Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
File: XaWsO7omBTjDM-bIYPI2ASyYZ10.mft (raw, json)
Hash identifier: bIEGNbPM5hCRuQOCnKSnwBzYu4WuSKBU6in3dtvRT+0=
Subject key identifier: ED:C9:AC:20:A9:07:8E:5E:2A:B8:A7:68:74:5B:5B:BC:8B:D2:F2:E7
Authority key identifier: 5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
Certificate issuer: /CN=5da5ac3bba260538c333e6c860f236012c98675d
Certificate serial: 0196447B231B222C74DC542410450E5AF86D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
Manifest number: 0F4F
Signing time: Thu 17 Apr 2025 16:00:42 +0000
Manifest this update: Thu 17 Apr 2025 16:00:42 +0000
Manifest next update: Fri 18 Apr 2025 16:00:42 +0000
Files and hashes: 1: Lirq-zsF2DJ9HSd8FBwZm-dq_PM.roa (hash: DEsCxQ0UWNIneJAQeHuxPuouMfS+o3gP/21W0HHwfiM=)
2: XaWsO7omBTjDM-bIYPI2ASyYZ10.crl (hash: YkQF6L3x8jF+XlPJp/qFdj3vsGThG0WY4NJQ+IwLa4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:7b:23:1b:22:2c:74:dc:54:24:10:45:0e:5a:f8:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da5ac3bba260538c333e6c860f236012c98675d
Validity
Not Before: Apr 17 16:00:42 2025 GMT
Not After : Apr 18 16:00:42 2025 GMT
Subject: CN=edc9ac20a9078e5e2ab8a768745b5bbc8bd2f2e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e5:a0:f4:a7:c0:da:eb:ae:a6:88:1f:b5:93:
0a:bf:70:e1:2c:67:a2:ab:83:15:54:7a:d1:ff:2a:
ef:fd:00:9e:7b:cd:a0:7c:b5:1e:03:db:cb:14:86:
22:f5:ca:9f:50:8e:14:ce:dc:3d:8e:34:67:dd:c0:
f9:c1:f2:53:5d:6e:9f:ae:f4:51:83:8a:d1:8b:a3:
e6:62:7c:e0:c8:8b:3b:e8:83:fc:f4:d4:47:c5:bf:
ed:b7:47:3d:b9:33:bc:63:1d:51:b3:be:19:f6:1d:
29:db:2e:38:cf:74:3e:2b:a7:a3:c6:f6:2f:58:4a:
d7:be:d9:cf:6b:91:b1:7b:bc:94:1e:46:45:45:46:
36:53:2c:c3:1f:d0:22:71:c7:ce:e3:28:fb:0e:b4:
f8:05:4d:7a:17:bd:ae:17:23:f2:f6:9c:fe:93:f8:
3c:54:15:6a:bd:d9:ea:43:6f:d1:14:4e:34:bf:51:
32:40:2e:5f:ef:7d:b3:90:6d:b9:6a:62:1b:57:7d:
fd:38:f6:05:74:52:96:8b:06:c7:0c:bc:4f:11:97:
e3:4c:ff:e0:84:dd:e0:f4:c0:76:05:05:35:2b:77:
fc:9a:76:d0:54:e8:26:39:f1:dd:e2:da:1b:b7:5b:
0f:c6:a3:b6:dd:82:2b:52:50:a4:35:df:67:04:70:
a7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:C9:AC:20:A9:07:8E:5E:2A:B8:A7:68:74:5B:5B:BC:8B:D2:F2:E7
X509v3 Authority Key Identifier:
keyid:5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:ca:2c:c6:5f:fa:60:50:4f:e0:27:d2:fb:38:23:15:2d:c1:
95:c5:2b:a0:a7:85:9f:ea:e0:58:e6:63:8f:44:28:7e:a6:e6:
ba:f6:09:52:fb:29:5d:12:7b:9f:79:d8:a8:10:7b:f7:0b:64:
37:3c:9e:bb:84:06:4f:d2:82:ec:f8:20:62:16:85:2a:83:29:
96:05:54:97:70:5f:ed:72:42:1c:ee:2a:ef:de:a0:bf:bb:af:
fa:66:f2:93:4b:f4:66:85:9b:43:45:b5:d1:b8:a4:5d:b0:f5:
bc:1d:81:99:da:93:29:79:9e:43:83:d7:ff:e7:12:70:22:d9:
9a:4b:5b:20:a8:2d:fb:41:ad:e6:26:ea:ac:0c:df:2e:f8:04:
48:ce:c7:da:8c:78:e8:e9:27:c3:8b:b8:d3:95:e9:41:fa:01:
57:67:23:11:3d:71:0e:93:1a:93:c6:d6:70:9b:4b:a2:c2:45:
d9:bb:16:d4:b5:70:ee:a5:12:9f:f9:c0:39:61:1a:73:90:62:
dc:66:de:03:6e:64:11:fe:5f:84:da:2f:5e:b3:2a:49:47:a3:
38:d4:68:9b:fc:62:32:a3:9c:1f:1e:e1:aa:92:aa:4f:6a:62:
51:3c:79:66:bd:35:71:b0:3d:2a:f9:52:41:bc:f3:76:97:79:
c0:ac:ab:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:25:22 2025 by rpki-client