Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
File: XBEKKwrrN_DJMqlr279-82whGXw.mft (raw, json)
Hash identifier: K1OPGsxNIduRrR0MvMl9H2yqbgaTRPnFpa3BlsFUGvw=
Subject key identifier: 68:40:AF:80:09:37:45:AF:B0:AC:04:23:61:AD:79:98:E0:22:6D:0D
Authority key identifier: 5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
Certificate issuer: /CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Certificate serial: 0195127E94375A3AA8A8CBFC132C3A5A5F80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
Manifest number: 0FC3
Signing time: Mon 17 Feb 2025 06:00:40 +0000
Manifest this update: Mon 17 Feb 2025 06:00:40 +0000
Manifest next update: Tue 18 Feb 2025 06:00:40 +0000
Files and hashes: 1: XBEKKwrrN_DJMqlr279-82whGXw.crl (hash: ptRaOTjiKYokENyzqGZKp8SvZmyqn2ZfnuMggokELGw=)
2: kzlWeerWBpLQJUvq-zvqgpRgYGk.roa (hash: nVND6/0jbck+9wjQsXvYtJIdnT8gV1/CUuZluisEp4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:94:37:5a:3a:a8:a8:cb:fc:13:2c:3a:5a:5f:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Validity
Not Before: Feb 17 06:00:40 2025 GMT
Not After : Feb 18 06:00:40 2025 GMT
Subject: CN=6840af80093745afb0ac042361ad7998e0226d0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:82:4c:77:d4:70:ee:fc:bc:96:25:1b:66:58:
97:62:5d:9f:0b:65:01:34:71:c2:77:09:5f:d6:6f:
47:5f:ac:c2:5b:20:19:ea:43:b9:d5:87:20:dd:d9:
35:dc:65:ff:58:ae:47:b0:d8:42:57:11:e5:0b:55:
c1:f1:e6:f1:90:ba:aa:4b:8c:f6:f6:e5:4c:20:68:
73:22:16:57:0b:a4:b9:c2:ac:d2:00:81:78:48:3e:
f0:40:3e:7e:50:86:f6:7a:c2:23:7f:f9:da:29:6c:
e3:af:b9:55:47:57:5d:d2:05:3e:cc:63:b3:12:77:
6d:17:d0:4f:9b:a4:69:33:f2:19:26:76:d6:a3:57:
c3:6b:c5:a3:ea:e6:d4:89:b9:c8:8d:38:11:d2:16:
ec:e9:a3:f6:05:bb:47:bd:cf:3a:24:82:93:bb:ae:
84:c7:ee:6e:65:f9:40:d7:14:98:81:b5:df:83:a4:
1a:f4:5d:bf:f7:93:a5:81:e1:6d:0b:0c:99:fe:82:
6e:94:d1:91:20:99:f2:39:ac:42:56:d7:da:a4:0d:
fe:ad:78:77:ad:6f:a6:0b:20:40:e0:da:3c:88:49:
07:55:6c:66:4c:e3:31:81:a3:ef:72:ff:7e:56:b9:
4f:0d:52:89:bf:02:e3:a3:00:ba:08:75:6e:12:ce:
69:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:40:AF:80:09:37:45:AF:B0:AC:04:23:61:AD:79:98:E0:22:6D:0D
X509v3 Authority Key Identifier:
keyid:5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:0f:70:f7:3f:01:e0:e8:a8:26:1d:3d:30:dc:f3:55:bf:cc:
de:ef:8f:bb:2f:ea:59:75:35:f2:d9:9a:ab:39:89:3a:f2:70:
b9:ea:35:2e:f7:c2:79:d8:12:03:b9:75:8b:71:5b:ff:36:46:
89:c8:b1:ee:de:4b:6d:00:ab:78:a9:28:a7:ba:88:83:71:e6:
17:a9:d8:ea:be:f7:07:dc:79:ff:3a:8b:8c:7a:f8:f4:0d:b8:
04:09:da:e6:b9:0e:10:da:d3:c1:5a:93:5c:f3:8c:55:ef:7e:
65:77:e8:58:8e:c4:79:2b:ab:ce:cf:2a:78:e5:fc:53:af:9a:
4c:89:f9:f3:68:d6:04:76:ff:c9:75:1f:8a:95:c9:76:d8:85:
d4:b4:55:e7:96:0d:c9:ab:a6:8d:10:52:84:4d:b5:48:d5:69:
d0:30:ac:5d:6a:e4:13:3b:f3:95:3e:4a:47:7b:2e:a5:be:d0:
57:50:d3:bc:14:13:3d:22:08:c8:2b:23:57:24:03:dd:fd:c5:
ab:d7:79:6e:8b:3a:84:d2:a5:b4:2b:f8:f4:ec:6b:03:42:6d:
f2:32:71:d4:49:08:2b:3d:a4:56:8a:68:50:36:c2:3f:0f:19:
bc:6a:79:db:4f:fb:59:fd:85:7e:89:4e:ac:7f:cb:fc:85:5e:
58:43:53:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:41 2025 by rpki-client