Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
File: XYHR_0WxVHwAqEtG75nsot-9Rbw.mft (raw, json)
Hash identifier: iMgIcaFn4LAmIV8vu3O6Iwc5G85jx9RCe7Nca02R9MQ=
Subject key identifier: 70:F0:13:61:E2:AE:C9:39:3C:30:D2:E3:A4:CA:13:6B:62:7C:F5:69
Authority key identifier: 5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
Certificate issuer: /CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Certificate serial: 0196580223660CC0FA8A62A728CA5A2A7497
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
Manifest number: 1502
Signing time: Mon 21 Apr 2025 11:00:57 +0000
Manifest this update: Mon 21 Apr 2025 11:00:57 +0000
Manifest next update: Tue 22 Apr 2025 11:00:57 +0000
Files and hashes: 1: C-JYvDSVCc5Zd_4Sd7FiFR4ridU.roa (hash: Fud1edK7T1C6PqdOPqDnlVWq4JxXY+eiVXIDYHC1t50=)
2: XYHR_0WxVHwAqEtG75nsot-9Rbw.crl (hash: FWFitQgHN/meh5X04Pp/3qSMn3wwZnWz6YRUqGycq8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:02:23:66:0c:c0:fa:8a:62:a7:28:ca:5a:2a:74:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Validity
Not Before: Apr 21 11:00:57 2025 GMT
Not After : Apr 22 11:00:57 2025 GMT
Subject: CN=70f01361e2aec9393c30d2e3a4ca136b627cf569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:cd:9f:5d:72:57:13:1f:c6:78:be:5e:a7:50:
b8:c5:9f:c1:f2:b7:74:ca:21:bb:2e:bc:1c:52:86:
db:51:87:9f:d7:e2:83:f5:11:92:9e:ea:8f:37:7b:
0c:e2:be:18:ba:0e:ef:5c:f8:6b:b0:00:e4:67:d5:
1b:db:4d:77:31:ec:7f:d5:53:d7:b7:39:a2:ba:a8:
fc:88:89:04:13:d1:48:0d:07:a5:fc:fd:a3:1f:e5:
2e:4a:2a:e9:93:9f:78:da:d1:43:75:4d:16:23:98:
a7:d6:61:b3:88:d7:f2:b3:08:e6:27:04:f4:0f:c5:
df:ea:85:90:90:94:9c:82:be:2f:17:e2:2e:58:f7:
ec:a7:ef:f8:46:36:a1:1e:64:31:91:e7:81:7c:44:
02:68:9d:a2:e4:98:4b:30:4e:a6:fd:a3:c4:ec:c0:
ba:77:bf:32:d4:04:59:c4:32:bf:00:0b:3f:f8:70:
48:a6:72:ba:c4:c0:9d:b6:f8:ed:77:a4:b6:bb:11:
5c:18:6c:c1:c6:fc:ec:60:dd:f0:a0:60:5c:30:ed:
20:0f:6d:29:07:86:ab:04:af:d4:06:05:65:c9:db:
be:ab:52:48:33:08:29:d5:13:69:f7:22:6f:9f:b0:
27:87:4b:9a:1d:55:9e:c8:88:b7:a1:04:2e:d7:9e:
10:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:F0:13:61:E2:AE:C9:39:3C:30:D2:E3:A4:CA:13:6B:62:7C:F5:69
X509v3 Authority Key Identifier:
keyid:5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:71:17:bc:45:3e:4e:29:ed:c9:39:a8:2c:6f:3a:99:bd:b5:
c0:7d:33:df:fb:8e:ff:dd:89:14:3f:84:a8:25:05:05:6a:72:
8a:c3:61:75:e5:10:f9:52:94:71:ef:44:53:af:20:3a:55:80:
47:71:c5:2d:c8:ec:3b:a3:e3:da:d3:a3:b4:e0:46:d9:48:4b:
7c:97:53:dc:df:aa:5b:8c:a7:be:ec:15:13:12:63:17:67:f6:
22:0b:2a:29:74:a0:03:ec:f6:bd:3e:a4:fe:a6:41:ab:df:75:
e6:64:9f:c4:71:e1:79:39:03:76:c6:13:0b:2b:f1:16:51:01:
a2:6e:e1:91:ed:53:db:55:85:a5:f4:95:23:50:b6:23:ac:a5:
a4:db:04:fe:e2:59:a7:85:0f:d0:a9:1d:73:82:c6:00:a5:f9:
f2:16:df:e3:29:76:ec:18:84:d3:7a:ae:3e:d7:27:a5:af:86:
93:b5:ab:e3:54:da:b7:b4:01:9b:5f:8d:dc:b9:bd:40:4f:d5:
87:bb:f6:17:9a:1b:66:4d:54:10:2d:28:5e:f0:27:b4:ea:58:
7e:33:7b:2e:be:67:e7:b2:51:f0:75:57:0c:a5:11:f4:73:52:
02:3c:46:75:9d:5d:b9:81:1a:40:b8:81:90:14:b4:16:03:ec:
0e:3e:80:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:15:10 2025 by rpki-client