Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
File: xypST5sbOAHb18iaFgrsB2tX5yk.mft (raw, json)
Hash identifier: WZLfNrNL2VfkjY0cIo5DrKWH+tLnDkOz3Mn6kDDIqzw=
Subject key identifier: A7:5E:66:9F:51:1C:71:4C:C4:B9:30:EA:A0:D7:27:80:17:D8:5F:63
Authority key identifier: C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29
Certificate issuer: /CN=c72a524f9b1b3801dbd7c89a160aec076b57e729
Certificate serial: 019656B84B3D86FDBAD0D2D269341F780231
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
Manifest number: 0D65
Signing time: Mon 21 Apr 2025 05:00:40 +0000
Manifest this update: Mon 21 Apr 2025 05:00:40 +0000
Manifest next update: Tue 22 Apr 2025 05:00:40 +0000
Files and hashes: 1: B5IPw2to02EUzOiZAkDMZAMJU40.roa (hash: SqPGfdHaKQmJHjb0Md5WPKQZqfqDkbS8MZiJDiQQgE0=)
2: QhPm8U1brOIqGs2lZ2LGdcxBiLA.roa (hash: b6IzZ0v53J6OJOZBPLixdFrIPoMrdc5UH4inFHWFRvM=)
3: kYBNVlP4IkeOs0bTiFV8wc5LMQs.roa (hash: g3QlMNFCFIgPt5yC/cat7+5gVwDPl1ap/dvIpROnsyw=)
4: xypST5sbOAHb18iaFgrsB2tX5yk.crl (hash: dzGnlnIU0DYT7LycvmkCa7wWJrOohWfWDR8cRAzyv0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:b8:4b:3d:86:fd:ba:d0:d2:d2:69:34:1f:78:02:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c72a524f9b1b3801dbd7c89a160aec076b57e729
Validity
Not Before: Apr 21 05:00:40 2025 GMT
Not After : Apr 22 05:00:40 2025 GMT
Subject: CN=a75e669f511c714cc4b930eaa0d7278017d85f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:01:a6:f3:52:ba:81:ab:e2:f5:43:5a:6b:43:
b1:71:4a:44:c9:3a:d0:29:cf:fd:2c:1f:67:1e:f7:
7a:e3:38:6d:03:59:93:72:13:78:f4:f5:ed:67:3d:
71:19:f0:e3:12:11:7d:ec:1e:10:61:0a:0f:40:20:
e7:61:c8:65:14:d6:31:cf:6f:4b:0c:a9:3a:82:c1:
3c:b0:8c:87:40:f5:35:e4:32:95:60:39:6d:e7:18:
f6:54:11:51:37:d5:15:11:19:0c:4e:e2:b1:c7:9f:
b4:ed:3c:54:c3:84:ae:24:df:76:40:6b:50:4c:51:
a9:81:cd:31:f9:26:33:4b:62:d3:69:37:82:1e:c5:
3e:02:5f:3a:d4:1f:e7:9a:8a:a6:89:5b:c6:26:f1:
6d:35:66:cb:33:12:67:44:b4:a5:34:bb:1e:7e:1b:
6d:e7:73:76:b6:1a:54:f0:d3:59:0e:71:2e:c6:82:
cf:6a:e9:4a:8d:4b:7a:95:32:01:ea:02:b0:b9:48:
62:8a:42:ee:d1:f8:b5:c1:92:82:19:33:d8:87:89:
f1:1e:28:a1:7e:f0:3b:8b:74:41:56:7d:fd:a5:be:
3f:66:58:20:5e:61:ff:94:95:e0:01:f8:ad:7c:c5:
d2:3e:b5:56:cd:13:e7:b6:dc:0e:a9:3b:94:29:d3:
9e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:5E:66:9F:51:1C:71:4C:C4:B9:30:EA:A0:D7:27:80:17:D8:5F:63
X509v3 Authority Key Identifier:
keyid:C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:f0:e0:6c:59:08:1b:32:4a:85:37:fa:dc:f3:bf:98:c6:0d:
d0:c1:11:70:cc:d3:4a:7e:b2:3f:86:af:d5:4f:9d:47:e9:1d:
75:62:f9:70:3e:c9:b6:89:fb:44:5f:f0:16:ff:f4:d5:d4:19:
e1:5f:82:c0:95:28:b4:40:13:e4:54:63:66:1b:bd:30:b4:38:
ae:4c:3b:e7:34:de:80:18:53:6f:2a:2d:32:a2:29:fe:cc:5d:
c7:5b:55:7c:5d:5f:1c:7f:cc:e9:37:f6:29:ae:17:23:62:29:
d8:aa:85:ff:49:97:aa:5f:3f:23:cc:20:dc:7a:c6:e7:2c:f3:
21:92:84:fb:a4:92:4a:31:0d:d8:63:b8:46:a2:d1:4f:0a:04:
87:a6:b9:a6:ce:7e:c5:b3:84:91:b6:37:cc:09:35:e9:e8:b1:
42:93:e4:9f:c6:61:c4:c6:5b:45:3d:f8:f5:b9:0c:1b:f8:d3:
09:b2:f1:b1:fe:c0:ad:6b:c3:a0:6f:62:53:0e:93:aa:d5:b6:
b1:f8:78:95:90:88:fa:ea:c1:55:6d:e8:e1:ed:b8:3a:ae:63:
8e:af:aa:d7:e0:dd:43:a2:9b:79:3c:32:a0:ce:09:f8:89:b0:
bb:4f:66:94:23:7d:f7:f9:ca:9e:27:8e:73:1d:3e:89:a8:a0:
4d:4c:68:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:50:38 2025 by rpki-client