Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
File: _XjxP_qS8HTr5VfSotKa0Noz5dg.mft (raw, json)
Hash identifier: cp0vx+WlM5g0zuVx6o1xZH7wC1ESO7RnJtRtAFDNTZo=
Subject key identifier: 00:8F:55:A7:F0:63:22:86:24:74:B3:AA:14:01:28:0F:A9:48:1C:38
Authority key identifier: FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
Certificate issuer: /CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Certificate serial: 019658DD4A43A5F4EE7879C454EE05A8B6FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
Manifest number: 0A58
Signing time: Mon 21 Apr 2025 15:00:19 +0000
Manifest this update: Mon 21 Apr 2025 15:00:19 +0000
Manifest next update: Tue 22 Apr 2025 15:00:19 +0000
Files and hashes: 1: IPVqTow4BPog0VgWrmL6j3UlRyc.roa (hash: yHocQSt6Dh1L30jflXp+Oc+mQ08tmbAfLa5FFYWt/64=)
2: _XjxP_qS8HTr5VfSotKa0Noz5dg.crl (hash: +DRHr0raxZ551d7F2PjMBFbQO9j+FWr1wedCXqNdp8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 15:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:dd:4a:43:a5:f4:ee:78:79:c4:54:ee:05:a8:b6:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Validity
Not Before: Apr 21 15:00:19 2025 GMT
Not After : Apr 22 15:00:19 2025 GMT
Subject: CN=008f55a7f06322862474b3aa1401280fa9481c38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3f:c8:4b:36:a5:78:98:35:b3:54:03:1a:3d:
65:05:77:a3:76:29:bc:48:55:8e:45:d9:a3:46:97:
98:5d:54:df:08:29:10:a4:18:d1:97:8d:2e:0b:cb:
c7:90:4a:f5:d1:6a:f0:89:f1:72:59:a4:ab:8f:c5:
69:0e:97:4a:98:6b:24:c9:f7:2a:3a:da:8f:f4:ac:
f3:5c:83:04:4c:2e:6c:a8:12:cc:e3:e4:7c:56:13:
5b:ac:71:e3:56:09:25:95:e9:75:1c:a0:dd:b3:47:
a6:c3:9c:99:70:10:48:ec:79:47:47:95:bd:54:dd:
39:43:8c:aa:d6:d6:fe:82:e7:07:99:4c:77:1c:0d:
98:c2:9d:03:c2:28:ac:ab:c0:9a:d2:e9:f1:00:09:
07:c5:c1:45:27:44:19:5e:b1:e5:46:29:c4:51:56:
28:7c:03:1c:db:cc:15:4e:54:7f:20:a6:a3:ce:2f:
67:33:d8:24:b9:c9:40:1f:f9:4c:8d:f7:30:99:e5:
09:25:36:20:3c:c1:62:8e:13:f2:f4:7c:b3:ea:dc:
8a:b5:bf:d0:13:50:e8:07:65:7e:26:9e:ed:ea:32:
ca:d7:0b:a2:35:8f:94:be:0d:a1:e0:9d:81:ec:b0:
04:10:16:8e:81:b0:c1:95:3e:f0:02:1d:8a:19:d9:
cf:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8F:55:A7:F0:63:22:86:24:74:B3:AA:14:01:28:0F:A9:48:1C:38
X509v3 Authority Key Identifier:
keyid:FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:e7:c6:09:53:c0:2d:5a:3b:be:8e:c8:74:c9:40:24:43:8f:
8f:07:da:c5:2c:de:84:8a:36:3d:d3:fc:97:c3:d5:86:78:f4:
0d:f7:a5:48:f6:61:33:a8:7f:0e:0b:1c:8b:c4:0f:a8:bb:27:
c9:7b:4a:2b:47:00:da:93:57:73:dc:d8:7e:fc:19:e3:19:19:
8f:96:03:f8:a8:85:19:a8:32:5a:98:60:5f:64:10:d7:44:a6:
da:5b:48:c5:10:d0:7f:b5:12:69:ec:28:89:fa:3d:3d:b5:c1:
22:6b:9e:f0:38:84:34:d0:d8:c9:31:c6:53:aa:8c:1e:b1:e1:
dd:ff:56:b0:4b:9f:17:a5:64:6b:e4:61:ff:d4:b8:e1:d5:ec:
a4:32:bf:93:40:43:5e:5b:e6:8a:46:8a:23:4c:ec:fd:b5:d9:
23:fb:18:c4:c8:fe:fe:05:99:b7:40:ae:c5:65:43:f3:4f:7a:
87:eb:b3:f9:45:56:fc:b7:81:2a:cc:8d:5f:c8:41:9e:4a:a2:
bf:78:e9:71:94:c9:53:05:89:d3:1e:23:0b:2b:08:7d:8a:41:
65:c6:90:86:8a:99:5e:34:05:65:16:b7:7d:88:b8:e6:97:ce:
1c:6c:5e:3e:e3:85:4a:54:1c:57:dc:b3:63:5c:21:b4:7e:51:
6f:12:87:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:34:52 2025 by rpki-client