Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
File: xdXOafzPDGu44rJmfh44-5QPPSY.mft (raw, json)
Hash identifier: +ZKRwNeLztPsafI1gPqQjsfecxjJ2nVgVLULCnQYphs=
Subject key identifier: 40:B1:53:CD:8C:24:A1:35:04:91:FC:22:98:13:C7:6D:BC:BC:B9:97
Authority key identifier: C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
Certificate issuer: /CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Certificate serial: 01965C831897D487756ADE43462D50B5ADF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
Manifest number: 096D
Signing time: Tue 22 Apr 2025 08:00:17 +0000
Manifest this update: Tue 22 Apr 2025 08:00:17 +0000
Manifest next update: Wed 23 Apr 2025 08:00:17 +0000
Files and hashes: 1: 6dkBUwL-mhaODMyRqo4g1V5Aqm0.roa (hash: Qmi5vwRBC8G/em6HsgOnkDIH/4egeMg5iAbwYtXG1+s=)
2: xdXOafzPDGu44rJmfh44-5QPPSY.crl (hash: 8JyfYwAhlrAjjuUKe3jnailHyVuSb752P5m/zaOxDVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:83:18:97:d4:87:75:6a:de:43:46:2d:50:b5:ad:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Validity
Not Before: Apr 22 08:00:17 2025 GMT
Not After : Apr 23 08:00:17 2025 GMT
Subject: CN=40b153cd8c24a1350491fc229813c76dbcbcb997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a6:41:d9:ac:e6:b9:65:0e:75:a4:06:bc:4e:
0f:21:4b:4e:9a:b8:8e:ab:28:5d:df:cd:38:1e:6a:
07:62:c8:e9:b2:44:6c:09:af:36:4e:f3:98:18:28:
cd:da:4d:d5:bf:b7:0d:e3:44:bf:80:45:86:08:90:
a8:32:40:d7:b2:d2:16:89:2a:5f:1b:41:99:9c:f9:
b6:02:42:3f:4e:45:80:20:25:e3:ce:32:7e:f8:bc:
2b:24:b2:19:27:81:2d:fa:c6:f8:73:ca:9a:5a:56:
77:e7:56:68:3d:2f:a5:22:0a:10:bd:6b:4b:7c:90:
0c:5c:63:7d:59:f9:d7:b4:d7:fb:32:92:1d:88:82:
85:e8:67:e9:b1:6c:50:ef:f1:be:47:e0:91:99:49:
b1:3b:41:ea:f1:35:b2:70:18:c2:b7:d6:7c:d2:a0:
2f:ef:c7:75:d2:ff:c0:5d:cc:72:96:d9:44:ed:84:
59:02:28:8e:bd:3e:e3:0b:c5:eb:0e:8c:c5:38:9a:
a9:b7:22:f0:84:43:e4:d7:6a:3c:54:44:75:86:27:
ae:76:ec:a2:ed:8b:4c:d2:26:b6:53:ba:c3:24:68:
23:b9:e4:26:2c:ae:2d:10:f6:17:21:25:cb:98:49:
49:bc:71:8b:e3:44:28:af:3a:8c:f6:4e:32:20:1e:
a7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B1:53:CD:8C:24:A1:35:04:91:FC:22:98:13:C7:6D:BC:BC:B9:97
X509v3 Authority Key Identifier:
keyid:C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:89:ad:64:77:43:01:ba:ed:04:6f:39:53:6a:7b:fe:17:c5:
ce:a2:38:25:72:9f:eb:32:de:28:f3:02:9b:d2:10:ab:c5:df:
86:19:09:5d:29:9c:74:16:fb:e5:b8:37:0b:f6:d4:9e:04:ce:
69:58:bf:49:7f:54:f4:78:8e:11:8e:ff:6f:9d:36:97:73:b7:
16:42:17:59:02:29:1d:02:a8:ae:ed:52:83:50:81:89:75:02:
28:ca:eb:4b:c4:b1:9b:55:67:e2:83:f6:f9:a5:18:54:04:07:
28:62:58:1a:4c:18:af:ec:c2:eb:77:cd:ba:6f:96:7c:f2:b0:
49:fc:9e:49:8e:86:9c:b0:6b:b6:24:ee:78:95:ce:32:ec:99:
a7:3e:18:34:b0:06:dd:2f:80:c8:47:e2:d1:06:1c:6b:9d:db:
98:11:4b:92:81:4f:ea:09:2c:82:b7:cd:3f:74:bf:df:6f:07:
ec:b2:4b:97:70:d1:c9:96:78:46:48:a5:72:3a:5d:ec:bd:99:
bb:73:fd:f8:29:89:ba:90:86:c3:61:54:c3:83:5a:86:be:9b:
0c:fa:7c:0e:2f:bf:3c:d6:31:d8:86:c5:78:4b:38:d1:c1:a3:
70:ba:2a:c5:f5:46:f2:ce:b2:bd:52:51:cf:ed:6e:f3:24:61:
2b:e4:f1:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:28:43 2025 by rpki-client