Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
File: XasLCOUfgYIkYp-zohHYPVvjVEA.mft (raw, json)
Hash identifier: pU7kdf3OAmPYqaxLVtC61Dva3ebnppgoECCRDqK+6fw=
Subject key identifier: EB:F3:98:83:1E:A8:E0:D9:6B:86:5E:C4:58:BF:DB:80:9D:F9:0A:A8
Authority key identifier: 5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
Certificate issuer: /CN=5dab0b08e51f818224629fb3a211d83d5be35440
Certificate serial: 01963207C00792427A4C591FAD509F9FF45E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
Manifest number: 12F9
Signing time: Mon 14 Apr 2025 02:01:30 +0000
Manifest this update: Mon 14 Apr 2025 02:01:30 +0000
Manifest next update: Tue 15 Apr 2025 02:01:30 +0000
Files and hashes: 1: J3IfRy5hJG3sO5FFR3klCa0Rmag.roa (hash: y8cOLwfC28T1Q/CwomIs12ZpdB8agP1zP7ErrJL2HLM=)
2: XasLCOUfgYIkYp-zohHYPVvjVEA.crl (hash: 9JhXR/meV0mW21aKBws9Pv3sk4KFMWSgibnncCudMX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 02:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:32:07:c0:07:92:42:7a:4c:59:1f:ad:50:9f:9f:f4:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dab0b08e51f818224629fb3a211d83d5be35440
Validity
Not Before: Apr 14 02:01:30 2025 GMT
Not After : Apr 15 02:01:30 2025 GMT
Subject: CN=ebf398831ea8e0d96b865ec458bfdb809df90aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7d:7a:43:4d:65:d9:49:5a:67:a3:4e:5d:08:
fc:05:2c:f4:0f:20:b0:af:91:28:9b:fa:71:5e:d1:
e2:a3:ff:57:9f:64:0f:19:6b:7b:42:3b:43:26:31:
dc:a7:01:0f:6b:0c:a8:06:df:98:f4:47:55:18:c7:
a5:05:09:82:ac:3f:41:e7:40:41:d0:fa:cd:14:e2:
04:35:85:64:0e:69:b5:af:a6:48:8b:3a:f2:94:e7:
20:47:e5:ac:83:7a:84:02:a3:2f:9d:82:d8:d4:f5:
ab:80:ee:6e:0d:c3:d2:ab:42:af:82:ad:4d:06:28:
d5:dc:46:0a:88:39:c1:65:04:57:e6:9d:dd:b2:26:
dc:29:38:b2:d6:01:11:77:79:5b:c1:4f:2d:3f:2d:
5c:a0:63:b8:ac:ab:33:44:bd:48:25:48:c8:ac:37:
33:39:36:f8:1e:66:1f:a6:46:30:03:6d:fd:24:fe:
d5:c5:19:a8:72:a7:0c:c8:89:75:d5:8e:69:e7:b6:
bc:92:04:41:f5:35:93:1f:b1:78:a8:b4:3c:40:e8:
55:5f:a2:5e:e2:79:09:82:e5:a4:2c:98:1a:09:a7:
49:c7:9e:96:43:fb:0f:93:e1:d1:41:e9:23:31:49:
34:8e:ee:fe:6b:5c:49:20:65:b9:3e:81:a5:72:13:
21:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F3:98:83:1E:A8:E0:D9:6B:86:5E:C4:58:BF:DB:80:9D:F9:0A:A8
X509v3 Authority Key Identifier:
keyid:5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:05:3c:23:30:b6:cb:81:b1:9d:f9:bf:20:82:31:46:1f:03:
15:2f:80:1f:16:bf:f5:b6:28:7c:73:7f:62:6c:c5:08:77:a2:
0e:0e:70:fb:39:96:61:e1:4d:07:b7:58:09:64:34:7c:32:65:
1f:b4:74:80:ff:d0:03:55:d7:50:2d:14:9f:bc:ee:82:11:66:
21:b2:f9:d3:e7:23:b5:31:9a:c9:2e:14:cb:42:48:4f:b2:c9:
be:a9:08:e6:22:1b:50:92:0d:fb:13:a6:c4:ba:d9:a3:4b:e8:
36:8a:73:2b:43:ea:b8:65:54:30:e5:6d:d9:15:2b:7c:c5:b5:
e6:7c:ea:71:3b:0d:dc:85:2b:66:6c:46:5e:2c:1a:1d:cb:f7:
13:69:ce:e2:a4:2c:0f:6a:2f:39:22:48:99:28:ac:23:2f:32:
24:de:08:5d:45:6e:29:21:c7:b0:6e:96:ba:82:a9:95:9f:6b:
a6:f5:69:87:4b:c4:e3:24:20:58:3c:bc:f4:b8:e4:05:6d:b1:
02:a5:b7:9f:92:18:8b:dd:82:40:fb:6a:72:59:aa:16:e0:48:
3f:32:ba:f2:88:92:38:d9:2c:cc:20:14:c1:00:98:3f:77:ce:
81:5a:5c:10:06:d7:b3:f7:21:65:37:06:13:15:65:27:ad:55:
3f:b0:85:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:37:41 2025 by rpki-client