Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
File: kXWIXPl40u9mE3YhRTC57WjFtFg.mft (raw, json)
Hash identifier: n2/xKhyn9LahvCyne5zJnje71R7+FRCJiQU88HjoBHo=
Subject key identifier: 4C:07:60:39:A8:D2:85:29:1D:A7:7D:46:BB:25:EB:77:E8:6E:3E:12
Authority key identifier: 91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
Certificate issuer: /CN=9175885cf978d2ef661376214530b9ed68c5b458
Certificate serial: 01964D4758E5353C7D48597898A6A066E652
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
Manifest number: 0817
Signing time: Sat 19 Apr 2025 09:00:43 +0000
Manifest this update: Sat 19 Apr 2025 09:00:43 +0000
Manifest next update: Sun 20 Apr 2025 09:00:43 +0000
Files and hashes: 1: kXWIXPl40u9mE3YhRTC57WjFtFg.crl (hash: OLzTuzj+BycSY/FfaXU2pEFKE7kx4tpfuOpiv/m/izM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 09:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:47:58:e5:35:3c:7d:48:59:78:98:a6:a0:66:e6:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9175885cf978d2ef661376214530b9ed68c5b458
Validity
Not Before: Apr 19 09:00:43 2025 GMT
Not After : Apr 20 09:00:43 2025 GMT
Subject: CN=4c076039a8d285291da77d46bb25eb77e86e3e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:eb:0b:9c:1a:7b:43:e1:00:3f:c2:2e:ec:45:
16:8b:2a:85:e8:33:a9:f5:b6:3d:8f:96:88:18:63:
77:4a:e7:0d:94:ed:19:3b:ad:f1:07:35:d2:6d:39:
a5:58:0f:55:80:6f:9e:8f:17:44:45:d3:8a:57:f4:
74:06:9d:c5:a6:7c:d6:84:f0:18:c9:b7:be:01:95:
6c:07:85:69:e7:b5:30:c7:50:ba:4c:41:b9:21:de:
48:7d:34:89:49:39:56:83:91:7d:56:62:24:5a:01:
07:9c:73:60:f5:39:67:44:6c:49:6f:86:8d:74:f7:
27:cd:8d:72:df:82:55:28:41:56:42:7d:93:63:52:
a8:54:08:8b:5c:6c:0b:2b:2d:8b:56:6c:ca:af:a5:
45:36:1b:fa:8b:9d:5e:25:72:02:43:08:b7:0e:7b:
67:4f:42:38:32:2a:ca:9d:52:3f:27:7a:b2:fb:11:
29:af:6c:52:8a:15:bb:e4:d7:1f:14:ce:0c:60:77:
be:19:3c:b9:9d:26:53:fa:f1:c5:3f:74:e2:d0:57:
01:8f:ef:46:37:89:74:29:be:7f:95:89:0c:10:21:
83:e8:a3:b8:31:f3:8a:96:f4:68:af:d7:ab:57:69:
a9:6a:cb:f6:6a:c3:7d:4b:34:19:ef:f0:74:fc:ed:
d7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:07:60:39:A8:D2:85:29:1D:A7:7D:46:BB:25:EB:77:E8:6E:3E:12
X509v3 Authority Key Identifier:
keyid:91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:97:fd:b3:fb:16:d3:21:6a:dc:68:e0:a9:8e:fa:fe:7f:94:
15:22:09:4b:53:48:c8:20:da:11:af:22:2e:25:ec:c9:f7:73:
01:bf:03:49:32:bb:8d:52:e4:8a:6e:0d:e1:d7:9a:5c:5a:89:
b5:75:85:70:ae:31:f7:0e:f8:d5:a1:b7:d8:67:7e:fa:e1:db:
59:37:e4:18:c2:00:7f:8c:04:32:a1:c8:d4:87:90:6a:f5:f7:
7c:73:db:cf:5b:2e:91:be:89:cb:1e:82:63:25:29:f8:9c:06:
b5:7f:3b:75:24:5d:bb:c2:08:11:9a:69:b5:28:f6:f5:75:6c:
59:a1:12:91:76:bc:6d:01:fd:42:c1:31:20:0c:f8:8b:6c:d3:
49:5b:fc:91:4c:eb:29:6d:0c:7d:2b:7c:b8:b4:90:f6:0f:db:
54:ff:e1:3f:9a:93:b9:3c:46:1d:47:08:a4:2c:d0:8b:b4:00:
11:98:af:0a:0f:2e:92:10:d6:48:4d:b4:a5:fd:fe:d0:65:c5:
e1:9d:ee:a9:82:68:97:b2:b6:1e:ca:3e:55:92:4e:39:1a:f5:
c4:22:84:4f:6f:4b:ce:95:fc:56:e8:f7:17:8b:3e:0f:e5:47:
01:b5:66:6b:17:10:9e:3e:44:b8:1d:58:ff:3a:90:2a:4a:9f:
16:97:6d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:37:17 2025 by rpki-client