Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
File: XX2xSVjPTXheWe9cbGefjvVMHYs.mft (raw, json)
Hash identifier: XDZDlXVx0/buFMLGsPqa8G7nvToL82k5qdD3XO9dHO0=
Subject key identifier: FD:F5:D5:CC:14:9E:45:C1:EE:E2:25:A4:A7:BB:34:20:A8:68:5E:81
Authority key identifier: 5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
Certificate issuer: /CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Certificate serial: 019655A59AB354BAD31DB586E515157EECAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
Manifest number: 04E6
Signing time: Mon 21 Apr 2025 00:00:38 +0000
Manifest this update: Mon 21 Apr 2025 00:00:38 +0000
Manifest next update: Tue 22 Apr 2025 00:00:38 +0000
Files and hashes: 1: XX2xSVjPTXheWe9cbGefjvVMHYs.crl (hash: G9UxvuQHjy/Tlbok3AWsPCbTRMBUbVrNSQ5QtXp/a6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:9a:b3:54:ba:d3:1d:b5:86:e5:15:15:7e:ec:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Validity
Not Before: Apr 21 00:00:38 2025 GMT
Not After : Apr 22 00:00:38 2025 GMT
Subject: CN=fdf5d5cc149e45c1eee225a4a7bb3420a8685e81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:81:8a:3c:a4:dd:a2:5a:31:52:9e:de:65:a4:
ef:78:cd:dd:d6:a0:a3:da:69:d5:ca:ea:70:d3:6a:
46:c2:85:cc:bd:bd:33:23:4d:d3:f3:07:5c:aa:f8:
91:d3:c0:7b:5c:d7:51:a6:f5:9e:63:4a:b3:26:20:
04:fc:bd:84:75:1a:6b:a1:ed:da:a8:6a:cd:6a:56:
b0:30:64:b1:ec:14:98:f3:c6:7e:fb:31:3c:65:9f:
62:cb:ca:3b:83:fb:5a:e1:65:45:53:2e:83:f8:c9:
f3:65:66:90:e4:18:17:42:96:5d:4a:13:95:91:2d:
86:b6:e1:3f:04:6e:e2:31:19:d4:4d:51:3f:d3:3f:
3f:3f:67:57:b2:74:b8:69:df:24:30:5c:b2:18:91:
93:b5:23:82:cb:6d:b3:3b:1c:29:54:7a:3d:3d:a4:
d7:96:53:95:44:fe:d6:4f:8c:25:2b:cb:08:78:3b:
77:3f:f4:cf:6d:fc:c6:b7:dc:ea:c7:b8:47:c2:5d:
ce:a1:0b:c6:5b:a0:0f:af:1f:65:af:3f:c9:4e:7a:
5c:8b:ec:43:32:d0:ba:37:f3:25:d3:08:e8:18:6c:
b7:00:05:65:ab:77:37:00:c4:ac:f7:9e:af:de:ba:
93:49:b4:ef:f2:99:55:26:90:e1:bb:3e:cf:c7:e1:
24:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F5:D5:CC:14:9E:45:C1:EE:E2:25:A4:A7:BB:34:20:A8:68:5E:81
X509v3 Authority Key Identifier:
keyid:5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:99:68:7e:3a:1e:85:b2:b0:db:65:d8:0f:d0:e2:62:58:0a:
ef:9e:a4:aa:e3:19:33:d8:7b:c6:f9:a0:f6:09:c3:ab:bf:4e:
a8:3a:69:c6:93:ff:13:c2:02:df:ad:d5:46:82:bf:14:2d:9e:
1d:73:23:4c:f6:8e:32:44:40:19:55:4f:9c:88:88:fc:90:6e:
9e:8d:a8:04:eb:df:9f:bd:e5:72:9e:d6:00:b4:fb:09:90:e0:
b2:e8:de:d0:0a:64:82:c2:13:26:b7:7b:6b:a5:0c:f5:fa:5e:
cc:dc:95:c7:36:6c:e3:a9:15:d9:b0:1f:0c:81:51:13:b0:bd:
c0:0f:8c:e2:a3:f7:34:c3:41:71:01:6d:79:43:ce:a4:58:07:
37:a5:5c:2d:44:bb:fa:fc:f1:46:ed:a7:c7:de:43:fe:d4:b3:
2d:31:6d:bc:e9:10:f0:d1:ae:e4:4a:65:52:20:f1:9d:07:a1:
34:88:73:a5:90:49:f1:83:2b:0f:c6:89:a7:f4:56:8b:b1:70:
e1:b7:d7:6e:2b:44:60:19:39:05:a9:c2:92:97:02:3f:39:d1:
26:7c:06:84:ec:74:d1:0f:52:63:2e:45:f0:9b:4d:55:01:f9:
3f:96:5d:a5:e9:e4:e2:14:ab:f4:5a:d9:18:c2:4b:96:b4:47:
e1:b2:1c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:46:25 2025 by rpki-client