Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
File: 1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft (raw, json)
Hash identifier: 8xrZATO5c9AeFkWzsytH5+OHzX/7D5qY0CNrc3+8Ez0=
Subject key identifier: F7:76:5D:E0:8E:ED:C6:2D:AA:26:9E:F5:0F:E5:AD:49:2B:B8:BF:EA
Authority key identifier: F9:73:20:96:25:E2:A0:3D:DE:EC:F9:1B:B4:80:54:8E:57:29:D4:79
Certificate issuer: /CN=f973209625e2a03ddeecf91bb480548e5729d479
Certificate serial: 019651C885AD94CD47EC12B742F3B8478244
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
Manifest number: 14FA
Signing time: Sun 20 Apr 2025 06:00:18 +0000
Manifest this update: Sun 20 Apr 2025 06:00:18 +0000
Manifest next update: Mon 21 Apr 2025 06:00:18 +0000
Files and hashes: 1: 1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl (hash: GGVKhqG46+wpCkXRQNCQGefa+h0uHC0Zzdd92jYUYU0=)
2: l3JzatKnSb-qTPQjQ9VOzx8MD7g.roa (hash: 40hMQclA6AyvTYjGgbc8RhGg1fGmdxgMO6uT9Avjx2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:85:ad:94:cd:47:ec:12:b7:42:f3:b8:47:82:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f973209625e2a03ddeecf91bb480548e5729d479
Validity
Not Before: Apr 20 06:00:18 2025 GMT
Not After : Apr 21 06:00:18 2025 GMT
Subject: CN=f7765de08eedc62daa269ef50fe5ad492bb8bfea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:16:4a:ae:58:1a:2d:fd:c2:87:27:19:19:a4:
d5:67:84:4b:bd:93:86:c0:9c:cb:d9:d9:cf:72:b0:
70:05:78:69:c0:78:92:87:7f:83:1b:5a:a5:3a:41:
5e:ad:ef:f8:54:20:e1:a8:b7:5d:cf:3f:56:a3:3d:
84:a8:98:89:39:a5:e7:e8:82:cf:ec:78:ea:01:82:
a2:13:3e:c9:79:f7:7e:cc:85:43:0c:5a:da:f7:75:
9d:a8:5a:5b:e9:f2:7d:9e:ea:dd:bb:e4:a7:04:29:
68:17:89:44:ad:9f:e8:8c:c6:a7:cd:18:31:f6:0b:
f8:27:b8:52:ec:1c:ed:bc:d5:8c:ae:29:68:db:63:
e0:79:e3:07:92:3b:0e:2d:aa:d8:c9:ec:22:ea:9b:
67:90:41:b6:e4:ec:e3:84:61:11:b2:11:fd:57:c6:
6f:3a:93:d9:3a:ab:ac:7a:b0:01:eb:5b:3d:fd:45:
83:6c:01:83:99:e3:6e:eb:06:b7:28:0c:03:a2:37:
95:36:39:cf:79:ce:dd:a6:78:00:48:4a:e7:80:8f:
41:9f:7d:3d:26:8e:df:dc:3b:cc:3c:60:58:5f:80:
61:6e:4a:03:d9:fe:80:7b:87:b7:5a:73:15:70:51:
d1:99:55:1d:6e:6e:7f:8b:60:4b:1b:9d:e8:3c:d9:
44:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:76:5D:E0:8E:ED:C6:2D:AA:26:9E:F5:0F:E5:AD:49:2B:B8:BF:EA
X509v3 Authority Key Identifier:
keyid:F9:73:20:96:25:E2:A0:3D:DE:EC:F9:1B:B4:80:54:8E:57:29:D4:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:7b:cb:bd:37:ee:c9:24:fa:f3:5b:3c:da:ce:59:79:28:0d:
ad:0c:8c:2b:75:fb:6a:a7:4f:5c:c2:93:3b:13:94:9e:66:c1:
70:95:91:15:be:d6:a1:5a:7a:a4:b4:e2:15:22:33:d2:a9:44:
5e:df:da:bf:22:05:df:70:1a:82:54:48:6a:24:08:bf:9a:de:
93:ce:c2:58:67:7b:ae:5a:47:68:e2:8a:e2:b2:a2:20:43:08:
da:df:99:0b:b6:da:d2:56:ff:9a:08:90:0b:d6:02:47:43:e4:
bf:a4:f8:af:a9:1d:e8:0d:07:5b:69:65:5f:9f:86:65:3a:dd:
c0:45:79:5e:95:6c:be:e4:47:57:0a:8e:6c:cb:f5:3f:15:d8:
a3:3b:9c:c6:2a:e9:20:7f:33:9a:4b:34:23:a5:6d:1d:61:5d:
a6:0a:1c:97:fe:99:19:b3:2d:8a:99:4d:2a:ae:ea:1a:43:fd:
19:51:4a:9f:13:35:3e:40:cb:9f:84:b5:d3:57:18:7a:af:fe:
5a:af:22:3f:4a:c6:07:8f:8d:84:ee:5e:33:d0:91:6d:af:c2:
62:9e:80:88:bf:80:a3:c0:a6:7c:21:17:15:47:95:3c:08:24:
9f:01:05:7b:d3:aa:85:5b:90:ae:e0:9c:ef:ba:c9:07:a5:98:
1f:fe:89:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:20:20 2025 by rpki-client