Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
File: xZKgYJDwFpQNMesbCbrhLZSxlbA.mft (raw, json)
Hash identifier: EU5xW9q4zHcI6nbVn4d/PlVOnE0u0MeOHZ90OsnSITU=
Subject key identifier: C9:BA:2B:A5:09:EB:D2:EF:18:CF:C9:EA:42:10:8E:7E:5A:AD:33:FB
Authority key identifier: C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
Certificate issuer: /CN=c592a06090f016940d31eb1b09bae12d94b195b0
Certificate serial: 01964BFE27EC574367226E889C021E75CA64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
Manifest number: 03D9
Signing time: Sat 19 Apr 2025 03:01:09 +0000
Manifest this update: Sat 19 Apr 2025 03:01:09 +0000
Manifest next update: Sun 20 Apr 2025 03:01:09 +0000
Files and hashes: 1: tOD7ZPqas8UpTT4bdLzx0MJD5rk.roa (hash: k/eXxf7557SFB+l+Q/mWhChu1kZsTZ07A3b0mG1jAsA=)
2: xZKgYJDwFpQNMesbCbrhLZSxlbA.crl (hash: 0hzaYHnl4Ts7+IrWS7/A1sKBI2BxKSeQ2tw1p2ohQMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fe:27:ec:57:43:67:22:6e:88:9c:02:1e:75:ca:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c592a06090f016940d31eb1b09bae12d94b195b0
Validity
Not Before: Apr 19 03:01:09 2025 GMT
Not After : Apr 20 03:01:09 2025 GMT
Subject: CN=c9ba2ba509ebd2ef18cfc9ea42108e7e5aad33fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:4a:f6:16:84:93:56:1a:56:42:bd:5d:da:a8:
d0:86:7d:87:a0:78:37:0d:92:f1:30:9f:15:59:d7:
f5:60:e1:9a:f3:db:ec:da:06:18:58:fb:db:a6:2e:
9c:fc:a4:d2:2d:59:04:f1:83:ce:94:b3:45:64:a0:
79:42:41:8d:78:c4:8e:f4:64:ca:98:33:70:31:4a:
ba:c2:42:ba:ab:4d:81:71:73:ca:8c:b3:ab:63:77:
15:2a:f0:2a:3f:5e:35:f0:4b:a6:04:09:89:37:fa:
ae:ec:60:47:08:f0:45:c0:68:ab:6f:d9:f1:c3:ee:
70:1f:c7:fb:76:58:5a:59:89:3d:2f:d0:47:2e:7c:
18:d6:12:4d:f7:66:f1:c3:f0:7b:6a:71:1e:1f:06:
9c:2d:2b:1e:3a:68:90:97:d7:e7:5e:08:5c:d6:be:
c3:61:18:67:3b:6d:6a:64:ae:23:f5:d0:88:3a:0b:
af:24:d5:9e:7e:fa:76:bb:20:98:71:b6:7f:5f:a2:
d7:a6:ee:88:29:f7:b9:ca:d8:48:e8:68:7a:4b:5c:
e8:6d:62:b0:27:1f:c7:05:49:e1:2e:b4:11:46:1c:
bc:fd:e4:7c:24:4c:46:d4:be:d2:72:90:0a:f7:9f:
33:b7:3a:18:4c:27:84:33:a3:df:7c:c6:35:c6:3c:
e2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:BA:2B:A5:09:EB:D2:EF:18:CF:C9:EA:42:10:8E:7E:5A:AD:33:FB
X509v3 Authority Key Identifier:
keyid:C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f1:01:16:96:ec:3b:1c:3f:40:89:c9:f7:b2:4e:c6:af:9d:
20:21:68:9f:a7:14:79:8e:96:e0:43:f8:d0:a4:3c:9c:f7:22:
0b:fd:6a:2a:24:98:1f:37:74:3d:1a:d8:84:67:79:cb:b8:92:
87:8a:67:05:dd:9f:f8:90:34:de:c3:63:ef:ac:77:6a:f4:70:
d6:86:bc:6a:e2:4c:83:58:c9:73:ff:0a:7b:1e:24:6f:74:b0:
d4:61:1a:e2:71:55:93:7a:7d:14:55:66:e3:f1:40:8d:9a:a3:
50:c9:c3:ec:1e:15:7c:f4:30:a4:1b:c2:4e:0a:32:5a:ad:22:
3b:db:29:fd:61:e9:37:62:a7:c6:0f:f0:25:c4:10:a7:42:70:
c8:c3:b6:a4:dd:65:3d:9a:28:6f:bc:7b:dd:12:78:1e:a9:f3:
5a:cd:d8:e3:03:8f:cf:c8:6a:a7:29:37:61:c8:b6:16:0f:c1:
2f:80:b3:c7:16:46:62:a1:71:ca:bb:7a:1d:bb:51:62:fb:d1:
21:2b:93:10:24:d0:5e:71:9b:09:9d:f7:84:6d:0d:ae:04:db:
e3:ba:79:e5:db:d1:e6:1f:8f:1b:d1:26:41:96:fd:91:07:39:
67:f2:f6:b6:06:d1:36:17:ab:9d:41:d0:d3:41:e3:48:51:fa:
70:43:3a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:15:37 2025 by rpki-client