Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
File: XHbv8miEvwBiB9cis7AaRNK1YZk.mft (raw, json)
Hash identifier: 3dABV6VITHTDgx0qMgmHQRFkZj3SwHe27G6JkWTLbcE=
Subject key identifier: DF:C2:9B:4B:B0:F6:9F:39:7C:C8:88:EA:70:C3:38:D2:DD:BD:11:94
Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199
Certificate serial: 01964D7E7080ACAEC897DAA4914D68085A7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
Manifest number: 0D31
Signing time: Sat 19 Apr 2025 10:00:53 +0000
Manifest this update: Sat 19 Apr 2025 10:00:53 +0000
Manifest next update: Sun 20 Apr 2025 10:00:53 +0000
Files and hashes: 1: XHbv8miEvwBiB9cis7AaRNK1YZk.crl (hash: BQb/1VaVAmo68l/R3oqhUdSSNOZYMqa3M9/YApGoRRw=)
2: aeqC4EE0KUZ0Hdgey5muRSCYEvc.roa (hash: aH7XcxnHv3qEq7LQXqlBVrjotePFAy5nc/77ZI52Ock=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:70:80:ac:ae:c8:97:da:a4:91:4d:68:08:5a:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199
Validity
Not Before: Apr 19 10:00:53 2025 GMT
Not After : Apr 20 10:00:53 2025 GMT
Subject: CN=dfc29b4bb0f69f397cc888ea70c338d2ddbd1194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a3:bc:ff:bc:7d:aa:82:e8:4d:2a:a7:48:43:
cf:c3:6c:2c:39:21:21:25:d1:4c:e5:8c:b8:a8:fe:
a3:18:95:b4:2a:7f:6f:88:b6:07:d9:d8:1f:bb:b5:
38:3d:0e:8f:ac:13:29:62:51:8b:79:f9:a3:30:b6:
e9:ff:ca:69:07:a3:8b:9d:52:bc:62:05:95:2b:e3:
f1:00:9d:07:f2:5d:73:ba:46:cc:2d:c4:82:c5:d8:
1b:9b:a5:74:cd:b2:ee:69:6b:54:22:6c:94:60:49:
cc:dd:06:d6:3b:c5:7e:ed:46:df:b6:18:59:d7:d5:
e8:81:76:c6:b2:db:f0:e2:df:58:8c:14:50:2e:42:
33:e1:05:34:34:43:0b:6a:bc:f4:5c:e2:5d:0a:1c:
81:53:30:b8:92:c1:4f:76:1e:da:1d:3e:49:10:bf:
8c:a2:86:fb:78:b5:04:bb:70:c5:b4:c7:47:e2:99:
18:bd:e9:54:ea:dc:09:31:15:45:78:fc:d6:e1:ec:
f2:f8:8e:ce:04:ea:c1:6a:d2:16:a6:ee:7c:27:87:
f5:1e:31:3f:e4:05:a6:22:72:f2:d5:11:45:dc:a7:
0a:1b:26:d2:4a:68:03:76:b6:8f:62:06:49:3b:3c:
15:95:77:cb:41:11:30:73:96:e5:ee:c0:70:c9:af:
0f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C2:9B:4B:B0:F6:9F:39:7C:C8:88:EA:70:C3:38:D2:DD:BD:11:94
X509v3 Authority Key Identifier:
keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:72:6e:86:d0:63:79:c8:26:86:35:e0:6d:09:34:fe:05:0b:
df:d9:88:80:16:9d:11:36:0d:09:07:89:e9:ae:40:ae:ad:5e:
8f:bc:ac:6d:cd:fd:43:4e:4c:82:db:40:20:68:21:c6:12:cb:
b7:61:69:e0:69:4a:5a:75:f9:aa:51:7f:06:ef:1b:d8:06:42:
12:8d:29:a9:68:7b:43:ff:b4:eb:c2:18:ec:2f:c5:4c:8a:16:
10:ff:7a:65:47:67:bb:14:59:f0:36:7d:83:fb:f2:e7:44:60:
31:5d:dc:bc:35:97:65:20:83:ce:15:ea:9f:d2:a0:80:58:ff:
75:4b:21:53:e0:8b:48:15:22:4a:4d:9c:0e:ac:db:45:91:63:
00:81:5e:f2:0f:12:9b:3c:91:69:00:cd:ab:27:86:36:18:aa:
00:66:d5:0c:20:5a:aa:01:10:86:37:d9:25:95:1b:5e:e1:90:
ba:55:78:3a:9f:f3:be:76:0a:d1:49:b3:6f:ef:ff:4f:7e:94:
19:62:30:ed:93:e2:24:c7:72:fd:81:3b:b4:d5:8a:3c:04:ba:
53:f7:5b:1e:4b:8d:d3:5e:de:47:29:53:d0:01:f1:f6:2c:c8:
95:a9:90:ce:29:c7:b7:8c:f5:c6:81:72:ec:68:77:18:21:36:
61:cb:e5:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:11:54 2025 by rpki-client