Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
File: kXWIXPl40u9mE3YhRTC57WjFtFg.mft (raw, json)
Hash identifier: O7dxkaButkY7XSrYnCMINPhxNWGygYedIc5rJ/zxxyM=
Subject key identifier: 15:3B:FA:6E:92:9F:F8:81:11:16:2C:FE:34:68:D0:82:05:2F:0C:28
Authority key identifier: 91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
Certificate issuer: /CN=9175885cf978d2ef661376214530b9ed68c5b458
Certificate serial: 01958C294F279ADF49833E32DCCD4711E9DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
Manifest number: 07B3
Signing time: Wed 12 Mar 2025 21:01:12 +0000
Manifest this update: Wed 12 Mar 2025 21:01:12 +0000
Manifest next update: Thu 13 Mar 2025 21:01:12 +0000
Files and hashes: 1: kXWIXPl40u9mE3YhRTC57WjFtFg.crl (hash: cvP842HJZ09tc7NODnTkySwrRmQAle31yZkBQ3HS6+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:4f:27:9a:df:49:83:3e:32:dc:cd:47:11:e9:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9175885cf978d2ef661376214530b9ed68c5b458
Validity
Not Before: Mar 12 21:01:12 2025 GMT
Not After : Mar 13 21:01:12 2025 GMT
Subject: CN=153bfa6e929ff88111162cfe3468d082052f0c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:53:03:9e:3d:de:fe:d5:b1:19:7e:19:8b:58:
12:1e:bf:89:9d:fc:01:2a:6a:0a:5c:dd:5d:00:9c:
21:bb:51:c4:98:a4:10:a4:0e:b0:72:28:d6:6f:91:
32:03:05:32:50:ba:d8:67:82:09:e3:7c:7e:1d:a4:
d2:b7:bb:0b:63:9d:1b:09:53:e4:fe:e8:07:24:ee:
0c:5a:3c:f7:92:64:74:72:4e:af:92:9b:2b:de:3c:
09:d5:0a:7d:8e:e2:5b:c2:0d:25:0a:b8:bc:93:54:
ca:18:d7:59:08:1c:c8:d8:ca:a3:94:0e:a4:74:1a:
15:1b:68:3e:24:cf:64:2a:9b:58:41:c4:64:c2:67:
2c:f5:06:b2:07:65:7b:cc:e0:72:55:e5:41:cd:13:
d4:f9:0d:28:46:50:2a:9f:21:05:1f:81:49:f4:f2:
64:3b:80:9b:f6:3f:a5:b0:2f:c6:60:4e:eb:aa:e3:
64:e7:c0:b8:3f:0b:03:05:68:c6:80:ab:b7:b9:66:
3d:fa:21:3c:d9:b4:cc:0d:ce:0e:29:d2:3d:25:cb:
c2:9f:9d:be:1c:df:88:9e:99:55:74:b5:d9:ca:51:
8e:87:fc:f0:c0:76:ca:ec:af:ba:13:d0:25:c9:a6:
a5:2c:2c:82:5a:ec:90:72:5d:a5:b1:a7:4e:01:5e:
47:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3B:FA:6E:92:9F:F8:81:11:16:2C:FE:34:68:D0:82:05:2F:0C:28
X509v3 Authority Key Identifier:
keyid:91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:2b:f9:18:f8:15:e0:43:c5:b0:47:2d:26:ab:58:f6:95:e9:
aa:7e:2e:c9:48:b9:5f:88:8b:f2:d9:8e:4e:c6:51:85:6a:ac:
bd:bf:56:f4:67:d6:f8:a8:43:35:2d:0a:e8:d7:da:6b:0b:e6:
8f:74:57:8d:f8:15:d4:fa:28:3e:ac:b0:d2:74:27:1f:2f:98:
b8:5f:ad:f6:f2:96:80:3f:86:6f:23:94:3a:3b:fa:e5:bb:b3:
f8:42:c8:7f:84:00:02:f1:11:ad:16:ba:b5:90:2f:0d:36:5e:
e3:3b:5b:91:e4:08:5b:15:5e:ab:d9:4d:bd:d9:7a:36:0e:23:
3d:79:a9:d8:64:d0:7d:58:fe:29:92:98:39:fe:9f:59:42:dd:
e4:6d:dc:1c:84:e8:f7:7c:ca:cb:b1:37:cd:6d:ee:c2:7a:11:
0b:25:e5:3d:e7:4e:ca:e1:16:4f:dc:82:6d:d7:0f:eb:11:05:
80:a8:d5:29:0d:af:3e:5b:69:8d:b7:98:2d:1f:38:f7:9d:75:
f6:9a:bc:f1:39:1e:a6:07:ec:ee:ae:d6:30:f9:ad:e1:8e:78:
bb:c0:34:40:f8:69:ea:4d:91:dc:20:70:d0:49:7e:32:c7:b1:
c0:95:48:fd:74:07:b3:a7:a7:71:ba:4b:f4:1d:13:d9:09:72:
42:16:a6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:37 2025 by rpki-client