Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
File: XlgQVXywZwvJwJM-An6b2CqxVt8.mft (raw, json)
Hash identifier: D1u0jjWIOOSDTyFRrtJDZJbxNqbszaft9EC9DnVaFc8=
Subject key identifier: 95:C2:F3:72:87:42:7E:16:EB:08:9C:5E:78:6E:29:64:05:75:67:43
Authority key identifier: 5E:58:10:55:7C:B0:67:0B:C9:C0:93:3E:02:7E:9B:D8:2A:B1:56:DF
Certificate issuer: /CN=5e5810557cb0670bc9c0933e027e9bd82ab156df
Certificate serial: 01958B84402B92E362FB954FF4F4F57AFFB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
Manifest number: 1426
Signing time: Wed 12 Mar 2025 18:00:54 +0000
Manifest this update: Wed 12 Mar 2025 18:00:54 +0000
Manifest next update: Thu 13 Mar 2025 18:00:54 +0000
Files and hashes: 1: X3STT9uNWvgpUT8B2LTGrxoI9k0.roa (hash: LPxXWYECEhYhqhJFZtgmdAjXs7SoH+TOKVHj7gJZDp0=)
2: XlgQVXywZwvJwJM-An6b2CqxVt8.crl (hash: IyHbnsVLvh/7rCXWtM5X0d1W/G2t9dQea0r2Y6RnnK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:40:2b:92:e3:62:fb:95:4f:f4:f4:f5:7a:ff:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5810557cb0670bc9c0933e027e9bd82ab156df
Validity
Not Before: Mar 12 18:00:54 2025 GMT
Not After : Mar 13 18:00:54 2025 GMT
Subject: CN=95c2f37287427e16eb089c5e786e296405756743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cc:1b:24:79:dd:60:b4:45:79:55:de:29:af:
70:3b:f1:5e:da:53:ef:65:13:0b:87:c3:27:7d:4f:
04:bb:be:7c:78:05:c3:83:a5:54:5d:67:3e:b3:af:
0e:b2:1e:a4:6d:bd:5e:53:cc:cd:30:55:5c:f9:26:
d4:60:ff:c6:ae:ba:da:8f:2d:22:82:d3:91:4c:d4:
88:8c:73:bd:46:5c:63:bc:0c:5d:54:f9:df:5d:43:
82:3d:8c:70:c7:d6:48:40:c8:67:5a:6d:55:1e:b7:
17:2d:8a:1f:ff:89:21:b1:15:2a:29:c1:78:b3:5a:
f3:27:35:80:8a:9b:db:fa:5b:12:eb:63:48:01:a6:
98:ee:ca:b0:a2:e2:6d:82:05:f3:90:24:d0:4d:38:
31:b9:44:14:12:bb:b0:11:90:ca:aa:f5:e0:66:b1:
be:ac:02:28:dc:5d:0f:de:e7:a5:7a:af:6b:5c:f0:
52:bc:1f:5d:65:c2:b6:1d:4f:e2:84:25:ec:15:16:
bf:0a:81:a8:87:49:f0:a5:ab:b3:48:3e:a7:7d:00:
76:60:c0:87:89:7c:de:37:f3:02:d0:e6:30:0d:f3:
83:68:a4:88:3c:50:5e:c9:21:0d:ca:21:69:fc:f0:
82:72:3d:d3:40:7b:08:de:9c:51:cc:2c:10:4d:4b:
ed:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:C2:F3:72:87:42:7E:16:EB:08:9C:5E:78:6E:29:64:05:75:67:43
X509v3 Authority Key Identifier:
keyid:5E:58:10:55:7C:B0:67:0B:C9:C0:93:3E:02:7E:9B:D8:2A:B1:56:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:f2:5c:e9:9b:30:01:47:d4:9f:63:76:d9:38:e5:c6:48:32:
46:6f:b6:67:56:89:d9:d3:af:d6:1b:cf:29:92:be:51:e5:f9:
01:d0:c4:8f:84:6f:d8:b7:d8:83:22:20:dc:6f:8b:de:74:a8:
dd:0c:96:04:56:d9:d3:38:05:45:ed:8b:ec:4b:8f:63:33:d0:
81:d6:a3:0a:f2:35:20:e8:01:34:f3:e3:c8:af:7a:66:a4:97:
b5:60:56:cb:79:01:07:ed:02:e9:98:50:13:d9:d8:a6:d5:6d:
20:77:4f:3f:f2:0e:0f:a6:33:fc:90:5a:1e:4d:9c:7b:b4:20:
02:cc:a7:b2:a4:e3:c9:3b:72:e1:27:f9:69:87:63:eb:49:9c:
9e:6a:fb:82:75:3b:b3:11:73:90:ca:8b:de:a9:9a:34:8a:8b:
4b:e0:9c:3a:1c:e0:28:8e:3c:ce:57:f3:d2:6f:a7:0b:d2:80:
4c:c8:66:b0:ce:70:38:38:9a:db:92:3d:43:8a:70:81:73:57:
54:c5:f1:96:92:4f:11:12:1c:03:52:b9:08:d6:af:a4:0e:18:
22:16:84:32:b6:fa:f5:0c:f9:ae:3c:7e:bb:48:a2:f7:d3:fa:
f5:e0:e3:63:80:96:ad:bb:c0:40:6b:77:1f:39:35:88:0e:94:
9c:60:03:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:01 2025 by rpki-client