Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft
File: XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft (raw, json)
Hash identifier: SoSJ4ljnOeqH/h40C5yT8bk/2B2eKYZZFlma8pQTKcA=
Subject key identifier: 58:5F:3E:16:6C:C1:51:4A:C1:94:84:F8:5B:3D:58:F7:C6:D2:D0:08
Authority key identifier: 5E:A6:8C:85:38:10:D0:32:0B:15:68:44:F2:93:17:70:1B:58:61:0D
Certificate issuer: /CN=5ea68c853810d0320b156844f29317701b58610d
Certificate serial: 0194C3F5BA3CBAAFDA02281153BB0AE2E163
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft
Manifest number: 086C
Signing time: Sun 02 Feb 2025 00:00:48 +0000
Manifest this update: Sun 02 Feb 2025 00:00:48 +0000
Manifest next update: Mon 03 Feb 2025 00:00:48 +0000
Files and hashes: 1: XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl (hash: Bh1USULqHS/P6WPDKXtr6JmCy2y08HSVesiNPUGaT58=)
2: zWctF490hB_hw_nmdFUFC_bPmMM.roa (hash: SsIXLaayVDdukX1So7HtLQgGu/7qBD8U27FPnJFIDDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:ba:3c:ba:af:da:02:28:11:53:bb:0a:e2:e1:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ea68c853810d0320b156844f29317701b58610d
Validity
Not Before: Feb 2 00:00:48 2025 GMT
Not After : Feb 3 00:00:48 2025 GMT
Subject: CN=585f3e166cc1514ac19484f85b3d58f7c6d2d008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:aa:65:41:0b:ac:93:59:96:44:a7:14:c6:14:
af:f0:d8:5b:4a:9a:ba:6a:be:c1:27:c9:fe:40:72:
2a:90:25:f0:e7:bd:02:16:76:39:60:41:7d:89:5a:
2c:0c:92:eb:c8:6f:f0:b1:01:1f:d3:c6:d7:64:d1:
8f:73:d8:69:00:5f:50:26:1e:20:84:d4:85:19:c0:
10:9d:dc:ab:48:62:a5:c7:46:88:37:ed:fc:8c:92:
bd:25:d0:9a:1e:ba:d8:6f:33:0e:a6:19:01:95:04:
38:88:4f:e9:92:16:46:e6:a9:53:39:88:df:5b:dc:
8d:a6:d3:c9:00:c6:51:0d:1f:5d:a2:ae:77:4c:48:
ff:ba:9c:85:60:34:e2:4a:52:16:a5:58:be:45:75:
84:71:e4:65:46:7a:ad:39:35:06:96:4a:46:ea:f6:
32:24:96:5c:f1:64:ce:bc:e2:ba:e1:46:33:f1:0b:
c4:cd:b5:7a:af:71:a3:60:83:72:36:76:02:53:a0:
8b:0e:2e:29:b7:48:35:77:5c:b1:29:10:85:7c:54:
08:0c:87:b7:07:26:c7:74:21:f5:00:81:0a:7e:6b:
f9:5d:06:17:a7:e2:26:ca:0c:d7:cd:14:68:84:d4:
29:ed:e7:4e:1f:32:e8:6c:71:95:49:d6:d4:9a:95:
1a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5F:3E:16:6C:C1:51:4A:C1:94:84:F8:5B:3D:58:F7:C6:D2:D0:08
X509v3 Authority Key Identifier:
keyid:5E:A6:8C:85:38:10:D0:32:0B:15:68:44:F2:93:17:70:1B:58:61:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:d3:19:d7:85:98:38:e5:e1:74:c8:07:18:2b:ab:19:ce:2b:
38:6f:14:07:2b:2c:01:26:83:e3:1f:3f:19:16:5c:9b:a5:85:
59:df:5e:b9:36:89:26:c4:b6:86:bf:2c:f8:82:11:70:f8:50:
ce:2d:27:7e:3b:33:f5:ef:99:33:52:d2:17:e7:04:00:36:69:
1c:74:03:b1:1b:0d:03:12:36:d8:c5:3c:77:d9:94:c0:82:93:
5c:f5:9e:fd:15:16:85:cd:42:a8:d0:5f:b8:82:99:6e:81:b7:
17:87:48:14:b2:06:f5:13:34:ab:9d:67:79:2f:07:23:50:71:
83:0b:e7:63:23:40:18:a5:23:43:f5:df:cd:42:83:4d:5e:cf:
be:00:a9:d2:00:ba:ec:98:f5:2e:ba:20:1c:c5:94:2c:ff:51:
31:13:0c:4c:bb:18:30:ef:51:ee:70:b6:f4:a2:2d:c0:ca:db:
ef:3f:4b:39:17:df:f4:bb:3b:5f:f1:9e:ca:fe:85:0d:a8:90:
df:66:78:9e:eb:7f:fe:77:a5:0d:74:f8:6f:7d:99:29:bd:3d:
79:6d:c1:4b:27:11:a6:86:5c:4e:d5:30:ba:9b:b9:c6:80:4d:
dd:84:56:84:59:e6:61:7e:98:35:43:19:d9:40:c6:b0:9b:da:
3a:6f:93:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:44:28 2025 by rpki-client