Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
File: kjlpG6eScAY69DZNMIYxNl6QEWo.mft (raw, json)
Hash identifier: ELyLRGT3LUi7V4vrlvi07jYA8wQB/21MveTXDOH4RL8=
Subject key identifier: EC:0C:91:E6:EA:63:1D:99:3F:17:CE:C8:0F:F6:4C:84:0E:EE:CC:50
Authority key identifier: 92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A
Certificate issuer: /CN=9239691ba79270063af4364d308631365e90116a
Certificate serial: 019676E7A3BE8E96558E33C735497BE86228
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
Manifest number: 0C69
Signing time: Sun 27 Apr 2025 11:00:14 +0000
Manifest this update: Sun 27 Apr 2025 11:00:14 +0000
Manifest next update: Mon 28 Apr 2025 11:00:14 +0000
Files and hashes: 1: kjlpG6eScAY69DZNMIYxNl6QEWo.crl (hash: uNDp4lhRsf8S+89rq2t+MEnqANGABW6br5kG2EiUL+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 11:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e7:a3:be:8e:96:55:8e:33:c7:35:49:7b:e8:62:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9239691ba79270063af4364d308631365e90116a
Validity
Not Before: Apr 27 11:00:14 2025 GMT
Not After : Apr 28 11:00:14 2025 GMT
Subject: CN=ec0c91e6ea631d993f17cec80ff64c840eeecc50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2c:d9:97:78:1e:68:dc:a4:af:11:06:fd:c8:
63:b2:c2:ac:04:6f:64:5c:3d:c8:da:91:97:0a:08:
37:65:31:a5:b4:83:23:ae:d5:a8:f7:46:60:ce:a9:
4c:b6:6e:62:d1:42:81:3e:e4:5d:24:12:38:b1:c4:
31:5f:5d:41:c8:32:ed:90:24:88:cb:19:37:c9:33:
7f:0c:b2:a6:07:c7:2d:00:8b:48:90:95:b8:24:d3:
d0:e6:ba:cc:d9:a3:f0:7a:03:8a:76:e2:ab:2c:12:
70:38:b5:ea:2d:eb:a5:ca:6f:4f:81:3c:e3:92:53:
82:e0:ca:22:63:8c:16:f1:61:fd:eb:f5:e5:61:e4:
40:7a:8b:a8:31:37:fa:2d:86:d6:ed:50:a2:5b:30:
1a:dd:3a:72:63:6e:4b:7e:57:4e:aa:e7:1b:b4:9b:
db:06:a1:5f:cb:bc:a6:df:0d:62:ac:84:23:ad:1f:
ff:51:ba:3b:f8:cb:34:66:67:61:d0:b9:93:91:98:
aa:5d:1b:81:3d:9e:85:c4:07:e1:0e:fb:2e:f5:a5:
eb:2e:14:47:fd:a0:f6:70:c4:b6:6b:45:98:12:76:
cb:34:57:3f:e3:32:5f:76:6e:9c:f0:65:9a:e0:cb:
b6:38:47:df:61:f3:a9:eb:d6:ca:16:30:2b:75:eb:
3a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:0C:91:E6:EA:63:1D:99:3F:17:CE:C8:0F:F6:4C:84:0E:EE:CC:50
X509v3 Authority Key Identifier:
keyid:92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:31:43:f7:98:3f:1b:0c:36:49:ae:b8:85:87:a2:8d:b4:0c:
a3:04:fb:c2:d3:fa:17:4a:ef:6b:7a:d7:54:b5:42:99:ed:e9:
bf:ff:86:0d:c4:69:e3:d6:68:57:96:10:bf:25:80:31:4a:08:
5f:f9:8a:6e:cf:b5:b4:73:37:cb:d2:4b:8f:c3:66:34:e2:21:
62:2b:9c:f5:a3:cc:c8:04:d7:b9:0e:8a:4d:46:9c:40:97:ec:
fa:f1:de:fb:46:14:f9:dd:e0:e4:ee:24:2b:fe:aa:b3:1a:d0:
1a:50:f3:a4:73:21:f4:db:ef:52:a3:1e:81:75:a8:cd:95:8d:
93:cd:0c:e0:c4:aa:7f:87:d7:16:57:60:b8:5e:a0:72:d0:39:
6d:af:f7:32:45:ff:92:1e:fb:2a:07:7d:57:96:3c:36:29:35:
d0:f4:21:75:87:06:81:9d:b8:72:50:45:66:df:67:4f:ee:3a:
9c:8c:7f:30:97:7a:fc:dd:22:b9:e0:20:cd:1b:1f:47:3c:bd:
39:c3:03:29:3e:26:a0:b7:2c:46:e0:06:69:9e:5c:7f:f5:9a:
1b:74:b1:31:09:14:4e:02:dc:07:da:9b:fb:81:8e:03:0c:65:
90:bd:3d:e8:42:bb:e2:68:c1:5e:39:a2:7f:c8:6a:64:64:04:
aa:62:fc:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:19:59 2025 by rpki-client