Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
File: XZxbcz-6cemMB-E7A6fFWrhMyO0.mft (raw, json)
Hash identifier: ZARH2ls71jU3KSZ6rNEBL+G9a52JWL55HGtk49m8rss=
Subject key identifier: AF:16:79:D6:86:7D:F7:7E:60:7C:2B:4D:2A:0A:84:4B:69:B4:B8:4D
Authority key identifier: 5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
Certificate issuer: /CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Certificate serial: 01963C53841FA9A35398F1F6DF6B42BDFE90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
Manifest number: 14F3
Signing time: Wed 16 Apr 2025 02:00:28 +0000
Manifest this update: Wed 16 Apr 2025 02:00:28 +0000
Manifest next update: Thu 17 Apr 2025 02:00:28 +0000
Files and hashes: 1: XZxbcz-6cemMB-E7A6fFWrhMyO0.crl (hash: Ts6s8tSVDNW4HNnBoG63r/N9vgYOohkhRnxUwIkQifw=)
2: tjHH92n144_2kyCpRlp025zS_60.roa (hash: ok5CTqSNJzdSSlXk4Sa58sv7A+s3smyB2E8BTCCRwo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3c:53:84:1f:a9:a3:53:98:f1:f6:df:6b:42:bd:fe:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Validity
Not Before: Apr 16 02:00:28 2025 GMT
Not After : Apr 17 02:00:28 2025 GMT
Subject: CN=af1679d6867df77e607c2b4d2a0a844b69b4b84d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8e:11:86:93:b9:be:66:88:da:9d:c3:dd:20:
cb:ff:77:33:d4:c9:f1:57:d0:19:a0:69:9c:63:e1:
c9:b7:a2:79:83:60:ab:b1:c3:58:9d:35:13:48:96:
cd:33:3a:48:24:6c:07:7f:31:14:24:82:32:45:50:
75:63:e5:d5:e7:60:08:fe:97:40:6b:17:d6:06:01:
e8:6e:29:43:69:4a:bd:d4:e9:b2:dc:80:6c:80:e8:
d6:6a:cf:2c:9a:23:b7:b2:6f:dd:42:c0:e0:d2:17:
5b:f6:e7:0c:f4:b4:17:d5:30:c7:7b:99:fc:ec:31:
84:2c:a4:4f:97:25:1f:c1:63:81:26:0a:e6:8e:04:
71:a1:c2:39:ac:49:52:05:7d:70:4d:82:88:6f:c3:
9d:db:30:52:0d:54:f7:1f:06:16:4f:f6:25:f1:46:
c8:a1:39:3a:ba:44:2e:3d:ab:d2:2e:1a:3b:07:1f:
86:ea:aa:c1:6e:5b:5e:b4:ad:c6:04:f8:4c:d6:c5:
38:32:75:dc:7a:14:1e:99:c6:ad:0a:16:90:e8:97:
42:02:d2:e4:e0:68:84:5c:d8:87:a2:ca:e4:51:d1:
b8:f4:7e:51:ff:1f:95:65:24:e7:4e:13:16:f0:06:
2d:9f:21:84:b0:2f:54:f5:0f:2c:15:c0:34:3c:44:
95:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:16:79:D6:86:7D:F7:7E:60:7C:2B:4D:2A:0A:84:4B:69:B4:B8:4D
X509v3 Authority Key Identifier:
keyid:5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:62:92:a9:8a:d0:fd:b0:2b:f1:3f:88:fb:2e:d2:d9:3f:be:
1a:15:ef:cd:e1:f5:c5:70:c3:ac:1e:16:2e:db:d3:87:f9:ad:
69:5a:58:36:4d:8f:dd:b2:d4:77:dd:b4:d5:53:72:a2:02:3b:
0c:bc:8f:b4:81:fd:d0:d5:6a:1f:d9:0d:6a:a8:cd:81:97:05:
d1:22:27:2e:8e:a2:bd:96:3b:0f:90:fc:61:a6:08:55:ed:0e:
92:0b:14:ed:89:4a:d1:ca:71:2d:08:a9:c9:81:b4:9e:0c:a9:
1f:ad:d1:39:65:4d:f9:10:16:7c:36:12:45:7c:bf:59:aa:c8:
1c:be:6d:8e:7b:59:d7:db:d6:eb:04:4b:fd:99:05:10:fd:e2:
9d:a6:18:fc:ae:62:a6:b3:12:b1:e8:63:10:21:88:50:2e:c3:
e4:24:3c:aa:9a:65:0f:7e:c3:a9:d7:4d:ab:ed:e9:46:19:ca:
c6:b5:92:c6:9e:2b:ea:97:08:cf:58:f0:b4:f9:15:88:24:c8:
78:15:5d:14:20:ed:0b:cd:c0:be:2b:7d:69:cf:58:99:0e:5f:
4d:16:ca:de:ee:94:de:96:72:13:0d:36:4e:10:12:e5:de:d1:
c8:ea:d5:8d:d2:99:17:44:40:b7:bb:71:79:a6:a0:a5:d8:10:
c4:02:8c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 04:44:37 2025 by rpki-client