Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
File: kmyYtRBh80DM5OC0zjYc40q8L84.mft (raw, json)
Hash identifier: d2+cvRVAkWdzkTU5pyILxMoSGFP3VhILNYgUnmRTFYQ=
Subject key identifier: 77:31:09:36:EA:F5:4D:59:31:38:C2:25:65:C1:5C:93:00:0D:00:67
Authority key identifier: 92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
Certificate issuer: /CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Certificate serial: 019511D9CDFC4FBB9E9AE4405172EA5A791E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
Manifest number: 04A3
Signing time: Mon 17 Feb 2025 03:00:41 +0000
Manifest this update: Mon 17 Feb 2025 03:00:41 +0000
Manifest next update: Tue 18 Feb 2025 03:00:41 +0000
Files and hashes: 1: NSppdy32pK0kuht35Ks5xIRdV5s.roa (hash: e3lqo49PNkPXZsVtpcSw5P8QfGbIbaYvIeXnhh1mWBY=)
2: kmyYtRBh80DM5OC0zjYc40q8L84.crl (hash: o7R5RjHfW5UsT5Yt1T+FdokwmmgqiWY6ZOkuRBevFS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:cd:fc:4f:bb:9e:9a:e4:40:51:72:ea:5a:79:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Validity
Not Before: Feb 17 03:00:41 2025 GMT
Not After : Feb 18 03:00:41 2025 GMT
Subject: CN=77310936eaf54d593138c22565c15c93000d0067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:37:f9:6c:b2:0f:40:c7:a4:6f:bf:58:d8:69:
4a:57:6f:37:bc:f0:86:13:c2:e2:e2:93:50:d9:66:
76:2c:fe:39:14:f5:c5:ef:dc:3d:1c:7a:0a:98:88:
bf:46:6c:d7:dc:47:56:db:1e:4e:28:15:4d:34:31:
84:61:9e:6f:3a:53:45:9b:6d:81:ec:03:3d:22:c0:
41:fa:21:69:da:a5:b2:28:f8:d0:ea:84:36:5e:0f:
6f:7e:79:3b:77:40:3b:7b:32:19:ac:2e:b8:da:2b:
15:f3:a9:67:1e:5c:17:7c:ec:7d:c9:b0:6b:b7:0d:
cf:49:73:51:34:dc:54:76:26:88:71:7e:4a:26:9b:
91:af:51:06:02:e0:15:52:e8:64:13:c6:bf:6a:2c:
82:69:a5:0a:b8:ab:46:10:80:44:1f:23:09:77:de:
56:93:1e:55:9f:58:9b:73:a5:1b:b5:1b:1a:1d:eb:
32:33:83:6d:f3:c7:b8:50:f1:e3:e1:e1:85:f7:bf:
9b:ff:17:c8:8f:ee:2e:a8:1c:1d:71:ac:db:1e:5b:
6f:0d:f1:a7:6b:76:0c:76:13:33:a1:ab:8e:cf:fe:
28:aa:0d:e6:bd:a9:a0:e8:97:d1:6d:93:59:df:0f:
37:1d:a8:35:64:32:ce:6e:3e:cd:a1:9c:11:55:6e:
09:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:31:09:36:EA:F5:4D:59:31:38:C2:25:65:C1:5C:93:00:0D:00:67
X509v3 Authority Key Identifier:
keyid:92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:eb:91:ca:57:45:ba:cc:0f:63:d2:a1:d0:a1:5f:48:da:31:
ca:40:a3:b4:e1:0b:2e:06:cc:a3:40:b6:32:4d:c3:7a:c4:dc:
d8:53:a7:66:3a:29:b9:e1:a0:d7:c1:d0:7f:c7:6f:8b:8a:9e:
60:5f:df:40:30:f2:4f:c5:c0:aa:e7:ce:06:0f:23:14:5d:88:
8b:04:bf:94:e3:26:9d:af:71:20:1c:b6:3d:ad:96:bb:04:f5:
47:fb:05:42:9f:6a:28:ac:e4:4c:02:c8:a8:77:81:11:cc:3a:
18:f5:4c:2b:7e:5d:74:c3:f3:28:89:74:5e:31:a0:8b:ac:f7:
ee:fe:14:94:37:02:2a:a0:45:06:ed:a2:43:91:bc:26:02:3f:
06:d7:86:90:93:ec:eb:fa:f6:0a:3a:f4:5c:ea:ad:dd:80:c8:
2b:ee:c7:ff:a5:89:d1:30:71:62:12:c7:ae:af:73:d4:1c:e6:
86:0a:3c:e6:15:ea:72:d7:3f:ec:f5:79:13:7c:8f:66:c6:f1:
23:55:85:c1:e2:56:55:19:28:7a:6b:bc:51:45:9d:00:73:a7:
d3:4a:dc:ce:60:4d:4a:53:13:40:9b:53:3a:59:11:80:d1:29:
a3:59:b0:15:00:25:be:ae:b8:f4:14:9d:1b:41:c6:d7:02:1c:
84:be:3d:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:48 2025 by rpki-client