Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
File: XEwop1rJaVHcOEAKgPnvOqryqss.mft (raw, json)
Hash identifier: 5Z10cZbivwZEUWCZ1MymCYKYycfyE8YKlbC7zt+/bps=
Subject key identifier: 3E:D1:4C:48:B6:5B:83:F8:85:74:48:35:34:64:EF:44:7F:C4:34:33
Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Certificate serial: 01963F5475A6BB03856915EAA3EE882A7112
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
Manifest number: 14F3
Signing time: Wed 16 Apr 2025 16:00:21 +0000
Manifest this update: Wed 16 Apr 2025 16:00:21 +0000
Manifest next update: Thu 17 Apr 2025 16:00:21 +0000
Files and hashes: 1: XEwop1rJaVHcOEAKgPnvOqryqss.crl (hash: ju3IB/hziUq/h5rtLv5iBYspmFWcRJNDQBybWyxt4yI=)
2: eIbScniidhxgoW_2gLpLbnftECI.roa (hash: 0LV2/9XqX9EVzrNxsg5Sc4fQTUKSwMZdzfQWJW36Pqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:54:75:a6:bb:03:85:69:15:ea:a3:ee:88:2a:71:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Validity
Not Before: Apr 16 16:00:21 2025 GMT
Not After : Apr 17 16:00:21 2025 GMT
Subject: CN=3ed14c48b65b83f8857448353464ef447fc43433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:63:0f:a4:81:11:eb:4a:6e:cb:3e:48:13:c2:
dd:ad:48:4e:48:c5:7c:23:58:d9:a3:3b:a7:bc:37:
df:60:25:80:9b:67:37:64:4b:db:65:67:ec:ce:43:
6a:50:72:07:bf:46:b3:b4:18:1e:3e:5c:ed:c7:c6:
c6:46:47:cf:f0:6a:c8:8e:b1:c9:76:5d:54:d8:58:
63:9a:89:9a:83:47:cb:69:78:9c:ae:75:14:20:53:
f8:32:5a:1a:d0:dc:7b:50:56:1b:d5:1b:db:af:52:
0f:b4:0f:72:40:b7:b8:e9:a5:f5:c2:1c:3a:99:d5:
a7:ab:04:15:a7:89:77:57:e2:62:68:bf:c6:f3:50:
ac:6f:b2:b5:f5:06:60:a2:a9:b6:5f:7b:42:14:17:
7b:00:ac:fd:7d:ef:9a:11:1e:75:7f:c7:c4:63:a2:
d3:e1:db:49:49:78:95:b8:49:7d:61:92:5e:d2:3b:
21:ca:89:3b:ab:1e:73:c3:64:cb:d9:40:0e:6a:fe:
7a:d1:9d:ef:1b:10:be:b9:da:ea:13:ca:b5:cc:d3:
cd:ae:84:e8:5e:b9:3d:38:30:8b:0b:89:07:4c:9b:
d6:a5:8d:bf:25:f3:96:24:6e:2c:1d:d3:c8:06:8d:
4d:f0:9e:cb:53:a5:80:e9:87:8f:69:e0:38:8a:bf:
df:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D1:4C:48:B6:5B:83:F8:85:74:48:35:34:64:EF:44:7F:C4:34:33
X509v3 Authority Key Identifier:
keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:63:fd:7d:82:ee:81:1c:f6:b5:47:4f:91:e6:ce:34:90:b4:
a5:b9:46:2e:b2:9f:fe:2a:03:b1:c9:78:cb:61:1f:93:44:7f:
7e:4e:e1:61:f2:e0:1d:06:c6:b7:b2:8e:14:3d:3b:d0:f7:8f:
ca:b6:71:85:e9:51:05:76:48:6f:b9:18:eb:c2:b5:ec:70:23:
8a:4b:f2:9d:d9:91:1c:bb:11:6a:e3:8c:2c:12:ba:5c:f2:3e:
36:22:34:45:0b:86:60:6c:dc:ae:25:d1:83:52:f7:49:8a:8d:
e2:e2:51:e9:ba:0e:c4:30:cb:16:71:61:03:fb:d9:57:fd:97:
04:55:57:bf:bc:20:03:18:05:37:5a:06:d1:01:a8:9c:2e:15:
7b:43:4d:37:28:2f:d1:76:11:ce:7e:01:05:aa:50:5c:f6:5f:
a2:a9:23:a8:81:79:40:a5:cd:ac:a4:96:a9:30:dc:b1:e0:1b:
c7:de:a6:3f:57:01:56:68:2b:b7:96:58:39:2d:4a:9a:01:78:
f6:73:4d:24:4c:7b:22:cd:e8:67:5c:80:19:ba:c0:d1:0a:36:
20:0f:20:0c:77:a9:98:28:25:b1:20:6b:04:55:ea:0d:19:ca:
70:61:43:9a:42:49:db:b2:65:8c:62:b8:5a:df:db:77:15:45:
5c:e5:bb:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:33:36 2025 by rpki-client