Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
File: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft (raw, json)
Hash identifier: zuti1qLd2jCe0p77jsvmi6wzJw/I3KRYszJES2UGkOw=
Subject key identifier: 91:B2:F4:89:7E:8A:1B:13:7E:26:4F:C2:A5:31:F2:6D:84:A0:B4:7D
Authority key identifier: 5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
Certificate issuer: /CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Certificate serial: 01965982D3283D969AD6DCAA2F2D4930E71C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
Manifest number: 13FF
Signing time: Mon 21 Apr 2025 18:01:07 +0000
Manifest this update: Mon 21 Apr 2025 18:01:07 +0000
Manifest next update: Tue 22 Apr 2025 18:01:07 +0000
Files and hashes: 1: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl (hash: FFjVF8y+3J4Wvbgqnl4V0BKcre8ldrzrmLbxyAMyd1E=)
2: xyAqUo1cBCxwcVbYVeKIYjCComY.roa (hash: 5YKuscwS6gvAjWMFAp+aYRLvaxsng69DrIJ3z9uUMo8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 18:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:82:d3:28:3d:96:9a:d6:dc:aa:2f:2d:49:30:e7:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Validity
Not Before: Apr 21 18:01:07 2025 GMT
Not After : Apr 22 18:01:07 2025 GMT
Subject: CN=91b2f4897e8a1b137e264fc2a531f26d84a0b47d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:50:44:fc:f0:62:66:40:5e:1b:b3:34:cd:ed:
45:49:f4:db:1f:d6:8f:ad:15:90:a4:9e:01:b3:a2:
d7:38:65:2f:e5:2c:df:6f:b3:92:36:01:51:c3:38:
58:df:31:94:71:1a:66:99:63:fb:b1:9a:bc:12:ac:
c9:ef:7b:c5:1a:4d:98:6a:5f:ad:2a:cd:29:39:21:
55:77:56:8e:75:f4:08:79:7c:11:26:4b:68:9d:d7:
14:2d:4f:24:57:e5:a8:02:bc:2f:25:d1:e8:50:14:
9b:c0:bf:6e:d3:f8:2f:3d:42:61:80:8b:6b:aa:a3:
9a:7e:27:05:10:fc:4f:cb:6d:c1:fe:41:1d:90:68:
c2:4d:ac:3e:a7:2b:90:86:67:59:22:ec:04:e7:cd:
6a:d6:fe:67:d8:b0:33:e1:37:7c:3a:22:49:c0:44:
01:7a:85:c1:71:c8:4f:32:20:8d:d6:7e:4e:e8:8e:
19:a7:ce:d9:c2:ac:af:d8:ec:ce:70:58:2f:68:fa:
65:68:3c:47:51:df:00:0a:1a:7e:a9:7a:b2:0a:3c:
44:d7:a1:5f:52:85:15:fc:7a:de:1e:12:39:bf:57:
59:32:15:b0:b9:8e:62:0a:62:a3:77:b2:67:74:1c:
9c:1b:5b:aa:69:a6:90:37:2f:ec:a8:d2:28:a2:c5:
84:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B2:F4:89:7E:8A:1B:13:7E:26:4F:C2:A5:31:F2:6D:84:A0:B4:7D
X509v3 Authority Key Identifier:
keyid:5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:9e:9d:d2:3c:cb:86:25:c8:18:7c:35:9b:a0:fe:b0:f4:82:
a3:80:38:52:0d:68:c2:ad:7d:0a:03:87:63:53:1d:67:e2:93:
f9:04:aa:f9:f2:27:c4:d6:cb:06:39:19:c9:fc:a6:08:e3:9b:
5f:a9:98:0d:cd:23:97:79:43:5e:e4:d8:9d:9d:f8:5b:e7:14:
14:c6:c5:5c:dd:40:78:8a:4a:96:95:27:e5:de:cc:74:04:90:
d0:da:e9:bc:ae:f3:ff:30:d6:d4:e9:52:d9:8a:6a:b8:7f:35:
4f:c5:a3:a4:33:d2:d3:9f:20:d4:e1:a7:77:57:17:45:05:f2:
30:79:f7:68:3f:ec:a5:68:7b:0e:0c:1c:62:b2:2d:80:57:5d:
98:4a:c9:7a:a2:7e:d8:53:76:77:c2:76:26:07:63:88:0c:86:
75:71:df:62:c3:2c:b0:40:2d:dd:0e:6e:7f:b3:c4:25:3e:a7:
ae:f0:62:31:cd:03:ae:03:c9:63:e1:90:4b:50:2f:c5:1e:7a:
b3:57:3a:35:1d:03:7c:8b:87:0c:d7:33:d4:98:de:63:1b:f0:
65:a8:5c:dd:31:69:1d:03:fa:71:b7:68:2b:97:bb:a3:16:86:
77:66:3b:2c:ec:24:d4:65:2e:05:f6:68:ec:92:a5:af:b1:db:
85:aa:2d:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:17:16 2025 by rpki-client