Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
File: XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft (raw, json)
Hash identifier: ZSedsa7NyaOO+geg1+X8DMSwfx/g3ksNDcXdB7S20Jg=
Subject key identifier: F8:32:90:DA:DF:60:BB:9B:1E:66:28:A7:C6:5E:89:6A:E0:3F:E3:CE
Authority key identifier: 5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
Certificate issuer: /CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Certificate serial: 01962B60882F1DDC843C4413F620E427F96D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
Manifest number: 04FA
Signing time: Sat 12 Apr 2025 19:01:08 +0000
Manifest this update: Sat 12 Apr 2025 19:01:08 +0000
Manifest next update: Sun 13 Apr 2025 19:01:08 +0000
Files and hashes: 1: XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl (hash: Qiz7S79E0FvFB9cMrz49p4eE/o5VJWf7vkWecvyea7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 18:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2b:60:88:2f:1d:dc:84:3c:44:13:f6:20:e4:27:f9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Validity
Not Before: Apr 12 19:01:08 2025 GMT
Not After : Apr 13 19:01:08 2025 GMT
Subject: CN=f83290dadf60bb9b1e6628a7c65e896ae03fe3ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:16:c9:fc:4e:d2:26:53:bb:a3:25:f2:6a:16:
b3:79:59:bd:5b:a8:28:01:55:1d:a5:3b:0e:ed:49:
39:61:63:63:00:1c:ab:2c:eb:86:3a:71:0c:39:d2:
ff:40:9c:d5:ca:c6:f8:17:6d:d6:ef:d9:41:9b:93:
7d:e2:ca:08:5c:9b:a9:29:f8:dc:95:b6:12:c6:50:
49:03:03:ef:4b:ac:7b:73:41:11:b2:60:12:05:96:
37:15:2e:0d:c8:f8:ba:e3:a7:9b:4e:82:c2:0a:b2:
d7:41:be:c5:8b:97:9a:13:9e:9c:8d:55:63:e1:d6:
60:00:3f:17:5f:ca:2c:74:98:39:b3:ed:3b:50:83:
98:f3:0d:0a:71:d0:e3:3a:3a:c8:ac:e1:18:00:bf:
1f:11:ea:96:1a:56:96:14:9b:fe:8d:54:e2:43:d7:
a3:5e:55:d0:02:93:58:8c:f0:1f:78:cb:94:ba:e0:
8d:6d:b8:34:0e:95:ab:18:99:b9:7d:2d:a2:8b:59:
33:80:47:85:6f:f1:8c:7e:f8:48:e4:b3:57:08:53:
bc:72:4e:b6:f1:77:a4:d7:f2:bb:5d:a2:e6:98:0d:
9b:b5:95:0b:8d:9c:1b:88:5b:44:41:79:b2:35:3a:
d1:69:ca:16:ed:2d:6a:e0:b6:33:fa:ab:86:e3:72:
a8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:32:90:DA:DF:60:BB:9B:1E:66:28:A7:C6:5E:89:6A:E0:3F:E3:CE
X509v3 Authority Key Identifier:
keyid:5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:05:f1:8f:c6:60:d5:45:9d:53:f9:53:5b:f1:19:81:f7:ba:
20:03:8e:0c:d8:91:da:3b:a2:80:b4:e7:50:7f:69:f7:cf:52:
a0:92:cb:ab:02:f7:95:84:76:96:46:c8:73:5f:3e:9c:3a:0b:
ce:57:e6:a3:6e:eb:7f:6f:58:17:02:16:ad:b0:56:12:a2:14:
8a:5e:07:2c:ee:c6:bf:86:b2:6e:e1:7f:fe:62:67:a9:8d:6f:
72:62:bd:ea:69:63:cd:f4:d5:27:d0:72:46:1b:21:b9:8f:0c:
38:11:bd:2b:a8:32:64:ae:79:28:74:8c:c2:ed:b8:22:71:77:
c9:93:73:43:b7:b7:24:ca:e2:00:19:98:00:e1:12:db:4d:91:
24:7e:85:f6:99:f7:ad:47:94:54:85:61:ec:4e:0a:f0:51:92:
2d:91:94:f9:b7:3e:63:33:1c:34:37:0f:df:9a:80:12:9e:f7:
3f:00:43:a4:97:cc:81:ab:cc:72:2f:02:c6:b6:0c:86:eb:ac:
f8:b6:c3:8a:bf:6d:d3:68:12:fa:db:23:fd:f8:1c:ec:b8:78:
4c:d8:8e:3e:1b:da:d4:f6:c2:37:64:ad:9c:17:7e:e6:7a:77:
9a:3c:d0:da:35:91:7f:f6:e5:82:3b:de:06:c4:fe:71:2e:d0:
aa:49:3c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:51:20 2025 by rpki-client