Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft
File: X2c9L2Ia4xQHABdIu95jisvYYFA.mft (raw, json)
Hash identifier: ArICB6NxdPzW4TEGAIzlQzrxnbE8t7geJgJZ3QSUb2Y=
Subject key identifier: BA:D7:88:40:6D:CE:90:1A:4E:43:36:B0:65:1C:71:63:A9:29:22:7E
Authority key identifier: 5F:67:3D:2F:62:1A:E3:14:07:00:17:48:BB:DE:63:8A:CB:D8:60:50
Certificate issuer: /CN=5f673d2f621ae31407001748bbde638acbd86050
Certificate serial: 01964D7E30D3623E391C5DC264A71FECA26E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2c9L2Ia4xQHABdIu95jisvYYFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft
Manifest number: 056F
Signing time: Sat 19 Apr 2025 10:00:37 +0000
Manifest this update: Sat 19 Apr 2025 10:00:37 +0000
Manifest next update: Sun 20 Apr 2025 10:00:37 +0000
Files and hashes: 1: HqDRIksWN36QXauqYoD2knIGjbc.roa (hash: 05DMa/ontaHtCWdbIzNxIFAgYET2ZoK4nwid3joHlm8=)
2: X2c9L2Ia4xQHABdIu95jisvYYFA.crl (hash: MKwioA/x4NCqWCWT3ycrDlEu3yopxNWyn7wU6k5CE7o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/X2c9L2Ia4xQHABdIu95jisvYYFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:30:d3:62:3e:39:1c:5d:c2:64:a7:1f:ec:a2:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f673d2f621ae31407001748bbde638acbd86050
Validity
Not Before: Apr 19 10:00:37 2025 GMT
Not After : Apr 20 10:00:37 2025 GMT
Subject: CN=bad788406dce901a4e4336b0651c7163a929227e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:76:53:69:6e:03:57:7e:28:9d:ce:fa:80:34:
3d:03:05:c2:06:60:d0:ff:7a:66:c3:68:76:be:54:
6c:14:aa:dd:58:e4:1d:8c:66:8d:2d:2c:20:ef:c6:
fb:96:53:fa:51:6c:b8:02:f7:be:1f:96:33:6b:b4:
e9:6c:58:28:8d:70:7b:47:63:e5:0b:43:8e:e1:e2:
d6:88:34:1a:d2:35:78:39:d5:08:e2:30:b0:3d:11:
37:35:40:92:26:57:35:cb:f8:58:55:6a:67:80:82:
f9:30:d8:92:7e:ea:84:02:bf:f2:cf:8b:db:f2:fd:
d6:fe:75:2a:b8:7a:7c:36:89:c3:bc:b3:b8:f8:fa:
ee:1f:6c:36:d6:82:3b:fb:ba:77:a4:c3:c0:e7:2a:
2d:2f:c3:85:c6:88:cf:b8:66:e8:5a:73:ce:de:3b:
c5:95:bb:cc:3e:53:ab:e2:49:47:c5:5c:aa:d8:3c:
fb:e7:6e:99:71:bb:ec:56:e6:14:07:46:bb:f4:ae:
f6:8e:a7:b7:8f:00:fc:fd:c9:b7:73:ab:60:fd:0d:
58:31:d7:dd:c1:ae:02:0d:01:47:ac:3c:13:a7:94:
c7:a7:66:58:49:9c:87:85:3e:ba:58:3f:c6:d0:85:
67:7d:2c:a6:85:ec:aa:d6:03:b6:f7:c7:b7:83:83:
91:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D7:88:40:6D:CE:90:1A:4E:43:36:B0:65:1C:71:63:A9:29:22:7E
X509v3 Authority Key Identifier:
keyid:5F:67:3D:2F:62:1A:E3:14:07:00:17:48:BB:DE:63:8A:CB:D8:60:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2c9L2Ia4xQHABdIu95jisvYYFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:1b:8a:e6:1b:fd:16:cf:5a:35:92:ab:af:10:b0:1b:0e:86:
3f:a8:99:1f:f9:45:7c:79:af:05:b7:5f:f2:28:93:ff:2b:38:
01:08:4f:33:1b:78:e3:5f:3e:cb:06:16:58:b7:28:1d:5d:e7:
7d:75:8c:22:8a:6f:16:51:6d:76:3e:76:42:fb:42:15:eb:71:
ec:64:2c:62:d8:8d:af:c6:16:00:fe:70:5a:75:cd:6d:18:9e:
5d:27:be:47:1b:98:7d:d2:79:95:fa:28:25:71:75:eb:98:27:
0f:ac:07:03:19:0b:77:c2:2d:1c:75:12:e2:6b:92:84:12:35:
7a:32:bd:9c:ab:0f:53:76:60:cf:da:cf:c6:54:ad:eb:42:0c:
67:1b:db:a1:1a:93:7a:79:75:81:1c:c1:c7:43:e5:59:b4:ec:
24:6a:ee:cc:68:87:65:5b:bd:fd:2e:c0:88:ed:6d:6f:5e:a2:
1a:81:51:48:a8:b9:66:e4:61:de:1c:60:39:d2:ca:70:99:4d:
d0:fa:ec:dc:e6:31:cc:23:b9:77:ba:a9:7b:55:4f:f4:7c:6f:
06:6f:ea:18:2e:4f:d3:d9:32:8a:43:38:b6:f8:c8:b4:41:92:
96:b3:d9:43:a4:9e:fe:ac:46:0b:c6:d3:2d:d9:d7:db:29:46:
36:be:a5:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:40:08 2025 by rpki-client