Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: zigY0opyhs7aDG+ctoJPlPTBy5Un3rjKcXzp2qgNAH0=
Subject key identifier: D8:2E:8F:EC:97:0D:8C:E1:E2:9F:7D:2A:EB:4C:43:D2:52:5F:69:F4
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 019655007A7BB1F5AE74ECEBDB243871E530
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 1242
Signing time: Sun 20 Apr 2025 21:00:16 +0000
Manifest this update: Sun 20 Apr 2025 21:00:16 +0000
Manifest next update: Mon 21 Apr 2025 21:00:16 +0000
Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: 7g8GuO2lsEH9A2hqSDyGV68BaEelRSWV62kwUVAs4qs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 21:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:7a:7b:b1:f5:ae:74:ec:eb:db:24:38:71:e5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Apr 20 21:00:16 2025 GMT
Not After : Apr 21 21:00:16 2025 GMT
Subject: CN=d82e8fec970d8ce1e29f7d2aeb4c43d2525f69f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ce:a1:44:9b:3e:b6:32:60:fe:07:62:28:a6:
d8:60:72:41:bf:c6:21:2e:bb:5c:18:29:fb:3e:04:
ec:8f:28:15:ae:77:4f:1d:fe:ac:ed:d1:f6:3c:a5:
01:22:df:75:16:76:ce:69:cc:aa:33:57:39:54:17:
08:80:01:77:82:c6:06:a4:a7:4f:e8:2c:5d:12:49:
95:4a:f4:9b:17:ea:27:8f:24:65:09:9e:b7:69:2e:
ac:4a:ad:1a:b1:14:56:00:62:b5:2e:5e:82:c1:a7:
9d:37:7e:ee:a6:9b:b8:8c:15:40:4e:46:27:0a:69:
26:d6:48:90:e4:eb:08:73:c0:b6:6a:89:40:5d:92:
96:cb:c9:d0:83:80:b8:ab:b0:e9:78:86:0a:14:3b:
eb:60:9e:bb:7c:ef:85:87:56:bd:83:a5:9e:81:7e:
4e:47:be:d1:8f:bc:ea:15:a5:dd:f5:2d:8b:a7:35:
06:c3:03:4c:20:3d:fe:aa:7f:c7:8a:42:ed:10:e9:
d1:c7:ff:65:6a:6c:ca:04:21:e8:d6:cc:0d:52:f1:
7c:fd:10:55:c9:df:3e:8b:71:65:62:10:5f:9a:5a:
a3:96:6c:db:6b:91:b3:3b:de:bd:a6:7d:c0:db:88:
03:bf:26:0e:5c:ec:57:1b:8f:fc:55:47:7f:e2:fa:
b6:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:2E:8F:EC:97:0D:8C:E1:E2:9F:7D:2A:EB:4C:43:D2:52:5F:69:F4
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:49:8a:d8:c8:a9:c6:48:fb:04:05:35:e9:5a:21:77:12:07:
8d:f8:4f:71:04:9b:11:fb:1a:6a:54:1e:21:e2:f1:ad:90:00:
29:36:8f:21:a7:3e:ba:c3:5d:7a:9b:ac:a2:16:96:eb:1f:54:
51:8c:1a:bb:4e:5d:3f:37:ce:50:04:4d:d6:6f:bf:4a:2f:ae:
f4:9c:e2:6e:7a:a2:8f:5b:db:0b:5b:25:42:99:3a:fd:5a:1b:
7f:44:c9:83:4d:61:da:cc:a3:5d:3c:7b:bf:68:7d:b5:e8:76:
63:4a:81:06:86:43:59:ab:b4:d8:5a:1a:e2:a8:e6:07:ac:03:
a4:0a:4c:c3:67:e3:d6:74:97:ae:1d:69:fc:bb:15:33:2e:31:
ee:72:9a:01:49:29:7d:d4:9f:cb:e5:0f:9e:d5:1a:4c:c6:2f:
42:85:27:34:05:7e:e1:29:b8:1e:a5:43:98:25:49:a6:71:12:
ee:75:f7:12:51:9f:42:2a:cc:d9:f1:ae:46:45:ad:3c:75:f1:
80:14:3f:cb:22:a0:2b:f9:88:f8:3b:bf:6f:f3:e5:36:cc:5f:
b3:49:46:7a:6f:36:e9:43:96:25:5f:42:2b:4a:d9:cb:2e:ad:
a6:eb:dd:02:eb:74:8d:28:d0:35:3f:a1:1d:33:ae:1b:74:9b:
d6:5d:19:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:42:05 2025 by rpki-client