Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.mft
File: KBp_B75cMTjLQ8LBiymqVGhUS6Y.mft (raw, json)
Hash identifier: LM36Ya040CmbwKnESypF4TPCrObJZoY8VwY9vB+lbl0=
Subject key identifier: 56:54:77:72:02:7E:35:0F:37:AB:24:7E:32:F1:BF:7E:2A:B2:F8:4C
Authority key identifier: 28:1A:7F:07:BE:5C:31:38:CB:43:C2:C1:8B:29:AA:54:68:54:4B:A6
Certificate issuer: /CN=281a7f07be5c3138cb43c2c18b29aa5468544ba6
Certificate serial: 0196BF00ECECBAC815921621D4E94D742BF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBp_B75cMTjLQ8LBiymqVGhUS6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.mft
Manifest number: 08C7
Signing time: Sun 11 May 2025 11:00:30 +0000
Manifest this update: Sun 11 May 2025 11:00:30 +0000
Manifest next update: Mon 12 May 2025 11:00:30 +0000
Files and hashes: 1: KBp_B75cMTjLQ8LBiymqVGhUS6Y.crl (hash: 0Vc3oDLVlKbe+x4yhpBYzmKVMmqKP8a3EjHx6nu8dVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBp_B75cMTjLQ8LBiymqVGhUS6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 11:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:00:ec:ec:ba:c8:15:92:16:21:d4:e9:4d:74:2b:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=281a7f07be5c3138cb43c2c18b29aa5468544ba6
Validity
Not Before: May 11 11:00:30 2025 GMT
Not After : May 12 11:00:30 2025 GMT
Subject: CN=56547772027e350f37ab247e32f1bf7e2ab2f84c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6a:47:4b:77:30:6b:a6:9e:05:be:73:c3:e9:
2d:b6:a4:2d:6c:61:53:fb:72:b5:ec:25:3e:d5:8f:
c0:6d:84:18:df:ff:97:31:8c:76:6a:3f:b8:a8:d4:
0a:df:45:e0:82:db:bb:5e:59:f8:27:ed:9c:ab:48:
2f:0c:a0:29:b0:dd:fe:a7:61:e3:c9:c3:ff:7b:dc:
87:73:88:b0:9c:05:89:85:f0:19:06:1e:a3:0b:15:
9b:45:75:ac:a8:bd:a4:cc:1f:7a:95:df:0c:1e:ac:
08:b4:68:a4:0a:47:c5:a5:22:91:d4:8e:cb:f4:18:
9b:f0:80:e1:5d:44:04:78:4e:3a:cb:b4:d1:95:e5:
0c:8f:2d:c2:a3:9d:97:7a:f9:fa:4d:e6:0f:fd:7d:
70:51:22:64:9f:77:cd:42:58:5f:39:87:84:90:92:
92:bd:35:22:86:1e:d1:f0:52:65:66:7e:05:9c:10:
43:bf:c0:8d:e8:34:be:71:cd:d2:22:dc:1b:01:1f:
25:3a:6d:3b:b6:dd:82:9e:2b:83:ea:1f:1d:17:62:
b9:40:b9:cd:62:b8:7b:50:d7:4d:28:a9:83:c8:d7:
00:f9:3c:3a:8b:81:e5:5e:dc:b0:29:23:d9:61:f3:
ac:2e:ed:82:48:8f:64:c6:90:19:40:3d:32:53:03:
02:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:54:77:72:02:7E:35:0F:37:AB:24:7E:32:F1:BF:7E:2A:B2:F8:4C
X509v3 Authority Key Identifier:
keyid:28:1A:7F:07:BE:5C:31:38:CB:43:C2:C1:8B:29:AA:54:68:54:4B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBp_B75cMTjLQ8LBiymqVGhUS6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:e0:6b:4a:84:db:47:ca:17:1e:d4:85:b9:55:9a:0c:4c:6c:
3e:d0:92:c3:6b:87:71:8d:1e:43:58:5f:9a:64:e4:58:2e:78:
7b:7d:65:05:37:99:9a:6f:6f:71:5d:e6:d1:ac:e6:83:5a:22:
d3:09:81:6b:d2:67:59:98:66:a7:8f:59:a2:92:27:4b:46:fc:
d7:7b:06:43:b0:6e:cf:3c:af:5a:ca:8c:b0:a7:db:a0:56:b8:
9d:42:71:0b:48:e0:d1:92:da:93:74:1e:a6:5e:8b:b1:0f:bb:
a4:a5:3f:75:4d:98:09:2e:0d:08:ef:11:58:c6:50:5c:1e:70:
e9:d0:8a:2f:22:ec:64:03:cc:59:f9:41:ee:56:b6:32:2f:2c:
a0:6a:b7:8d:e8:1f:c3:40:f6:b8:4a:2f:3b:a6:f7:3c:59:99:
95:5d:9d:15:99:e4:4a:9f:ea:30:b2:22:8a:9f:62:e8:57:d9:
b3:01:22:fc:bf:69:76:0f:58:db:18:03:86:cc:58:b7:57:5b:
3a:4f:31:14:8e:7e:3e:24:4a:a4:f8:c6:60:e4:f2:84:fd:2b:
57:f7:8c:74:d0:e9:71:87:f9:69:ca:68:2d:f8:bc:8c:a1:c3:
a2:eb:4e:9a:70:94:18:8b:1f:e1:04:60:3e:95:21:37:2f:81:
e3:bb:70:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 20:17:33 2025 by rpki-client