Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
File: XwImpwTPYg6yAA8n56kZznMJkb4.mft (raw, json)
Hash identifier: 5+lRAHpMlB655oAXX60BaoounYO+WMr9iGc7LCgjoA0=
Subject key identifier: DC:75:9D:9C:32:2C:8C:82:ED:98:C2:BC:3B:9A:B3:97:29:52:95:17
Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be
Certificate serial: 0196150F5DABD3885E9E4D75D4130268FCBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
Manifest number: 0D3B
Signing time: Tue 08 Apr 2025 11:00:50 +0000
Manifest this update: Tue 08 Apr 2025 11:00:50 +0000
Manifest next update: Wed 09 Apr 2025 11:00:50 +0000
Files and hashes: 1: P2NRYwvD64-ChL8WHsL3n2VNc0o.roa (hash: ieevRAfzDccOVGuN3ZGz3jBO2k67pRtiKtsN5CR5hf4=)
2: WePWXi4BVJvCbK70G_Bl8LvCy1A.roa (hash: KcxOlT86bPrqOuZYUTgExqyOPNUmMSnB0pr0K4kluRk=)
3: XwImpwTPYg6yAA8n56kZznMJkb4.crl (hash: bThv1AX8tL8wuzq5KwmFbAlPLrGndBdsO8lSalMAx7I=)
4: ZN7LHZSqu6VYidqfpIPOfCxL2L4.roa (hash: HOkUkg1LrwSaHvSseUfJQzAJzpgcTNuaZCYPqCnldN0=)
5: fm5A4Lmh3Dyoqm8phCUbdJ-SJ50.roa (hash: y1l9jzGOcVZ0GENozcALgbMdp6ZfPx8sRn42vZfb0eg=)
6: mOQsXh6W-nguYweUEP-GggtQ8co.roa (hash: BRX6qGv8sEq7HbLRmf+hKda82RdBa8GI6j+263A+qA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 11:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:15:0f:5d:ab:d3:88:5e:9e:4d:75:d4:13:02:68:fc:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be
Validity
Not Before: Apr 8 11:00:50 2025 GMT
Not After : Apr 9 11:00:50 2025 GMT
Subject: CN=dc759d9c322c8c82ed98c2bc3b9ab39729529517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:43:7e:67:8c:93:f3:ce:41:a0:f9:7f:95:a6:
88:33:90:34:2f:32:2e:c9:a2:46:48:13:fa:be:b9:
8d:73:9c:ef:6d:70:44:78:fe:9e:b4:9a:7f:aa:9c:
75:18:84:c5:e1:ca:04:62:c4:de:3f:16:11:3e:5f:
70:c7:be:fd:14:55:ea:78:4a:5b:a7:97:4f:40:01:
ca:5d:7b:58:e5:a7:03:e4:a6:4f:3f:73:ec:24:e2:
89:59:90:88:8d:48:80:ba:ee:74:4a:97:a3:f8:5d:
5a:e8:6d:bb:3b:37:87:e3:72:16:c7:20:52:08:ab:
de:b3:e9:a3:8b:27:90:f1:e5:c2:24:83:26:76:83:
59:9f:1a:d0:1d:f3:b6:2b:c6:3a:af:97:68:4d:4b:
6d:88:c8:0b:68:ff:3c:86:30:a8:62:74:a1:5c:40:
27:06:8c:c9:07:7e:3c:c9:54:4f:e9:bd:86:28:71:
ec:c9:86:33:13:ce:c9:fb:e2:4f:87:1c:28:03:37:
de:f1:70:50:07:fe:bc:a9:a1:56:34:a4:03:6c:93:
8e:7b:0d:2e:ef:8e:cd:56:8e:45:9a:c1:fb:84:3f:
42:5f:55:80:b3:49:7c:b0:24:7c:ef:8c:5a:49:b2:
7a:a9:bc:83:94:ea:a5:db:c5:02:7f:09:21:91:7a:
de:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:75:9D:9C:32:2C:8C:82:ED:98:C2:BC:3B:9A:B3:97:29:52:95:17
X509v3 Authority Key Identifier:
keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:e7:87:8d:b2:19:08:05:ab:6a:4f:67:56:ab:cd:75:d5:0a:
5b:3a:7c:4a:16:bc:00:a9:6b:9b:98:c5:31:86:47:6e:fa:51:
28:65:77:2e:98:5f:10:7a:11:99:e1:91:b5:00:24:f4:05:2f:
b6:e4:10:e9:a9:bb:db:41:83:fd:4f:60:e5:78:6f:0a:d1:45:
b9:5d:06:50:f1:bb:1b:6f:c7:c1:0f:46:7b:9e:e9:ec:98:ee:
20:6d:d9:8f:b7:a0:b8:ff:b4:5e:0a:15:e6:ef:03:80:1d:40:
d9:0b:b5:3a:4b:ec:e3:1a:c1:e7:02:55:b8:a2:cb:8a:85:f1:
02:f7:c0:43:c2:dc:ae:9e:0a:ac:77:31:3e:e6:2f:c9:c5:95:
fe:69:21:2e:1b:b5:2e:83:7e:1b:6e:69:3b:b1:97:6f:4c:50:
40:73:b6:9f:b0:4c:9e:b9:02:c4:1e:3e:1d:e4:ac:d1:d2:4e:
1d:a9:2c:78:c5:de:c6:d8:a4:28:ff:9b:86:71:40:84:6b:27:
bb:87:cb:a3:be:80:67:78:f8:41:67:c0:11:1d:84:d6:3a:0d:
52:52:57:98:ea:69:15:eb:48:63:b6:19:66:14:80:98:17:1f:
d4:d1:91:ba:f4:bf:71:d3:c1:61:56:a6:0c:f7:06:04:81:d7:
fc:7a:b8:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 20:58:24 2025 by rpki-client