Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
File: XM97P9h86bzpn5ALZBmdYGvxYGk.mft (raw, json)
Hash identifier: 7OLR8Xt9/sKMRHZ63ZUqSUZOvnFxwRulMYvBba48mK4=
Subject key identifier: 23:B4:E9:09:C2:67:E0:6B:74:FB:D3:21:FC:0A:E2:18:5E:3C:4B:2C
Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Certificate serial: 01963F1DBBEC649BBD06E363264E3F580E3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
Manifest number: 1485
Signing time: Wed 16 Apr 2025 15:00:35 +0000
Manifest this update: Wed 16 Apr 2025 15:00:35 +0000
Manifest next update: Thu 17 Apr 2025 15:00:35 +0000
Files and hashes: 1: KOB0vwmJ7cfgZ_1WOb_Xx7LqG6U.roa (hash: a7bo8HXeX2LyPkuCveHxDVKdqnbGHzPDqS6LymzXHUs=)
2: XM97P9h86bzpn5ALZBmdYGvxYGk.crl (hash: phzJCCFVjc2w9YZ4++PULST8nlMtI92586oJRrhYIA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 15:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:1d:bb:ec:64:9b:bd:06:e3:63:26:4e:3f:58:0e:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Validity
Not Before: Apr 16 15:00:35 2025 GMT
Not After : Apr 17 15:00:35 2025 GMT
Subject: CN=23b4e909c267e06b74fbd321fc0ae2185e3c4b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:72:fe:78:08:11:0a:66:eb:5f:4f:34:29:19:
27:4c:57:c2:fa:f7:58:1d:3a:0a:6e:8b:dc:40:12:
e8:da:40:5e:df:a7:d7:4e:13:0c:68:60:66:7d:2c:
c7:1e:33:d9:99:2e:b3:f4:b0:38:89:ba:61:f8:88:
ab:2d:ac:d6:f9:df:dd:f6:7e:a0:5c:29:db:0f:f1:
46:ad:49:29:da:cf:35:79:72:4a:ab:eb:17:6c:f2:
71:b4:97:ed:7c:48:18:6e:fb:df:f9:f3:7f:ea:9b:
15:3f:6b:a1:f1:0f:b0:af:23:06:c7:a0:f1:4c:67:
1a:e8:68:ac:8c:39:42:5f:50:1f:e0:05:f0:96:3c:
b6:69:d3:1d:62:44:19:b5:38:12:33:d8:d3:14:79:
20:af:29:78:21:e5:1d:ef:82:0e:2e:84:7f:65:fc:
e5:6c:8c:13:45:e3:4f:df:dc:df:16:c5:a0:fb:eb:
69:8a:b1:24:a5:06:00:e9:44:cb:57:0c:ba:14:0b:
df:4e:20:cf:a4:4d:19:ab:2e:1f:1d:e0:a1:bd:69:
b3:f9:c9:66:4c:e3:38:d3:a9:95:35:d1:ac:34:1d:
fd:e2:03:35:13:28:3c:5e:a5:c6:55:f5:31:8f:aa:
a3:37:fc:c5:fd:86:87:2d:05:4f:c7:28:83:8f:80:
f2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B4:E9:09:C2:67:E0:6B:74:FB:D3:21:FC:0A:E2:18:5E:3C:4B:2C
X509v3 Authority Key Identifier:
keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:da:ac:37:2b:a5:cf:57:fe:ac:63:0f:41:53:d3:9e:33:cc:
14:50:65:9a:01:6a:08:9e:05:f3:e6:f8:0e:d9:96:b1:3d:f9:
68:f1:91:8d:20:ff:04:0f:72:3f:99:2c:69:66:c7:ec:af:11:
2c:fa:76:f5:3c:5a:44:6d:5d:b9:46:c7:a0:6c:db:ec:68:54:
f2:89:8a:e4:fe:61:fe:8e:14:da:19:e0:d0:d6:cd:ae:2b:83:
0b:9a:b0:b9:bd:09:98:68:95:89:c2:fc:42:63:8d:9a:12:27:
8c:64:95:38:91:3e:94:ee:1f:aa:25:33:98:f7:33:9f:35:4a:
f2:7a:d4:13:2e:b4:56:60:02:6c:60:f2:04:f5:46:44:5d:46:
15:7d:9f:57:25:46:3d:9d:e6:f1:eb:e3:cb:68:b3:08:eb:e4:
9e:3c:16:5b:26:5f:ba:99:6e:b2:ac:52:17:56:12:97:0a:3e:
55:2c:d1:fe:a1:af:cf:16:e6:b0:b5:f0:3e:0b:11:27:fa:f2:
66:dd:61:b0:ca:00:e2:74:9f:99:f1:ba:5a:d5:90:f6:1d:2d:
ab:ae:60:40:1f:87:0d:bb:45:5d:d0:e8:f6:c1:e9:74:e3:f3:
7c:e2:f7:9a:ec:d3:1d:b9:ba:29:82:bd:d3:fd:bf:85:fb:f4:
af:a8:ae:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:03:42 2025 by rpki-client