Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
File: X8IN7HFLtUY7Fk4VpfihOYolUF0.mft (raw, json)
Hash identifier: HjNVKxKruRa6DACgVeJZxqndBnEDPyIlEHTh8D9lE2g=
Subject key identifier: D9:00:EB:3F:FA:80:64:31:11:71:54:F3:20:42:2B:D3:67:23:22:A0
Authority key identifier: 5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
Certificate issuer: /CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Certificate serial: 019650ED1580EF853025281DB9CE7C929674
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
Manifest number: 01F4
Signing time: Sun 20 Apr 2025 02:00:36 +0000
Manifest this update: Sun 20 Apr 2025 02:00:36 +0000
Manifest next update: Mon 21 Apr 2025 02:00:36 +0000
Files and hashes: 1: VYOhWlm2y2YZ6EHcFnibmzsOVGY.roa (hash: GJjtJqaW4pHP1Y4i0oHxZvwkAfFAfi2jd3zkxgKT3N8=)
2: X8IN7HFLtUY7Fk4VpfihOYolUF0.crl (hash: PvCHuAb9NlRZmDBqCyOj/SeMxQX43vBuKGGw39FZXY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:ed:15:80:ef:85:30:25:28:1d:b9:ce:7c:92:96:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Validity
Not Before: Apr 20 02:00:36 2025 GMT
Not After : Apr 21 02:00:36 2025 GMT
Subject: CN=d900eb3ffa806431117154f320422bd3672322a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9c:d6:eb:c3:0a:f0:6a:09:a7:fb:97:e5:7e:
cd:e9:2c:06:4f:75:6b:cf:5f:e3:52:e2:47:bd:2a:
8b:b7:11:cb:4e:ae:03:1e:a7:68:9b:db:c7:a0:24:
a0:df:e5:b2:87:d8:1b:ce:b7:00:3e:f2:bf:c8:6a:
24:1e:19:83:02:0c:c4:ae:4c:c2:81:43:de:9c:29:
7d:09:22:e4:36:23:c2:4d:3b:d6:15:df:02:f9:dd:
1f:e8:11:b0:ff:be:f0:2f:ca:48:d5:17:09:0e:73:
7b:e1:b4:fe:22:8d:75:39:f0:23:e5:88:f3:06:3a:
3a:1f:93:88:53:29:5e:32:2d:81:c4:89:ef:08:fb:
a6:e3:f9:57:ed:df:2c:25:b8:b7:bf:24:f0:a4:5b:
ee:4f:4f:b7:4e:a9:bd:ba:48:2f:d3:62:0d:5d:54:
ad:9d:29:ef:20:36:0d:4c:6e:f9:36:40:58:0c:0f:
d0:7e:f8:6c:7f:b3:dd:d8:7d:85:a4:20:bf:21:18:
94:f3:23:46:9c:a1:45:f8:17:b6:e9:b0:98:34:21:
ce:98:91:33:30:39:5c:3f:2a:6f:c8:d4:64:b4:a8:
f5:3b:37:02:2a:7e:70:ac:a7:86:e3:b4:73:0e:8c:
93:e4:c6:dc:8b:96:21:e6:0c:82:d3:70:74:69:d3:
dd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:00:EB:3F:FA:80:64:31:11:71:54:F3:20:42:2B:D3:67:23:22:A0
X509v3 Authority Key Identifier:
keyid:5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:54:60:71:cf:3e:91:b2:52:67:1f:aa:a8:85:c7:00:ac:57:
8e:ed:17:0b:82:9a:1f:60:c1:82:09:12:18:e4:d9:5b:97:1e:
33:b0:5d:d2:03:e0:1e:d8:3c:45:26:93:17:82:49:5c:1c:d7:
78:8b:e1:07:34:eb:1a:b9:b7:3d:37:54:90:fd:74:b0:06:7c:
1c:00:70:14:b0:dc:18:fa:aa:40:aa:46:10:77:f6:13:22:9d:
e6:b3:2a:d8:98:53:11:65:a6:33:6c:54:5f:d1:08:1c:b8:05:
d9:7f:6a:bb:1a:20:39:23:05:7d:05:9e:df:e4:9a:c3:f2:af:
5c:22:1f:bb:22:47:bc:5a:3c:f3:0e:80:fa:fe:b6:2e:72:c0:
07:99:a4:09:49:a4:d2:ca:55:8f:01:0b:38:3d:a0:23:5f:c6:
e2:62:e6:d5:7b:b3:8c:50:89:1d:ae:ea:f4:5a:fe:e9:94:b3:
df:61:ea:79:4a:f2:e5:e2:04:78:49:b5:25:b2:ab:17:47:27:
e6:85:17:e4:53:eb:3c:3a:94:45:96:bc:74:e8:21:d4:d8:0b:
91:32:98:ae:a5:0b:c4:74:0e:82:73:b7:bd:cc:c9:52:63:f1:
e0:72:83:dd:82:15:40:2d:80:34:82:9c:6d:e0:76:a0:8b:fc:
36:b8:85:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:26:03 2025 by rpki-client