Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
File: XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft (raw, json)
Hash identifier: +ApUMbTYxfXleuJUMy61ksX0g+OvYH+QLZNLqRyX3PE=
Subject key identifier: BD:D3:64:C0:3C:B5:5D:08:D6:AF:B6:EE:9B:07:FA:91:4D:92:5C:E0
Authority key identifier: 5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
Certificate issuer: /CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Certificate serial: 019656137F36EF24F77FE0346F5C1F4FC71D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
Manifest number: 0C7B
Signing time: Mon 21 Apr 2025 02:00:40 +0000
Manifest this update: Mon 21 Apr 2025 02:00:40 +0000
Manifest next update: Tue 22 Apr 2025 02:00:40 +0000
Files and hashes: 1: 1-EeSCCOFCUoz0VplGP1Lo0h-9As.roa (hash: ZLnUsrTQcRzljBuufN+eacOU/oxAjJXf2wRzESRepgg=)
2: XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl (hash: AfI7Udp4AVuBpUo2Z8ylUCxjpWnI7o7dHHx3mL09qHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:7f:36:ef:24:f7:7f:e0:34:6f:5c:1f:4f:c7:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Validity
Not Before: Apr 21 02:00:40 2025 GMT
Not After : Apr 22 02:00:40 2025 GMT
Subject: CN=bdd364c03cb55d08d6afb6ee9b07fa914d925ce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3b:da:94:67:32:a1:c8:4e:23:39:d9:91:30:
76:eb:44:75:ce:41:90:20:43:69:c3:c5:e7:42:5c:
ff:16:a8:10:db:1a:7b:e6:e8:03:86:9c:53:bd:80:
9e:85:e6:85:1a:6e:be:b2:21:9d:95:71:3c:f6:1d:
86:e1:86:39:31:63:85:de:5a:8f:2a:4e:45:72:1e:
f7:04:eb:8b:31:dc:10:4a:93:90:2f:94:c3:6f:46:
62:e8:ad:18:27:eb:62:a7:79:11:cf:91:f7:cb:5b:
ec:22:e0:c7:e0:87:5f:9f:56:8d:83:8d:7b:3f:1a:
76:a9:d7:e5:c4:8d:3c:50:f3:8a:13:78:fb:a5:e7:
5e:9a:99:a7:91:52:2e:93:87:fd:04:6e:f1:85:de:
bb:9d:8e:ab:18:3c:c4:e4:f3:da:81:bb:db:bd:da:
d8:9d:b5:6c:07:a3:0b:13:ce:33:08:44:26:0b:13:
f0:83:b0:9b:f0:a4:2b:29:3b:37:9c:7f:e0:62:25:
23:aa:85:71:37:f8:4e:a0:76:63:85:2d:b0:82:7b:
e1:94:0b:9e:2a:f5:65:70:f3:76:9c:c4:37:81:e4:
8f:e1:ff:5d:5b:fe:23:e2:ba:69:e8:1e:fb:b3:e8:
98:cd:6c:a6:34:d1:b8:43:b0:3e:a1:20:89:8f:cd:
48:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D3:64:C0:3C:B5:5D:08:D6:AF:B6:EE:9B:07:FA:91:4D:92:5C:E0
X509v3 Authority Key Identifier:
keyid:5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:04:2a:d3:df:c7:64:e9:9d:d7:59:ba:46:99:04:d4:ce:e3:
f2:29:69:f7:e1:78:93:11:27:71:39:40:e7:d5:90:1d:31:17:
65:be:38:63:ed:55:1b:b9:82:cf:ac:31:c6:a6:c9:83:cd:3e:
8b:56:df:02:26:8b:05:53:e9:93:56:98:bb:86:ec:45:b1:53:
05:1b:c4:e4:7c:51:08:18:e4:4f:da:b4:7f:60:c3:39:01:2e:
33:ac:b6:3c:17:2b:de:29:c5:a2:a9:3e:98:6d:83:5f:94:51:
25:42:94:26:fb:11:59:00:0a:e7:48:62:cd:72:c2:7b:27:e5:
c7:60:3b:ff:bb:89:be:58:88:f5:c3:93:f0:60:5a:8f:df:61:
91:ae:bb:0a:cb:50:2e:c9:6f:40:8b:59:a9:76:ec:e9:93:4e:
6e:cd:99:d7:d6:f2:13:c8:9b:d4:13:9c:05:52:28:85:f0:d6:
fb:97:73:8a:46:50:08:69:49:d4:de:42:fd:5e:20:a2:1d:91:
fd:7f:bf:2d:56:00:bc:15:b7:8b:31:9d:4e:22:8f:76:2a:7b:
e4:e5:64:bc:93:0a:cd:3c:24:3f:57:20:7f:6c:1e:c4:4f:dd:
5d:3b:6e:f7:24:e1:d6:62:99:6b:19:21:5e:04:51:32:ae:df:
79:b2:93:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:59:21 2025 by rpki-client