Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
File: kmyYtRBh80DM5OC0zjYc40q8L84.mft (raw, json)
Hash identifier: i7u7jgVic0jWh15rGp+k3hxodJDVDHyCT3GO+CEm5Dg=
Subject key identifier: 0D:E5:E4:1B:D3:E8:93:42:04:96:14:88:DC:6C:29:58:FB:ED:78:A6
Authority key identifier: 92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
Certificate issuer: /CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Certificate serial: 0196564A948958E37C4BF28AD7DB2B7B4702
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
Manifest number: 054B
Signing time: Mon 21 Apr 2025 03:00:49 +0000
Manifest this update: Mon 21 Apr 2025 03:00:49 +0000
Manifest next update: Tue 22 Apr 2025 03:00:49 +0000
Files and hashes: 1: NSppdy32pK0kuht35Ks5xIRdV5s.roa (hash: e3lqo49PNkPXZsVtpcSw5P8QfGbIbaYvIeXnhh1mWBY=)
2: kmyYtRBh80DM5OC0zjYc40q8L84.crl (hash: 0PGvaitA09YdRwDVNWjMJKRktSo4i40KGGK6P3GXCFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:94:89:58:e3:7c:4b:f2:8a:d7:db:2b:7b:47:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Validity
Not Before: Apr 21 03:00:49 2025 GMT
Not After : Apr 22 03:00:49 2025 GMT
Subject: CN=0de5e41bd3e8934204961488dc6c2958fbed78a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0d:2f:d1:65:62:32:22:85:3d:02:24:ab:13:
48:d1:ef:02:53:f4:2d:0d:b6:a3:8f:59:43:f9:af:
77:fe:01:c9:d4:47:e7:29:83:5d:c7:44:6a:d6:a7:
2d:e2:12:34:6b:78:c8:14:ea:6b:c7:4a:85:0d:bd:
6b:08:b6:ac:28:27:2e:73:27:fe:86:78:c7:12:cb:
68:ca:38:77:96:9a:b4:94:d3:19:d2:65:96:ec:42:
47:09:a4:8a:80:e6:90:1d:aa:7b:91:d7:13:7a:5a:
87:e7:4e:f0:b3:c2:3c:79:95:0a:a2:36:b4:b0:42:
75:28:26:5e:82:1c:5f:2f:5a:51:24:29:aa:59:cd:
1b:43:45:63:7d:1a:05:d6:49:b8:f0:5b:9a:ef:5a:
5c:26:5d:3a:aa:65:59:b0:a5:6e:11:92:e7:e2:0e:
53:2b:4c:4e:b3:cb:9d:c1:79:47:eb:27:3d:af:f5:
dd:d6:4d:dd:79:76:99:bd:e3:6e:ca:26:f2:f3:c0:
1a:1b:ef:28:ae:53:fb:e3:71:19:8f:01:e9:ec:2e:
52:55:a4:97:8f:60:ea:48:f6:cc:08:65:81:3c:16:
67:ad:a3:35:6d:79:9c:b9:bc:d2:5d:e7:2a:67:bf:
23:7e:60:58:33:90:17:7c:6e:41:42:d3:33:b3:bb:
93:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E5:E4:1B:D3:E8:93:42:04:96:14:88:DC:6C:29:58:FB:ED:78:A6
X509v3 Authority Key Identifier:
keyid:92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:09:f8:74:cc:22:f1:86:e7:e5:e9:a0:18:45:51:04:e1:bb:
12:f8:1c:86:fa:e5:24:0c:0c:9d:a9:39:ca:a7:97:9d:eb:de:
14:21:b5:b2:65:5f:92:2c:8a:44:94:96:ac:28:1d:05:c8:8b:
2d:3a:c9:8b:3e:f6:15:84:92:40:66:6c:08:19:3b:f2:3b:b1:
f9:f3:46:1e:a9:fe:92:ca:62:9c:44:a9:41:81:d2:c8:c9:d7:
86:e5:e2:d6:03:59:61:4c:b0:19:42:a2:53:9f:ad:e8:3e:59:
28:94:af:cc:29:f1:2a:9e:bd:8c:b6:91:5f:a7:f2:30:99:31:
f2:d1:c2:0d:61:50:a0:2e:d2:84:a9:7b:27:7c:4a:c0:35:ec:
98:ca:b6:f9:d5:bc:b3:1f:6b:6a:df:3e:79:5f:ea:74:0c:0a:
76:ed:75:a1:35:d1:ff:55:d0:02:1d:e5:be:9b:7a:19:ad:ae:
60:8b:69:9d:8a:79:6b:de:02:c8:aa:9a:05:3e:b6:b9:e8:c5:
f3:c9:55:02:1e:83:26:80:92:30:49:6b:36:f4:a7:76:ec:c3:
b2:e4:40:9e:fe:b0:42:2d:71:3e:b8:a3:03:40:ae:40:a5:1d:
17:d5:88:5b:c9:b1:12:17:90:0d:4d:cc:d5:89:de:cb:7a:38:
0a:cb:31:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:50:17 2025 by rpki-client