Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
File: kXWIXPl40u9mE3YhRTC57WjFtFg.mft (raw, json)
Hash identifier: 1Pclbcus+K0oBlBNYAc1V7f+2al4sP+75Y9xdg6rCiA=
Subject key identifier: D1:DA:30:91:8E:5F:8C:DD:95:D6:CA:DF:33:89:CF:CE:21:CA:CC:03
Authority key identifier: 91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
Certificate issuer: /CN=9175885cf978d2ef661376214530b9ed68c5b458
Certificate serial: 019748553C49ABDDB0079917FD6E19A2848B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
Manifest number: 0899
Signing time: Sat 07 Jun 2025 03:00:34 +0000
Manifest this update: Sat 07 Jun 2025 03:00:34 +0000
Manifest next update: Sun 08 Jun 2025 03:00:34 +0000
Files and hashes: 1: kXWIXPl40u9mE3YhRTC57WjFtFg.crl (hash: BltBccUrV/0feFiyI5bFAnokxuFhvZ0NIzcOjOyT3lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:3c:49:ab:dd:b0:07:99:17:fd:6e:19:a2:84:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9175885cf978d2ef661376214530b9ed68c5b458
Validity
Not Before: Jun 7 03:00:34 2025 GMT
Not After : Jun 8 03:00:34 2025 GMT
Subject: CN=d1da30918e5f8cdd95d6cadf3389cfce21cacc03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:af:59:66:33:59:66:ad:23:4f:a7:16:c2:29:
7d:13:b1:69:e9:b9:58:81:1b:7c:c4:7a:fd:64:f3:
cc:a5:88:d1:f7:4e:23:51:c2:f6:10:90:d2:75:9e:
14:53:10:3f:13:02:bb:82:62:33:36:fe:63:cb:e1:
48:52:db:d9:44:62:cd:98:f5:fa:da:f7:4a:de:d3:
21:76:13:bf:54:bc:cc:5d:10:f6:e0:df:c5:e0:02:
81:11:47:dd:48:1c:90:32:82:88:a4:22:40:01:1c:
25:06:ae:42:46:c6:1d:96:9d:4e:0d:87:66:9f:84:
a5:3f:88:77:96:9e:c7:60:9c:db:49:9f:8a:89:4a:
2c:9c:a3:55:9b:ce:0c:bf:ba:8c:3e:a2:4c:da:f4:
2d:1e:45:d1:c0:40:f3:57:5a:0c:0a:cd:44:37:21:
ea:a9:ed:d1:df:a0:da:a0:65:29:d5:d6:53:c2:9b:
92:50:90:d1:f0:76:37:0a:49:d9:18:4a:ba:f6:6e:
aa:32:5f:38:8b:0f:24:3a:f7:3f:a3:99:52:e7:ef:
2a:d4:cc:97:22:75:0c:7b:08:bf:bf:45:04:23:6b:
d6:45:61:ee:86:1a:a0:c5:b5:e9:51:2f:f6:78:5e:
e7:9e:27:40:a0:21:cd:e8:f0:7e:9c:2a:a3:33:44:
5d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DA:30:91:8E:5F:8C:DD:95:D6:CA:DF:33:89:CF:CE:21:CA:CC:03
X509v3 Authority Key Identifier:
keyid:91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:5a:92:ca:d2:17:22:83:c7:4a:dc:c7:e3:be:90:2a:1a:11:
b8:2c:2e:9d:4c:4d:a8:89:a7:ed:bf:c4:87:78:22:99:7a:12:
f8:69:b5:fa:67:7e:17:0b:39:b9:c7:36:05:7e:22:89:11:7a:
3c:ae:c4:08:32:16:24:c8:bc:e9:51:05:ac:6e:c3:c5:cc:52:
7a:6c:d8:71:d9:4d:af:af:9c:f9:2d:93:7c:19:63:41:cf:ee:
ff:b3:d5:dc:c9:29:5b:a6:93:8b:01:51:30:a7:32:4c:72:de:
27:c3:ed:2d:8d:ff:c9:88:46:47:3d:d6:b6:69:20:11:94:90:
dc:db:07:47:ba:66:dd:b1:27:ba:8b:da:c5:f2:c8:43:02:0d:
ed:bf:71:cf:94:07:f4:09:eb:cb:48:9e:08:e9:19:1c:be:83:
9c:f1:c8:bb:7f:da:bd:12:9e:fd:8d:39:f5:ff:1c:01:9a:02:
e7:a3:33:b9:ea:8c:38:fd:0b:c0:56:e3:96:cc:f3:0c:e8:a0:
30:4e:97:57:50:54:55:dc:44:ee:31:42:b4:89:af:ec:0b:54:
1d:55:83:dd:26:c4:f6:25:8c:cb:bf:95:59:22:04:38:17:46:
59:47:0d:c5:55:32:75:cb:a6:88:cb:dc:50:fc:29:4b:2e:79:
64:c6:b7:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:20:50 2025 by rpki-client