Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
File: XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft (raw, json)
Hash identifier: sopa7ZBdv7Tbkibr+yMWxgdPEGM+MWY7lneeB/m8tr8=
Subject key identifier: 01:EB:0F:9B:5D:28:63:34:E6:B4:DB:0F:D8:E0:35:68:52:A1:B8:E4
Authority key identifier: 5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
Certificate issuer: /CN=5dc67c6be367ab9e941d1427d050449447b8865c
Certificate serial: 0196564A5565CB595FA23D66FF04921477AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
Manifest number: 1505
Signing time: Mon 21 Apr 2025 03:00:34 +0000
Manifest this update: Mon 21 Apr 2025 03:00:34 +0000
Manifest next update: Tue 22 Apr 2025 03:00:34 +0000
Files and hashes: 1: A0W4NLtnqVewyPWtMUlDJQbCQXE.roa (hash: MYxIYetVdJmSAzMctuQMtMzPS4ahJ2EbSnELEfjBMw0=)
2: XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl (hash: gUJJPRZPdvPBGfoQWNX8eWVl75u2lWcmGO1PmgGIB7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:55:65:cb:59:5f:a2:3d:66:ff:04:92:14:77:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc67c6be367ab9e941d1427d050449447b8865c
Validity
Not Before: Apr 21 03:00:34 2025 GMT
Not After : Apr 22 03:00:34 2025 GMT
Subject: CN=01eb0f9b5d286334e6b4db0fd8e0356852a1b8e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:56:04:af:ac:ab:8b:e7:55:37:3c:00:d7:29:
5e:4a:9f:27:6f:37:65:8f:10:7c:af:a1:ce:21:f9:
ee:88:ef:91:8e:2a:f1:e0:52:a0:25:72:66:8b:bb:
36:e3:91:e7:5a:85:85:d2:4a:27:e2:71:32:df:d3:
1e:80:f5:a4:36:f2:ce:64:32:32:eb:41:9c:cf:b6:
7d:85:59:e2:b5:65:f0:5e:63:6b:c0:e7:8a:5c:89:
12:d1:b1:0a:c4:ce:39:74:79:6a:ec:c4:4f:f8:1b:
11:8c:8a:cf:41:2d:c0:01:20:ad:5c:f3:33:5e:ee:
ac:cc:5a:17:d0:a7:03:43:68:cf:5e:82:e6:40:a4:
68:99:5f:7a:fc:66:c3:70:8a:e8:f0:10:b5:48:e5:
ff:3f:5d:20:d0:fb:ae:a7:a4:d8:3d:ef:98:09:0f:
cf:ce:d3:d5:8c:5b:e5:1b:61:ff:e2:bd:74:40:96:
31:53:c3:37:c8:06:d7:a8:dd:e9:81:49:d5:ac:14:
ff:08:cd:86:21:c2:28:b1:9c:5d:32:f5:37:fc:10:
69:6d:79:79:d4:cb:97:75:d5:2d:72:c4:4e:d9:e7:
e7:52:a0:6b:7f:f3:15:4f:72:25:41:3c:91:d5:7c:
47:4c:ee:e4:89:ad:32:67:51:7b:3e:29:b5:ed:0c:
a4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:EB:0F:9B:5D:28:63:34:E6:B4:DB:0F:D8:E0:35:68:52:A1:B8:E4
X509v3 Authority Key Identifier:
keyid:5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:3a:8c:f1:12:a6:89:ad:33:99:a8:82:41:56:29:d3:ee:62:
3d:b5:ce:83:b5:97:58:63:4a:60:74:00:1f:17:77:8d:08:1c:
0c:f8:e0:c9:f1:94:c2:82:58:e2:ca:bb:9b:12:97:3f:84:93:
65:e8:b5:8e:3e:a0:47:9c:7d:2a:5e:ba:3d:8e:66:e1:ce:4e:
9c:64:a1:bf:f6:5e:49:c8:3b:eb:bf:bb:0b:d8:34:c8:0f:75:
5e:56:ff:2b:3e:45:11:24:dc:0e:3e:f7:e9:0d:23:12:0c:ef:
5a:45:30:3a:63:dc:5e:23:a7:0c:57:70:00:95:0f:d8:0b:96:
f5:ad:20:b4:b2:31:33:24:68:31:e0:f3:a1:d9:5d:a4:ce:0a:
ea:7d:ee:20:6b:7c:cd:6a:f8:58:62:1c:96:e8:09:9e:83:9a:
64:f4:5e:c7:82:75:17:68:d3:e6:0c:01:d6:06:7b:de:fc:e3:
df:97:7d:be:4e:44:ee:9e:96:b0:50:42:60:0f:7c:2a:58:08:
93:fa:5b:3d:4b:70:bf:b8:94:59:fc:43:a4:2f:ef:a6:3a:08:
83:94:46:76:96:49:54:a8:b8:91:c9:d6:c7:82:98:dd:36:50:
79:4d:96:5a:1c:64:bb:a4:fe:25:45:9b:63:c0:cd:3a:9d:f4:
d7:42:86:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:51:24 2025 by rpki-client