Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
File: XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft (raw, json)
Hash identifier: ncc7gtG6gr87WQUTMppQZR65dQidbC7OqV3E1wLZ/u4=
Subject key identifier: 1C:C3:ED:27:11:C7:83:F5:71:A3:E9:FD:24:21:85:7A:AE:7A:14:23
Authority key identifier: 5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
Certificate issuer: /CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Certificate serial: 0194C3876256B0A4B244BBA6207418C9E065
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
Manifest number: 0B
Signing time: Sat 01 Feb 2025 22:00:17 +0000
Manifest this update: Sat 01 Feb 2025 22:00:17 +0000
Manifest next update: Sun 02 Feb 2025 22:00:17 +0000
Files and hashes: 1: X7HkSzc73grEKj4u4ebonuY_N3k.roa (hash: OyEQG3xPXjnpnin1BNjI7sPjB8DI9jWlTT019Ki3K7k=)
2: XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl (hash: mD3WAt7KkHkw1ZutDrVzHzOi39akXHwbjhOdTwW4p2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:62:56:b0:a4:b2:44:bb:a6:20:74:18:c9:e0:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Validity
Not Before: Feb 1 22:00:17 2025 GMT
Not After : Feb 2 22:00:17 2025 GMT
Subject: CN=1cc3ed2711c783f571a3e9fd2421857aae7a1423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b6:c5:e4:b6:b4:51:38:0a:bd:cb:73:42:81:
ef:11:5d:f4:c8:88:22:b2:6a:cd:af:8f:e6:f5:99:
3e:dd:89:5b:61:ae:ea:aa:3c:54:5b:99:bb:b6:11:
bf:29:ec:d9:20:c0:ab:5a:36:e9:97:2d:86:9b:ef:
22:6f:55:bd:4b:be:b5:66:e7:bc:69:30:3e:63:f1:
54:ae:60:b2:ec:da:6e:08:32:a9:6a:b2:d1:11:50:
42:15:89:35:68:a8:c4:11:00:ba:43:34:81:aa:6b:
12:a7:1b:63:2c:43:b9:2c:85:e1:48:09:da:38:91:
72:25:2b:be:f9:db:a4:11:d5:cd:f9:25:b4:fd:62:
e1:01:7a:bb:ee:94:b5:d0:88:9c:6b:20:0f:6d:81:
78:ac:8f:03:24:0d:2e:4d:11:bc:ef:17:07:1b:4e:
19:1b:74:16:e2:cb:e0:5e:89:d6:e3:1c:28:72:0c:
5e:e6:73:bc:e6:b7:1e:36:ba:8b:e5:18:e7:1a:fc:
8d:1b:34:6b:8a:03:01:a4:df:63:f2:5a:8f:bc:ff:
fb:8b:e8:cf:f0:8a:24:22:c5:0e:5a:67:ac:b9:17:
a6:ec:41:54:20:b9:86:37:c5:0c:86:89:f0:28:92:
68:28:36:90:e2:92:a0:c6:52:b6:5b:87:b5:be:a3:
6d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:C3:ED:27:11:C7:83:F5:71:A3:E9:FD:24:21:85:7A:AE:7A:14:23
X509v3 Authority Key Identifier:
keyid:5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:d7:12:c8:db:d5:02:92:ea:52:fb:54:a2:73:85:01:6b:bb:
cc:2f:36:8d:1c:ed:46:9a:ec:ca:28:bc:e6:45:72:2a:1e:d5:
7b:c7:b9:3b:00:f4:ad:79:1b:ac:07:2a:8f:1a:9a:f3:83:43:
f8:7e:38:13:ea:22:8b:48:02:a7:35:6d:b6:13:ce:b2:b9:82:
dc:d8:48:1f:69:6b:72:04:06:49:49:b1:0f:99:8b:06:10:ea:
12:da:81:6d:dd:79:01:ba:c9:31:e0:71:e8:94:43:8c:fb:63:
51:9d:e7:b3:55:83:15:4e:d8:93:b2:99:70:71:5c:9f:1f:05:
07:3f:36:4b:80:08:c8:52:a1:d4:93:22:10:93:99:4e:f4:33:
11:4f:94:53:8f:17:40:3b:ec:08:08:5a:77:c4:a2:f1:9d:84:
83:21:f9:cb:30:26:b3:84:28:29:01:75:78:60:75:b5:f6:84:
89:12:96:90:7a:7c:83:a9:a9:dc:f3:92:ba:a1:9b:b2:81:1a:
aa:02:b8:d7:6d:1c:31:67:d0:79:ec:f6:ec:fe:02:9f:f0:0c:
bc:5e:9a:2a:3d:d3:22:a0:d1:3e:4b:e8:0d:67:64:f6:ad:3e:
bc:14:80:cc:67:7e:6b:2f:25:32:91:5d:0c:33:8c:5d:e2:74:
28:2d:35:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:59:52 2025 by rpki-client