Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
File: kXWIXPl40u9mE3YhRTC57WjFtFg.mft (raw, json)
Hash identifier: fDPW9TuDRnrS9lzs5WeGTANR+C93pxlBTF2IlJlq+Wo=
Subject key identifier: 06:64:BD:A7:E9:2F:30:9E:34:5D:9C:6F:D2:29:DA:8B:65:C7:F4:27
Authority key identifier: 91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
Certificate issuer: /CN=9175885cf978d2ef661376214530b9ed68c5b458
Certificate serial: 0197B6A1BDA0EA8D37C4CCD2B134DC32EC5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
Manifest number: 08D2
Signing time: Sat 28 Jun 2025 13:02:22 +0000
Manifest this update: Sat 28 Jun 2025 13:02:22 +0000
Manifest next update: Sun 29 Jun 2025 13:02:22 +0000
Files and hashes: 1: kXWIXPl40u9mE3YhRTC57WjFtFg.crl (hash: /PB44DwndqO92wKsJWTDeYo2f72QEhKC7s1gVR8ewsE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:bd:a0:ea:8d:37:c4:cc:d2:b1:34:dc:32:ec:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9175885cf978d2ef661376214530b9ed68c5b458
Validity
Not Before: Jun 28 13:02:22 2025 GMT
Not After : Jun 29 13:02:22 2025 GMT
Subject: CN=0664bda7e92f309e345d9c6fd229da8b65c7f427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1d:3e:c9:08:95:6a:39:0b:a9:92:2b:2c:b1:
2b:02:ea:c1:90:ad:f7:80:4c:ca:ad:52:42:a6:d3:
d1:dc:73:df:74:33:ed:bc:d9:52:04:99:44:6d:29:
78:f5:25:ca:bc:c6:f7:35:01:51:25:a3:b0:0d:41:
bd:aa:6e:5c:1c:f6:3e:26:a5:af:00:f7:ad:17:65:
42:98:a6:ea:29:0a:b9:4f:e5:ad:1a:f2:6f:7e:4c:
62:79:6d:be:62:32:aa:e7:d0:ec:2a:f3:63:a0:f1:
55:df:2c:67:9e:f7:11:bc:ae:13:d4:f6:10:ca:48:
ab:39:fa:74:ca:87:50:d7:d1:ac:58:6d:29:82:95:
dd:50:43:92:6a:5b:eb:6a:b6:26:46:ee:52:94:12:
9a:60:b1:5f:b1:40:5b:19:5b:f6:ba:14:fb:0d:6b:
31:ca:87:0c:b5:3c:e5:c3:4a:ab:f6:3e:c5:90:22:
43:ec:6c:c9:0c:9e:47:4b:1f:9c:fa:06:d3:7e:12:
21:60:db:ec:30:a7:ae:27:a7:02:ed:2a:3a:28:42:
da:3e:ff:28:70:4d:f6:ba:f7:30:8b:7d:62:56:04:
38:17:58:c0:b9:62:d7:d7:3d:5c:16:4c:5a:f5:13:
cc:07:39:cb:bf:7b:b7:1d:3d:52:50:5e:77:f2:8d:
2e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:64:BD:A7:E9:2F:30:9E:34:5D:9C:6F:D2:29:DA:8B:65:C7:F4:27
X509v3 Authority Key Identifier:
keyid:91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:ba:23:18:0c:09:50:1a:8c:cd:f2:b0:95:08:b0:26:00:b7:
80:3d:ee:2a:2c:90:0b:cd:82:9d:a5:b8:a7:c0:5c:ac:12:5f:
47:25:37:a6:67:39:53:02:99:8d:b3:f5:a0:7c:f8:0b:08:5a:
bb:52:bd:61:64:9e:e6:36:9c:0f:21:6d:e5:3b:2a:00:83:a8:
a3:80:d0:7a:03:ad:b3:be:ab:15:e5:13:bc:6f:31:0a:60:e7:
d5:39:66:3b:fc:b0:a0:43:b0:13:59:ff:9b:45:8c:39:d1:d7:
cd:ba:53:66:04:65:d5:f1:91:6d:cb:37:67:75:5d:bf:25:59:
6a:88:09:1e:b5:48:50:82:bd:53:a6:28:bc:1d:97:a6:d4:d4:
18:11:ad:92:d8:6f:00:04:f1:0a:4e:42:6d:e2:31:6a:97:96:
0e:6a:80:83:2c:6a:41:79:c2:96:76:01:34:59:49:74:a9:2b:
d5:55:1e:8a:3e:50:d6:58:eb:98:03:6a:a7:7f:48:72:10:d4:
4c:04:79:ca:b0:6f:b6:c8:28:50:62:9d:4a:5e:fe:71:e9:13:
1e:08:21:53:a2:54:f8:ef:73:4d:fa:92:d6:76:3c:b4:8e:26:
16:55:1b:77:4d:4d:05:1e:b7:e5:10:10:21:85:1e:c3:30:a7:
5f:af:f7:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:41:28 2025 by rpki-client