Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
File: XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft (raw, json)
Hash identifier: jRDTZrqLlszinvb+AZe439MFFVrHUzlSKEnRxjag3oM=
Subject key identifier: 48:34:E1:02:D3:75:05:6C:4B:3A:1A:7A:92:CA:14:2A:4C:5F:ED:A6
Authority key identifier: 5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
Certificate issuer: /CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Certificate serial: 01965C153C64B6C91111083827D993BC8690
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
Manifest number: 0331
Signing time: Tue 22 Apr 2025 06:00:17 +0000
Manifest this update: Tue 22 Apr 2025 06:00:17 +0000
Manifest next update: Wed 23 Apr 2025 06:00:17 +0000
Files and hashes: 1: FFFlJ1ntZuYfKnoxbFz369bHbCY.roa (hash: OzHlJ3L/Uq51e4UIV4xO7NIltGOZNXtcjik1Syg/eD0=)
2: XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl (hash: eDYYt4xuBNahy2AwoHH+142HLyKAaZksonH/vvy+ORk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:15:3c:64:b6:c9:11:11:08:38:27:d9:93:bc:86:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Validity
Not Before: Apr 22 06:00:17 2025 GMT
Not After : Apr 23 06:00:17 2025 GMT
Subject: CN=4834e102d375056c4b3a1a7a92ca142a4c5feda6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:01:57:71:c1:1c:63:f9:b5:03:5f:16:cf:14:
5e:9a:98:a8:3f:74:68:42:51:4b:0a:58:75:57:e8:
04:be:f1:b1:0e:25:56:90:b1:a5:e0:62:55:49:98:
b1:55:d5:98:2f:93:ed:74:0f:82:0b:4d:e4:8f:e0:
80:a3:df:2d:31:1b:cb:94:a9:31:a8:b2:35:f9:81:
ea:0e:66:8f:69:fe:1a:4c:ec:9b:d2:d5:9a:14:b3:
19:28:f5:cf:a0:e9:c7:0d:d3:60:24:53:90:00:5f:
5e:10:3c:9a:18:0a:8a:3e:63:a6:0a:c2:18:22:36:
7d:4c:0a:cb:ec:9a:ff:d2:a3:b3:4b:0f:d9:60:78:
75:65:85:08:82:fa:84:b5:c7:cc:c5:fa:ab:99:3f:
c2:de:2f:5a:be:63:14:a2:d6:03:67:8f:7e:50:3f:
50:95:bd:e2:69:c4:25:bc:dc:e2:9b:29:8b:1c:66:
67:60:30:33:a9:6a:e6:08:23:9c:bb:37:88:5d:de:
92:ca:a3:22:94:95:3d:43:b4:9d:30:ec:b1:66:1b:
48:3d:b5:9d:da:94:20:4a:37:f2:b1:83:a3:0f:4e:
3f:76:84:b8:d0:f2:31:21:46:f1:c7:d4:22:9b:b2:
0b:c3:5b:2a:40:2e:dd:14:12:24:7c:af:d0:c3:37:
4e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:34:E1:02:D3:75:05:6C:4B:3A:1A:7A:92:CA:14:2A:4C:5F:ED:A6
X509v3 Authority Key Identifier:
keyid:5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:61:ce:7d:43:80:3e:0a:16:36:31:b9:aa:46:b2:84:ad:f7:
80:16:32:cd:15:db:bf:ed:63:7e:7f:ff:be:8d:f5:03:35:0d:
8e:00:fb:af:e8:20:e0:69:76:24:58:de:10:03:6c:30:66:ea:
41:68:57:d4:2e:bb:95:64:4c:c0:1f:8e:42:d5:23:a4:05:a7:
a7:1c:df:28:09:68:12:11:9a:a7:42:0c:2d:a8:80:33:84:e6:
b9:e7:8d:81:35:db:1b:b5:11:3f:27:38:ac:f3:66:9b:f3:d2:
58:df:ac:2c:82:71:36:f6:6d:52:c2:db:2b:c2:8d:4b:44:3a:
42:fd:4d:28:af:ed:03:fd:90:bc:c2:51:d5:f7:e9:ea:f5:67:
53:0c:1b:1d:66:4c:63:67:b0:4d:99:cd:2e:6d:05:88:07:cb:
f2:bf:26:ff:32:9e:a5:7f:be:c7:6c:68:99:75:0e:81:56:71:
ed:df:a3:39:2a:e1:7d:00:b7:04:f4:c8:bc:fd:b8:39:f6:a1:
a5:8f:65:8b:a9:bf:bf:2e:4d:5a:3d:e9:59:47:e9:a3:b5:b6:
4a:a6:84:08:63:6f:44:2c:0f:27:1d:5b:64:c4:37:ce:3a:02:
f7:31:a5:78:27:84:93:33:fc:d4:8b:f2:e2:bf:83:20:90:f5:
29:2e:d1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:23:20 2025 by rpki-client