Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
File: XzHZebcQ7eIGiCOIGqYRrROvVFk.mft (raw, json)
Hash identifier: QlvEMRAdr4X+2ULwc71tchSpAbRFF0GkZHrVfRhGru0=
Subject key identifier: 4C:AE:E6:49:A9:AF:1A:C9:77:3F:9C:51:67:61:2E:AB:AD:2F:62:01
Authority key identifier: 5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
Certificate issuer: /CN=5f31d979b710ede2068823881aa611ad13af5459
Certificate serial: 0194C388476CED339351AC82421F93ACA300
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
Manifest number: 09E3
Signing time: Sat 01 Feb 2025 22:01:15 +0000
Manifest this update: Sat 01 Feb 2025 22:01:15 +0000
Manifest next update: Sun 02 Feb 2025 22:01:15 +0000
Files and hashes: 1: 7VePb56Lb2mDp_DoHqAJOVOs_T8.roa (hash: V7IpcMoqQADg7SX3r725vYH2jPknDmi+ikdfBjQyP5c=)
2: XzHZebcQ7eIGiCOIGqYRrROvVFk.crl (hash: RnyEz0hAl4ZwFpk1suoQABDjBoLqTs9jZ1e4rbz9qfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:47:6c:ed:33:93:51:ac:82:42:1f:93:ac:a3:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f31d979b710ede2068823881aa611ad13af5459
Validity
Not Before: Feb 1 22:01:15 2025 GMT
Not After : Feb 2 22:01:15 2025 GMT
Subject: CN=4caee649a9af1ac9773f9c5167612eabad2f6201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a5:a7:fd:b7:56:c8:e3:03:77:f0:2b:f0:2d:
4b:d3:10:72:79:a5:13:9a:9b:a8:d3:ad:0e:80:73:
ca:09:e9:85:f9:f2:ab:72:bd:fb:3f:6e:fc:6f:38:
2f:9b:39:d7:5d:b7:7b:c9:42:82:f4:b7:b5:d9:7a:
0f:90:e6:cf:01:0d:7b:1a:1f:d0:e8:5f:8d:9d:01:
88:ad:78:f0:c3:52:e4:eb:0e:9e:bb:6e:c0:a7:61:
60:d1:6e:4c:fe:d9:39:6c:7c:65:d4:13:d3:f4:66:
2c:e4:20:e2:c4:1a:61:62:fc:61:f3:22:b0:1e:a8:
c5:62:ea:d3:a6:02:db:91:25:a9:92:c6:fe:d3:41:
2a:55:4b:03:a9:c6:4a:10:84:ec:b4:ec:41:06:f7:
fb:48:51:f0:3d:d8:40:1f:55:2a:f7:b8:a3:3d:58:
b5:b3:66:9e:15:c9:6b:e8:24:bf:0c:28:dd:01:33:
6e:ab:ab:38:06:a0:cd:a5:0a:5c:e7:55:78:7c:82:
89:28:5d:47:9a:60:d8:d4:c0:21:41:34:d4:de:8d:
02:bb:d6:ec:25:b9:52:38:ed:c1:35:a2:e5:f0:d6:
cb:d2:22:c1:48:14:a1:41:12:81:87:73:4f:65:56:
2e:f0:54:ef:53:7b:3c:2a:ad:26:68:e0:d7:ff:b7:
ea:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:AE:E6:49:A9:AF:1A:C9:77:3F:9C:51:67:61:2E:AB:AD:2F:62:01
X509v3 Authority Key Identifier:
keyid:5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:de:4a:01:cb:f2:83:f0:7e:ca:5a:ec:e8:bd:ae:dc:b2:bb:
0e:27:f4:d3:e9:12:d7:0c:ee:62:bf:5e:7c:d8:ed:4f:3c:29:
46:be:da:a8:75:27:28:87:6d:91:78:fc:06:d6:d3:aa:77:8d:
95:5e:b9:2d:79:a0:6d:a1:7c:36:8f:1d:6b:2c:1a:5d:4f:7f:
c6:93:b3:b5:c9:5d:e0:c3:44:7f:9f:53:25:f4:78:5a:bd:88:
ac:d1:cf:86:ff:af:11:9c:e2:e5:fb:87:e5:86:11:93:de:17:
fc:36:30:9b:7e:a0:84:c1:05:b5:66:39:55:6e:5e:28:a0:6b:
6b:79:9d:6f:56:b7:f6:2d:9d:a6:c5:ce:f9:67:10:04:fc:47:
34:5c:65:17:1e:99:15:8e:0c:a1:0d:78:b6:0b:80:10:bf:44:
c7:b2:16:79:42:cb:9d:95:3e:ba:d2:04:42:e2:9d:c2:90:69:
80:de:87:8d:ed:20:61:f0:99:cb:0a:c9:1e:38:88:45:d9:57:
57:04:4c:8a:62:d9:7d:5a:75:40:5e:45:80:fc:bc:f2:29:b2:
24:32:3a:45:a8:2d:39:96:1b:ca:df:82:b6:d0:0a:90:e3:61:
3a:ff:eb:a9:30:df:b1:f9:06:8b:b6:67:ef:53:92:9c:5c:64:
20:c8:0e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:58:13 2025 by rpki-client