Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
File: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft (raw, json)
Hash identifier: 8FhM5HYrJye/H6INrcK8cbOvSUQKPncJh7lX1ft5lhs=
Subject key identifier: 54:95:11:34:CF:13:E3:A0:58:7A:EF:18:6E:5C:23:FD:C0:70:DB:03
Authority key identifier: 91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
Certificate issuer: /CN=91d338370e10627a4cd631e3fde186e194898c81
Certificate serial: 0196A051DD1350B33809CA9A7188E1C9E86F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
Manifest number: 0B10
Signing time: Mon 05 May 2025 12:00:41 +0000
Manifest this update: Mon 05 May 2025 12:00:41 +0000
Manifest next update: Tue 06 May 2025 12:00:41 +0000
Files and hashes: 1: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl (hash: T99ttOHh2QjnZUTfbTfGKyJw/QUws7aIubWmxrY4Bto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:51:dd:13:50:b3:38:09:ca:9a:71:88:e1:c9:e8:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d338370e10627a4cd631e3fde186e194898c81
Validity
Not Before: May 5 12:00:41 2025 GMT
Not After : May 6 12:00:41 2025 GMT
Subject: CN=54951134cf13e3a0587aef186e5c23fdc070db03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e1:4c:a5:88:06:23:3b:c2:10:fe:95:07:ad:
91:a9:b6:b1:32:95:cd:7d:9c:65:48:7a:3f:9a:df:
94:c9:d3:a2:a1:f3:1d:ba:1f:21:85:6c:8b:8e:f4:
81:39:57:02:65:67:d1:56:50:26:7d:cf:a5:08:4c:
ef:f7:d5:6b:2b:e5:c0:2e:73:11:d7:ea:11:82:81:
a2:b5:a4:bf:a4:63:41:6f:b7:68:75:1d:96:c5:74:
87:b6:d9:ad:4b:89:c3:8e:4b:72:67:12:93:49:cd:
d8:24:87:bc:e9:10:d2:b4:2a:fd:10:b8:f3:6d:43:
d2:18:61:24:cf:d1:6c:43:80:31:18:08:a0:5b:c4:
3d:ec:39:96:74:c8:6c:c1:e9:58:19:8f:63:ab:f0:
fc:97:e1:23:86:5c:3b:c7:41:84:a7:e7:3c:80:3e:
3b:89:0d:4c:bb:5d:82:47:db:15:55:d2:15:8b:12:
97:8a:b1:30:be:e8:04:c5:ca:0a:77:e7:10:37:c3:
6e:af:4b:f5:00:72:e7:8d:dd:9c:74:28:0d:03:51:
b9:3d:ca:63:02:7f:90:9b:b4:d9:24:4a:4b:9c:25:
52:4f:44:30:98:a1:eb:6c:81:48:1a:1f:6e:10:9b:
2b:d9:ae:3c:d4:c2:7f:b6:de:cd:ae:ac:a1:e6:3c:
6b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:95:11:34:CF:13:E3:A0:58:7A:EF:18:6E:5C:23:FD:C0:70:DB:03
X509v3 Authority Key Identifier:
keyid:91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:0f:9c:4e:b4:ff:b8:ce:2b:4f:21:85:cc:28:db:4f:7c:c5:
63:67:4b:da:8e:23:32:86:5d:20:6d:96:b8:2c:b2:77:5b:73:
26:9b:61:45:24:3f:c8:d0:1c:5c:fd:b3:63:ae:3e:a1:91:38:
1e:5e:cf:41:6f:09:7f:1d:0a:60:1a:56:3d:d4:97:ff:8f:77:
46:e8:66:72:16:c1:8b:ca:f0:7f:8d:82:c8:c1:0b:16:df:aa:
79:99:3d:8e:c7:e0:af:d1:ab:d6:00:86:bb:c6:a1:6e:17:c8:
65:9a:5c:63:e8:d9:9c:61:89:bb:65:3b:43:ab:a3:c6:59:68:
7c:6b:00:44:eb:ee:53:39:86:32:bb:0a:2f:b3:f5:e7:5b:36:
73:23:52:e5:1c:ee:ee:7a:08:9f:01:48:6a:95:52:d8:9c:5c:
93:af:6c:17:ce:cf:30:91:c6:41:38:b9:b3:f6:f2:1e:57:4c:
cc:86:94:98:33:2d:e5:9a:fe:32:64:70:22:57:28:65:1a:2c:
b5:2c:08:0a:ad:a5:a3:69:41:c8:eb:7d:dc:e8:a5:e1:c4:3b:
a0:a7:5c:45:d4:3a:2a:55:33:8e:dd:c7:97:e1:36:8d:f2:d8:
f7:06:b2:9f:b5:c4:74:bf:55:25:8c:31:81:1e:a5:c1:27:3e:
20:09:02:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 15:13:05 2025 by rpki-client