b6:7d:21:48:50:2d:5d:77:50:c1:82:ea:
0b:a5:0f:5c:14:25:89:21:12:5c:87:d6:7f:62:5d:b0:c0:e8:
73:e4:bf:4d:77:21:7b:0f:c0:d4:29:56:51:ff:83:cf:28:aa:
8a:65:a1:b0:1d:73:4f:46:07:64:89:48:e8:a4:da:0a:e2:88:
7e:65:d0:03:d0:54:31:47:0f:3e:70:ff:b1:39:e4:c4:29:dd:
1a:f5:f9:a6:8f:bb:b0:93:c5:e8:9b:b9:ae:db:a8:1d:9a:ce:
44:bd:e9:f9:6c:9e:0a:68:98:de:52:5c:f8:7b:c4:fe:0f:4d:
5f:3a:4c:ae:87:1d:d0:22:75:12:11:89:6c:b3:e1:50:d8:f4:
02:03:b5:b1:4f:bc:a8:3c:53:67:c2:89:e4:5f:c6:33:17:83:
a7:a4:d4:8d:82:e1:8e:f3:31:0a:02:40:d9:49:98:77:e5:52:
0b:3e:2d:5c:cc:6a:30:fd:63:d7:a1:69:2e:37:1b:e0:35:f2:
56:95:f1:de:50:f2:b2:e7:96:52:ad:30:e7:a2:13:e6:02:8d:
9a:c7:c6:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:35:17 2025 by rpki-client