Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
File: xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft (raw, json)
Hash identifier: WQyPwvaHc9jBqt6zjydC54ZWjkIP7nf9brFlL9GcmSo=
Subject key identifier: 5B:A9:2A:76:26:D4:E9:08:3B:5B:DE:05:00:76:4A:87:97:7D:6A:AB
Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
Certificate issuer: /CN=c613276cbca6793c33457a9bf22fc10b382301f4
Certificate serial: 01965CBA392DD172A8A5F6AD9BB985A178B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
Manifest number: 1504
Signing time: Tue 22 Apr 2025 09:00:30 +0000
Manifest this update: Tue 22 Apr 2025 09:00:30 +0000
Manifest next update: Wed 23 Apr 2025 09:00:30 +0000
Files and hashes: 1: b9YzzhOPHDVo_soINWMmjLB7fhk.roa (hash: lwz89foq6Y4dt/R5BV0uIhhLjFL2sOp+mEH46qLg0yk=)
2: xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl (hash: Z5zgwCn5pVvUUlmvys/0HhwP31p2lPJT645ouwfX9HQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 09:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:ba:39:2d:d1:72:a8:a5:f6:ad:9b:b9:85:a1:78:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4
Validity
Not Before: Apr 22 09:00:30 2025 GMT
Not After : Apr 23 09:00:30 2025 GMT
Subject: CN=5ba92a7626d4e9083b5bde0500764a87977d6aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:21:02:2c:cb:49:be:7b:a7:5c:e7:ec:40:fa:
91:20:e5:77:53:25:af:ab:d9:f9:ac:db:c1:47:2f:
4f:47:cb:fa:38:10:f3:0a:8e:ba:20:60:b0:65:43:
ab:78:05:0e:e9:1f:d3:70:d6:d6:38:02:b1:ab:7c:
3f:45:28:78:31:0d:60:23:81:6f:e7:9a:2b:1e:d4:
e1:43:51:3d:0e:3a:33:d4:3f:ea:f6:4a:50:7a:70:
53:ee:1b:e2:1b:4c:3f:81:43:9c:64:1c:01:e2:65:
77:f7:63:4c:52:09:64:77:8c:2d:1f:90:5e:51:f6:
dc:c0:84:12:41:fb:57:a8:c5:db:f5:a8:db:8c:86:
d4:a5:e3:2a:cb:ea:c1:de:6e:56:cf:19:70:fd:66:
b4:57:9d:02:b1:28:62:b9:58:3d:95:76:fd:46:e0:
80:48:20:a4:39:17:b7:47:a9:04:08:a2:e7:83:8a:
9c:d9:98:96:ca:60:80:2f:9a:01:75:54:6b:ec:9e:
02:66:c6:5c:1c:50:b2:26:c9:9f:31:63:25:cd:fa:
1b:33:5f:7a:f4:04:7c:a8:f8:fa:69:08:d6:47:4d:
23:1a:36:91:58:2b:53:ee:b2:02:f1:7a:b8:53:7b:
1f:5d:7d:54:cf:c8:07:f1:86:50:50:ad:8e:67:0a:
ae:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A9:2A:76:26:D4:E9:08:3B:5B:DE:05:00:76:4A:87:97:7D:6A:AB
X509v3 Authority Key Identifier:
keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:f3:23:5f:22:42:91:2e:f8:8b:1e:1c:46:c0:35:99:d6:34:
9e:55:12:1e:67:27:a3:d7:de:49:0e:f5:f8:12:b2:9a:1b:2d:
47:9e:b0:02:ce:e8:8c:e8:3a:7d:f2:ca:f6:99:91:82:4b:f2:
ed:dc:38:ed:00:a8:b4:e5:ef:07:14:a8:23:20:d5:66:c0:08:
d6:c0:0a:b0:ab:57:93:e0:c4:f0:1f:d8:aa:85:4b:7a:76:13:
5b:40:aa:ad:b5:0b:48:2a:6a:79:af:25:34:fb:84:75:d6:c5:
14:88:f6:51:84:9d:ba:ca:11:8c:d0:27:5f:e8:bf:05:df:f6:
0e:c7:75:2d:2b:95:2a:ce:85:dd:82:ed:cd:3c:04:0d:7e:60:
b0:6b:11:ad:4e:cb:0c:5f:59:19:4c:11:eb:77:6d:93:95:ab:
76:fb:ac:ab:a7:9b:87:62:5e:8d:ac:93:4d:b8:f3:14:28:13:
73:66:da:bc:0b:44:d0:32:54:56:1a:d7:9b:bc:89:7a:fb:f5:
55:47:ce:53:c0:dc:85:fe:1b:15:92:7d:ab:2e:b5:4a:d1:8d:
34:59:8b:95:a9:2f:ee:f9:ce:45:8d:1b:59:0f:c0:10:8d:2a:
2e:ba:46:65:54:27:3d:97:e6:62:a1:51:c8:fe:c3:b4:de:30:
b7:a5:71:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:43:46 2025 by rpki-client