Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier: 2JAbUs+eTjH3UqChSkQCosS7eahlwfZY1mYaPVuBy4k=
Subject key identifier: 13:B2:4D:06:D3:C7:11:5F:12:70:22:AA:86:6D:EF:EE:94:00:6A:75
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer: /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial: 019630F58E8AC8A6CF00CA55AB44EEE0127D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number: 1340
Signing time: Sun 13 Apr 2025 21:02:01 +0000
Manifest this update: Sun 13 Apr 2025 21:02:01 +0000
Manifest next update: Mon 14 Apr 2025 21:02:01 +0000
Files and hashes: 1: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: GQMLT67Gi9G0IIrvyGSeiKaq/vQdZA5nuNCPIFifJVQ=)
2: zUVgbIXYeTGVKXvGEymmIIswak0.roa (hash: byi69vgfiULR5t5etKbYt0ap14VdTPxIUc5JBAXpbBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 17:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:30:f5:8e:8a:c8:a6:cf:00:ca:55:ab:44:ee:e0:12:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Validity
Not Before: Apr 13 21:02:01 2025 GMT
Not After : Apr 14 21:02:01 2025 GMT
Subject: CN=13b24d06d3c7115f127022aa866defee94006a75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fd:84:2b:03:18:ee:9d:06:a5:62:bc:88:53:
ea:6b:a0:fa:5a:5a:9c:ee:06:af:b9:d6:aa:15:e3:
1c:ed:c1:a0:ba:bf:45:f7:4a:99:d5:82:57:b7:2a:
e3:d0:d9:46:1c:31:eb:be:b7:34:21:0c:84:22:c6:
68:61:1e:eb:6c:bb:c9:34:4b:23:0f:f0:6a:69:8b:
63:09:d4:1e:14:d8:c6:12:e6:60:80:92:e8:e6:a3:
4d:0b:a9:ad:0d:cf:6c:9a:8f:aa:ab:34:29:70:f1:
5e:6e:ca:87:0b:b6:4d:4e:cc:b1:9f:1b:9b:0e:ca:
b9:53:d5:9c:28:ef:0d:74:4f:b6:a0:ae:e7:9e:60:
25:a1:97:4f:1c:4e:c6:82:75:09:c9:79:8d:fb:c9:
d3:9a:50:c9:6b:2e:59:9a:e9:e4:d3:ea:79:67:13:
94:a3:1e:13:99:f4:5e:ba:14:a6:aa:3d:06:1d:d2:
8b:97:df:bb:2d:4a:10:fe:5f:43:d2:e5:bc:4c:60:
c6:92:9e:94:85:43:4f:2d:84:05:83:f7:03:e8:4c:
24:86:9d:6b:91:ec:2c:66:47:16:a6:23:c2:5b:84:
a6:a5:2a:b9:11:43:55:44:64:72:e9:05:e6:29:44:
0b:71:ad:68:80:ca:c2:55:e5:0e:f0:04:66:69:45:
89:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B2:4D:06:D3:C7:11:5F:12:70:22:AA:86:6D:EF:EE:94:00:6A:75
X509v3 Authority Key Identifier:
keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:25:d0:b0:90:f9:7a:ba:cc:23:23:1b:61:e8:3a:6e:b1:e8:
20:df:2b:ef:b1:f4:d9:97:52:28:5c:48:d4:b2:64:85:2a:a3:
79:5c:33:b4:e4:c0:a6:34:48:ce:44:d3:1d:2c:b8:ec:09:94:
84:ff:22:d2:33:c9:9d:f7:62:0e:37:35:8a:33:0a:54:6d:5f:
95:1a:6e:1c:5d:26:1f:7b:23:5d:16:b6:3b:81:d1:69:9d:5d:
83:73:14:bf:b9:76:b9:eb:92:a5:56:c2:e8:ce:2f:c0:a0:21:
7e:a9:6d:63:61:1e:96:a2:97:89:ca:86:5d:ee:4f:7d:aa:b3:
da:6c:04:19:cd:06:e1:c1:ca:ad:d5:fa:db:0f:ee:e4:35:b3:
6f:35:ad:17:d2:16:de:d5:4d:77:48:87:cf:a6:69:d5:01:f1:
a7:c9:14:05:a0:7f:b9:83:16:9b:68:43:ba:ee:71:97:5c:3f:
ee:49:40:a4:66:68:a0:78:45:38:f1:b6:68:93:e3:87:9c:e1:
15:b7:e3:88:ed:3a:09:9d:b8:5e:0c:05:6f:c3:a3:a4:00:26:
bd:da:ff:c0:df:74:ed:d3:1f:72:10:05:45:08:2f:38:ac:09:
fe:e6:5d:8d:02:b9:79:04:fb:57:0e:55:e6:cc:ff:87:74:c0:
e9:84:f4:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:46:19 2025 by rpki-client