Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
File: XzHZebcQ7eIGiCOIGqYRrROvVFk.mft (raw, json)
Hash identifier: cj2RiWF6/SJTTmxsPeg6OLoPGJkUXSElWL1YA+/JxSY=
Subject key identifier: 7E:25:C3:35:E5:10:02:C1:7E:6F:3E:83:96:6D:F1:34:48:26:B4:16
Authority key identifier: 5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
Certificate issuer: /CN=5f31d979b710ede2068823881aa611ad13af5459
Certificate serial: 01964F6CFA47A2A6A087ECEC0592BDFDA776
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
Manifest number: 0AB0
Signing time: Sat 19 Apr 2025 19:01:04 +0000
Manifest this update: Sat 19 Apr 2025 19:01:04 +0000
Manifest next update: Sun 20 Apr 2025 19:01:04 +0000
Files and hashes: 1: 7VePb56Lb2mDp_DoHqAJOVOs_T8.roa (hash: V7IpcMoqQADg7SX3r725vYH2jPknDmi+ikdfBjQyP5c=)
2: XzHZebcQ7eIGiCOIGqYRrROvVFk.crl (hash: w2Pva+VqQxWYb3HQuRq9Jn/WI5YTWeUFnUdARVDIrT4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6c:fa:47:a2:a6:a0:87:ec:ec:05:92:bd:fd:a7:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f31d979b710ede2068823881aa611ad13af5459
Validity
Not Before: Apr 19 19:01:04 2025 GMT
Not After : Apr 20 19:01:04 2025 GMT
Subject: CN=7e25c335e51002c17e6f3e83966df1344826b416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:71:75:f9:6e:36:8e:c0:b3:bb:f3:6c:40:69:
27:e8:0c:06:b1:73:dc:7b:ae:a9:a8:ec:35:38:c4:
f6:34:b7:b3:fd:2a:5e:4b:9d:71:47:2c:6c:e6:c1:
94:6a:2c:91:6c:00:10:51:02:ab:f5:8b:f9:9e:e8:
05:55:7b:d2:0b:84:ac:70:0a:fd:34:18:d3:76:5b:
a6:05:d0:42:44:18:62:95:16:08:87:c0:fc:0f:df:
a8:28:e7:eb:45:6d:86:3f:bf:59:23:0f:8a:d8:65:
1f:5f:7f:4e:25:3b:b9:ea:61:2f:60:11:2e:30:fe:
d1:82:a0:65:e9:ac:f2:c3:57:67:7f:42:0f:34:a2:
ef:f6:83:31:09:25:f7:28:ac:e7:b8:99:c5:91:34:
97:c3:42:f1:de:a6:28:d4:96:95:5b:5f:10:5f:7a:
ba:95:c8:6a:35:70:ef:c1:c5:32:5c:44:ec:d6:f5:
01:00:62:95:cb:44:b9:6c:9a:2e:5c:12:f3:41:cc:
e5:13:c5:13:2e:60:d6:ed:28:0a:78:9e:57:b4:d2:
0d:4d:3e:80:f2:b3:a2:e2:7c:91:4b:19:d3:d0:82:
ee:69:90:11:d1:a2:87:55:35:b8:02:b9:e1:9e:6d:
dd:f9:1b:40:27:b4:8f:6a:c3:65:0f:4f:42:2d:68:
1f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:25:C3:35:E5:10:02:C1:7E:6F:3E:83:96:6D:F1:34:48:26:B4:16
X509v3 Authority Key Identifier:
keyid:5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:06:1e:7f:2f:4b:b1:48:42:60:13:d6:bf:1f:49:4d:59:a0:
d8:bd:4b:31:e4:f2:41:6e:96:fd:62:12:11:05:7f:d4:59:9c:
e4:34:c5:41:26:f6:c8:a3:0c:e9:51:04:39:55:36:40:58:9e:
fa:8d:03:b4:1a:bc:2d:62:e9:10:f6:42:32:60:72:0e:34:de:
7d:e0:d7:41:1a:a4:05:32:b3:bc:1d:e6:8e:4c:18:2f:2f:15:
f2:e4:ba:f7:e5:6d:22:50:ce:78:21:71:6a:a5:2c:47:25:f4:
24:c5:36:c4:a1:a8:b8:64:48:b4:da:a0:f8:54:41:9f:ef:84:
7e:6b:e6:51:a5:9e:09:e9:69:0e:88:c1:16:07:ad:48:d4:4e:
bb:44:f0:25:08:92:fe:55:7e:99:fa:14:9c:8a:19:c3:db:3a:
b5:f3:5e:5b:6d:39:5d:c6:6b:6f:4e:61:7a:ed:92:78:67:b6:
34:d5:15:98:7b:62:11:21:37:7b:30:84:ca:f4:35:8f:fa:ef:
92:fc:bd:7a:0b:08:b4:c4:7c:cc:76:d1:eb:51:88:78:d5:71:
dc:d6:01:98:98:e1:08:02:4a:45:57:d8:f1:c4:f4:cf:96:5a:
5e:b2:84:b7:80:78:f8:2f:eb:e9:96:b5:36:ee:58:e3:10:d5:
ec:10:d8:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:22:52 2025 by rpki-client