Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
File: XlgQVXywZwvJwJM-An6b2CqxVt8.mft (raw, json)
Hash identifier: 0ImM/Z+xtDzWFqDj0gCLE09HdV+T2Yt1nKbXKLiFjxU=
Subject key identifier: E1:EC:0F:F6:51:35:23:97:FE:20:9F:06:CB:CA:EF:BD:83:EB:C6:D8
Authority key identifier: 5E:58:10:55:7C:B0:67:0B:C9:C0:93:3E:02:7E:9B:D8:2A:B1:56:DF
Certificate issuer: /CN=5e5810557cb0670bc9c0933e027e9bd82ab156df
Certificate serial: 01965E039E61A3E38F46B807928209BA7EFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
Manifest number: 1493
Signing time: Tue 22 Apr 2025 15:00:17 +0000
Manifest this update: Tue 22 Apr 2025 15:00:17 +0000
Manifest next update: Wed 23 Apr 2025 15:00:17 +0000
Files and hashes: 1: X3STT9uNWvgpUT8B2LTGrxoI9k0.roa (hash: LPxXWYECEhYhqhJFZtgmdAjXs7SoH+TOKVHj7gJZDp0=)
2: XlgQVXywZwvJwJM-An6b2CqxVt8.crl (hash: TLdmm3NxifEvk8G5PTykU68M9DGMI5MQoMyiF1xncCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:03:9e:61:a3:e3:8f:46:b8:07:92:82:09:ba:7e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5810557cb0670bc9c0933e027e9bd82ab156df
Validity
Not Before: Apr 22 15:00:17 2025 GMT
Not After : Apr 23 15:00:17 2025 GMT
Subject: CN=e1ec0ff651352397fe209f06cbcaefbd83ebc6d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:47:ac:49:af:96:54:3c:ed:0c:4f:cb:97:41:
0e:8b:2d:80:af:d7:b2:47:5c:9c:a8:7b:87:34:b3:
b0:0e:2a:e5:2c:01:41:60:ab:f2:22:28:d8:45:a9:
8d:5c:73:56:8a:e7:ec:44:50:45:12:57:1c:ff:9c:
08:e1:eb:f4:f4:34:b3:5a:0d:63:0b:b7:1b:b9:c3:
c2:e2:d1:d1:e0:d5:27:48:2f:db:00:86:a8:8b:30:
06:c3:67:63:0c:94:03:54:25:69:12:e9:bd:d0:a7:
f7:5a:21:20:aa:63:55:75:34:37:d9:71:7f:31:18:
7d:a2:6b:69:79:20:69:67:58:50:25:a4:d1:cf:fe:
7f:d8:f6:4c:58:ce:56:4c:ec:9e:c6:5c:1e:87:b4:
24:80:60:90:82:38:43:e3:c6:b2:ac:01:1d:6b:38:
2c:28:99:fa:4a:21:ee:d1:ef:4c:fd:b8:92:67:fd:
0a:2a:58:3f:62:d0:db:31:1e:d5:39:4d:89:0e:27:
ab:fe:23:53:ed:b9:f7:aa:38:e5:a4:48:57:ec:0f:
99:6e:08:da:14:4f:f7:b8:f1:9a:d6:c8:54:18:a7:
39:16:ea:98:1d:87:1e:49:38:48:00:5e:86:90:91:
59:7d:59:e7:cf:33:e7:c7:ba:d4:db:3b:1a:f6:ea:
26:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:EC:0F:F6:51:35:23:97:FE:20:9F:06:CB:CA:EF:BD:83:EB:C6:D8
X509v3 Authority Key Identifier:
keyid:5E:58:10:55:7C:B0:67:0B:C9:C0:93:3E:02:7E:9B:D8:2A:B1:56:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:e5:c6:e5:21:5e:c1:1a:83:bc:05:3a:b0:ff:8f:8d:10:63:
cd:84:7e:22:b9:a2:27:93:92:44:fa:e1:37:9a:24:4b:2d:78:
44:04:ce:e9:26:bc:bb:86:cb:eb:f5:4b:2e:af:2c:17:a8:ef:
fc:29:37:02:71:9e:bf:94:eb:20:f2:ee:ea:a9:ec:b8:93:e7:
7f:dc:8e:ee:20:29:20:32:69:7c:c4:d8:1c:e6:45:11:62:66:
e8:26:c5:47:70:30:2c:70:96:65:28:26:a7:98:7d:42:d6:1b:
67:67:af:3d:18:90:9f:55:1b:cf:85:1b:45:b1:27:46:ee:14:
a8:26:e1:53:03:75:34:10:d4:e0:a5:15:06:46:b0:63:fb:75:
4f:9c:6d:35:e9:fe:32:27:d5:df:86:61:96:15:21:3f:96:e4:
ec:72:5c:b3:c3:21:41:8a:79:f8:01:7c:1f:00:90:7b:a0:de:
03:48:80:6a:1e:8d:ab:bc:85:86:b4:ac:42:bb:d2:47:9f:70:
45:43:1b:a7:f1:e4:97:53:f4:9e:6a:0f:d3:86:6d:06:1e:eb:
34:59:ef:48:dd:52:1d:4d:3b:79:c2:c4:71:0f:94:07:70:7c:
dd:aa:86:12:32:9f:41:47:49:0a:96:91:81:82:77:b6:5d:77:
20:a9:d5:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:44:30 2025 by rpki-client