Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
File: XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft (raw, json)
Hash identifier: V1UVOUYsLiqRffNLRXZDmRZD5m8icyrR2+9Z/vm112M=
Subject key identifier: 93:32:14:51:42:31:18:7E:23:A4:5E:15:9A:73:BB:38:2C:71:D1:FB
Authority key identifier: 5E:D6:77:2B:90:21:2E:57:72:49:F7:35:6C:21:8E:D1:06:8B:67:76
Certificate issuer: /CN=5ed6772b90212e577249f7356c218ed1068b6776
Certificate serial: 0196591471FDA8037C859530650A10936D6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 16:00:34 +0000
Manifest this update: Mon 21 Apr 2025 16:00:34 +0000
Manifest next update: Tue 22 Apr 2025 16:00:34 +0000
Files and hashes: 1: XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl (hash: 4QoPk8UdkMRM9vZJu4QIT4wKsMbgF8BY68sKMAKQ6j8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:14:71:fd:a8:03:7c:85:95:30:65:0a:10:93:6d:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ed6772b90212e577249f7356c218ed1068b6776
Validity
Not Before: Apr 21 16:00:34 2025 GMT
Not After : Apr 22 16:00:34 2025 GMT
Subject: CN=933214514231187e23a45e159a73bb382c71d1fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:49:02:9b:0e:1d:0f:d7:47:8e:c1:f0:38:2a:
86:fb:26:a4:9b:96:a8:7d:f8:18:b2:a1:19:e9:cc:
c4:75:da:fe:8b:30:ee:2c:e6:23:c9:d2:77:2d:d4:
ae:d4:3c:6e:cb:5e:31:de:6a:b2:d1:6b:8b:4a:e8:
c5:15:4c:8f:ce:3b:ed:80:d7:22:3c:96:c3:55:1d:
36:cb:98:39:f1:d5:81:a3:b6:68:94:6e:92:ff:83:
d4:7a:72:ac:0e:57:5a:ae:ee:95:85:9a:85:81:e0:
30:aa:28:ce:ba:bd:2f:52:79:0e:55:0c:05:a3:eb:
5c:f6:b7:73:ca:93:31:84:83:3e:ab:63:58:3e:1e:
db:cd:d0:dd:79:26:89:31:a2:f7:73:c5:d3:39:85:
5a:2f:53:cb:d5:8c:db:24:73:9f:16:c2:71:fd:41:
7b:98:bd:86:58:b5:0e:b1:fc:4b:61:41:ff:aa:e6:
12:21:3b:8e:2c:eb:10:f8:98:44:55:f1:5a:d4:58:
74:f8:32:c4:7c:56:ce:c0:40:02:ea:f6:62:3e:73:
c2:fe:e8:54:f9:fb:38:f9:4a:20:21:21:78:62:ee:
38:1f:cc:df:fd:ce:b2:5e:ba:14:b7:54:55:e7:ea:
32:9f:6e:1b:a3:4b:d3:06:2c:2e:59:f4:c4:7d:18:
14:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:32:14:51:42:31:18:7E:23:A4:5E:15:9A:73:BB:38:2C:71:D1:FB
X509v3 Authority Key Identifier:
keyid:5E:D6:77:2B:90:21:2E:57:72:49:F7:35:6C:21:8E:D1:06:8B:67:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:47:66:a8:10:b2:e0:f5:bb:ac:ea:72:b2:6c:9c:91:b4:fb:
5a:fc:aa:5e:5a:aa:28:4e:e1:6a:c6:8c:fb:31:2e:d8:e6:62:
4d:69:ee:f0:25:db:0a:b1:6a:5d:fb:22:cd:0c:a0:3f:34:b8:
82:4d:f9:8b:db:cb:ca:33:7e:91:9e:dd:a6:af:97:5d:cb:4d:
3f:d5:91:a6:56:07:04:d4:8d:13:26:4d:18:44:2d:9f:f6:49:
e3:a8:c6:6a:2d:bd:39:0c:4a:3c:7b:2e:0b:93:30:d3:77:5d:
82:b1:39:44:71:55:4a:31:c8:3b:ba:cc:e9:c7:47:bd:8d:1d:
d4:82:72:b8:f5:b8:79:aa:c1:8d:14:00:4c:d7:d0:fa:51:25:
d7:68:ce:ca:c9:87:22:c2:9f:a9:9f:08:c2:3c:62:9a:f4:ae:
8a:19:03:f7:51:d3:b8:93:11:28:85:22:9a:8e:2e:78:0d:f2:
f3:70:c5:d9:0e:fe:5b:81:81:8a:f1:a7:9b:e7:03:fc:6f:b5:
37:85:b5:aa:8e:dc:2c:a1:c4:f7:78:17:35:d9:2b:b0:15:2a:
16:a9:1d:d0:02:70:ac:c0:d3:c3:6d:f7:76:a3:e2:ac:59:b5:
72:85:74:1a:cb:c7:db:61:97:be:2b:91:82:11:b8:95:e1:f2:
71:ba:5a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:43 2025 by rpki-client