Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
File: XGGrSm35u5XP3orwdmaKWVs0HeE.mft (raw, json)
Hash identifier: awbeBy9uz6xMhjaG6cUkkysMu/Kn1s0bgJGG3T1O0yM=
Subject key identifier: E2:56:E8:9E:69:0F:F4:BD:DD:94:40:F6:C8:6D:35:FC:30:FD:F2:E8
Authority key identifier: 5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
Certificate issuer: /CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Certificate serial: 0196470E26ED1BA8A7058E8F506C9BA9DD33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
Manifest number: 01DE
Signing time: Fri 18 Apr 2025 04:00:31 +0000
Manifest this update: Fri 18 Apr 2025 04:00:31 +0000
Manifest next update: Sat 19 Apr 2025 04:00:31 +0000
Files and hashes: 1: P7g82oQa9maLUZf-zyJXFEwQ_Tk.roa (hash: R1Jxxc/Qby3IEt4xnho0adyCsC1rCUaoaz24WlyrPXE=)
2: XGGrSm35u5XP3orwdmaKWVs0HeE.crl (hash: Va+8KTND9r81fDYPuSPKdev63BVmAdUkAJ3O7BD2GnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:0e:26:ed:1b:a8:a7:05:8e:8f:50:6c:9b:a9:dd:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Validity
Not Before: Apr 18 04:00:31 2025 GMT
Not After : Apr 19 04:00:31 2025 GMT
Subject: CN=e256e89e690ff4bddd9440f6c86d35fc30fdf2e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:98:c0:b9:2e:34:4a:95:10:6d:f2:09:d8:9d:
eb:2d:6e:1f:c6:c2:01:d7:fe:45:6c:2d:68:ab:3a:
57:d8:fc:d8:7f:28:c7:58:a8:3b:5c:93:3b:0a:ad:
67:6e:53:5d:6e:ac:9b:97:0c:72:3a:55:03:f5:5f:
14:f8:03:f1:f8:59:cb:88:48:d7:77:7e:b9:c9:6e:
7d:80:8b:6b:eb:57:3d:5f:c8:4d:9c:85:5b:fc:06:
ee:70:45:ba:30:f8:16:1c:ad:61:06:88:38:96:cf:
28:57:58:a3:51:77:a7:9c:16:23:41:ea:a9:c0:68:
b3:c7:e2:78:6e:93:c0:70:b3:aa:15:5f:9e:45:7c:
3e:7d:01:1d:3b:02:ad:e0:23:32:7f:e3:d0:44:5e:
a4:22:7f:c4:43:80:45:9b:4a:bd:bc:86:12:4d:f3:
e9:61:97:8c:48:6f:59:d1:d4:52:65:5d:b0:05:c9:
15:df:dc:49:f3:e0:f4:ba:97:f0:bc:2e:be:51:2a:
92:6b:d5:d2:c6:fb:aa:68:2a:48:14:f8:56:f2:48:
3e:bd:32:0c:5f:b2:57:ab:c2:82:bb:a4:28:d5:34:
a0:e6:5f:89:d6:45:73:00:92:25:a6:c0:f1:da:15:
4e:3b:df:a0:86:fa:88:a4:45:13:8b:8b:03:7a:e3:
61:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:56:E8:9E:69:0F:F4:BD:DD:94:40:F6:C8:6D:35:FC:30:FD:F2:E8
X509v3 Authority Key Identifier:
keyid:5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:02:14:9a:bf:f1:df:c0:40:9e:19:88:ee:0b:10:72:30:e0:
5e:80:e5:d8:f4:41:b8:32:bf:70:e0:9d:6f:fb:54:b2:fb:87:
42:29:1a:6b:3b:ad:5c:9f:e6:18:a1:c4:78:1c:19:67:27:ca:
83:d5:74:7a:8a:ab:9a:57:b7:6d:7a:f2:e5:f2:78:b4:4e:65:
34:5e:85:7b:ec:15:e3:a7:d6:0c:ca:f2:5d:29:c6:ac:f5:7b:
96:e3:4e:9c:7f:bd:43:40:c8:ce:36:ef:b3:f7:22:c6:a9:e2:
ab:3c:65:2c:3f:51:e9:3c:78:1f:b1:bd:a8:8d:88:f4:7e:36:
06:38:e5:ef:c4:c5:b4:fe:2d:0e:99:56:f2:40:a8:59:87:36:
e1:83:3b:10:89:2f:1f:ae:13:98:b7:8f:b0:36:64:02:24:96:
d4:60:2e:3e:ef:f9:70:f6:84:fb:f9:c9:8b:64:f2:48:7f:11:
49:77:5e:15:7f:74:2f:1d:70:49:71:5c:b6:bd:71:92:46:41:
2b:15:37:b5:65:5a:33:3f:05:38:c4:c5:d7:31:a6:52:2c:1a:
df:ef:21:c6:78:b6:b9:bb:3b:76:e2:d8:91:b4:67:e9:6b:3c:
c4:41:08:75:71:12:4a:f8:59:a8:19:c2:a3:90:be:e7:da:8f:
93:0c:f4:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 13:48:22 2025 by rpki-client