Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/82c4e6-0ab8-4f46-aed1-a4c3a85f3f0a/1/XiZD7Cn4sE-DjW5dxQacEGTFvSU.mft
File: XiZD7Cn4sE-DjW5dxQacEGTFvSU.mft (raw, json)
Hash identifier: gfe6GzDEHGwf4NDG6nc/3t+g6SJz685fd7GYuUIStUM=
Subject key identifier: 85:10:12:61:0B:FD:B4:3D:99:60:4E:34:35:28:05:99:04:2C:C9:F2
Authority key identifier: 5E:26:43:EC:29:F8:B0:4F:83:8D:6E:5D:C5:06:9C:10:64:C5:BD:25
Certificate issuer: /CN=5e2643ec29f8b04f838d6e5dc5069c1064c5bd25
Certificate serial: 0194C3F5E6BE5B6000B7B0A40EC33814173E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiZD7Cn4sE-DjW5dxQacEGTFvSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/82c4e6-0ab8-4f46-aed1-a4c3a85f3f0a/1/XiZD7Cn4sE-DjW5dxQacEGTFvSU.mft
Manifest number: 142C
Signing time: Sun 02 Feb 2025 00:00:59 +0000
Manifest this update: Sun 02 Feb 2025 00:00:59 +0000
Manifest next update: Mon 03 Feb 2025 00:00:59 +0000
Files and hashes: 1: XiZD7Cn4sE-DjW5dxQacEGTFvSU.crl (hash: +b7AWXnDVzs4W3jlomU1c8pTf2BCYy3LfFkK06PZvF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/82c4e6-0ab8-4f46-aed1-a4c3a85f3f0a/1/XiZD7Cn4sE-DjW5dxQacEGTFvSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/82c4e6-0ab8-4f46-aed1-a4c3a85f3f0a/1/XiZD7Cn4sE-DjW5dxQacEGTFvSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XiZD7Cn4sE-DjW5dxQacEGTFvSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:e6:be:5b:60:00:b7:b0:a4:0e:c3:38:14:17:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2643ec29f8b04f838d6e5dc5069c1064c5bd25
Validity
Not Before: Feb 2 00:00:59 2025 GMT
Not After : Feb 3 00:00:59 2025 GMT
Subject: CN=851012610bfdb43d99604e3435280599042cc9f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:09:2b:ac:51:c1:91:27:32:7b:15:4f:0b:8e:
d4:25:6c:bf:49:5d:1f:13:89:1f:93:27:80:5b:eb:
7a:71:86:c9:83:5a:58:e8:f8:f1:a9:c9:72:8b:52:
e4:cb:14:74:17:31:6f:be:7e:d8:d6:ef:c3:bd:7a:
9d:84:af:6d:83:60:8e:39:38:7b:f2:e3:e1:46:06:
af:7d:c0:40:ef:e7:a9:1f:5a:a5:20:e9:34:df:62:
96:29:8b:b0:f0:32:07:cd:77:34:a5:d7:39:9a:79:
7b:5c:fd:ef:2c:6f:de:3a:ed:a9:96:73:a3:d7:f9:
32:7c:7d:2a:92:22:21:17:03:e7:2d:bc:d9:27:1b:
88:f5:83:79:1c:35:e0:02:60:ae:01:99:a3:1b:44:
98:87:da:39:5a:7e:8d:cc:6d:57:75:f2:91:57:c1:
76:76:b3:c1:9c:32:a0:9b:69:13:b5:39:6b:5f:22:
87:3a:33:57:2f:c1:ca:cf:bc:55:95:17:b3:64:69:
f4:f9:17:b8:63:54:9b:0b:c0:76:14:d9:36:a7:88:
44:03:94:4a:22:37:6c:67:6f:3e:3d:f2:ba:7a:e0:
62:74:a5:52:a6:f6:68:ec:3e:80:4d:74:6b:68:44:
74:0b:3b:51:d8:6d:00:92:9e:a8:21:d9:c3:f0:6d:
60:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:10:12:61:0B:FD:B4:3D:99:60:4E:34:35:28:05:99:04:2C:C9:F2
X509v3 Authority Key Identifier:
keyid:5E:26:43:EC:29:F8:B0:4F:83:8D:6E:5D:C5:06:9C:10:64:C5:BD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiZD7Cn4sE-DjW5dxQacEGTFvSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/82c4e6-0ab8-4f46-aed1-a4c3a85f3f0a/1/XiZD7Cn4sE-DjW5dxQacEGTFvSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/82c4e6-0ab8-4f46-aed1-a4c3a85f3f0a/1/XiZD7Cn4sE-DjW5dxQacEGTFvSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:90:04:77:b8:cb:91:28:91:50:f5:97:85:6d:8a:29:dd:43:
12:ad:98:ca:03:24:9a:b4:3a:f5:35:4a:d8:49:52:24:03:8e:
7f:aa:b2:bb:a0:b8:e6:44:09:af:3f:53:4b:7c:03:ae:e8:86:
bd:8b:9f:28:2a:29:29:c2:02:43:e2:19:9e:aa:2b:c1:9d:45:
d5:b7:63:0d:40:22:94:2e:46:ca:98:4d:d9:08:23:a4:8b:9d:
f0:5d:18:28:4a:ef:c1:c3:02:fd:44:51:a0:11:10:e4:52:58:
83:2a:94:6d:8b:d4:2b:01:6a:ec:24:c5:6c:49:45:a3:d8:a2:
32:1e:06:4e:7c:9b:5a:28:07:af:42:9b:ba:81:d8:b1:e9:b8:
3c:d3:31:61:94:03:1a:66:23:93:f5:48:4e:1e:1d:ed:59:59:
13:7d:a5:1e:ab:bc:dc:20:e9:d7:74:5e:12:d5:cf:9d:27:dc:
36:d6:79:93:b9:95:83:5a:7d:8c:df:bb:8b:14:01:c6:d9:ed:
b5:34:e2:83:1c:50:d9:18:1a:98:fa:34:03:df:2d:06:6d:0f:
29:3d:a1:c0:bf:c1:2f:38:cd:3c:a4:3f:e1:05:7a:f0:4d:f2:
ab:6f:8d:5e:74:08:2b:89:b7:c9:a3:ca:e5:83:07:cf:a4:79:
2d:d2:20:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:50:27 2025 by rpki-client