Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
File: xcidUmDLNP27s7wlv0rbr0zcaKA.mft (raw, json)
Hash identifier: zWrB3cZoBTnotnIswxd1wWTgK31xh8nqgJ6xBYpagsg=
Subject key identifier: 90:FA:10:BD:5B:95:96:C2:AC:45:D2:8A:1E:3A:06:6A:16:04:0C:82
Authority key identifier: C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0
Certificate issuer: /CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0
Certificate serial: 019645C49128B809B5225DF48B5D2684D36D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
Manifest number: 04B2
Signing time: Thu 17 Apr 2025 22:00:31 +0000
Manifest this update: Thu 17 Apr 2025 22:00:31 +0000
Manifest next update: Fri 18 Apr 2025 22:00:31 +0000
Files and hashes: 1: xcidUmDLNP27s7wlv0rbr0zcaKA.crl (hash: 41ug+RD7Ifef+/yRy3vrE1wxwgK9dTz3leqbNrlWxW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:c4:91:28:b8:09:b5:22:5d:f4:8b:5d:26:84:d3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0
Validity
Not Before: Apr 17 22:00:31 2025 GMT
Not After : Apr 18 22:00:31 2025 GMT
Subject: CN=90fa10bd5b9596c2ac45d28a1e3a066a16040c82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bb:c2:46:1c:99:fb:87:4d:25:9b:70:ac:83:
79:5c:94:12:f8:b7:3b:19:ed:b2:da:ad:de:05:e8:
b8:3e:11:ca:db:7f:30:fa:fe:96:e3:6b:5e:5e:3f:
46:24:41:ca:3f:d8:0f:5a:36:af:f8:9b:72:2e:ff:
66:da:cc:b4:09:eb:44:b3:46:23:f5:40:13:f0:81:
a1:5b:47:fe:37:3a:46:d9:35:c9:0d:9a:76:23:43:
86:2d:d3:1c:38:5b:7f:71:a7:6d:10:4f:8e:3c:c0:
ca:13:2f:c7:e2:06:69:1e:88:f0:6f:57:78:3c:c9:
53:cc:e0:d9:6e:c5:d5:b0:c1:46:de:38:5f:c3:00:
70:55:50:34:27:62:47:ef:bb:22:7a:f0:1e:19:08:
54:ab:3f:5b:25:25:8f:94:26:be:d9:64:ab:3b:0e:
72:a2:07:eb:1a:a9:00:34:37:11:72:49:23:72:28:
39:74:ff:8b:d7:10:e6:e0:e7:2e:f0:bf:15:df:7e:
a5:d8:3b:1b:83:b9:8c:ed:60:22:fb:47:21:31:47:
a5:0f:e3:56:a3:81:07:35:f0:1f:eb:52:2d:87:78:
b5:68:84:ab:13:e1:fa:ed:95:2b:d3:26:b6:77:6c:
14:7f:2b:06:41:2e:61:75:84:bd:d4:f2:37:1f:4e:
e8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FA:10:BD:5B:95:96:C2:AC:45:D2:8A:1E:3A:06:6A:16:04:0C:82
X509v3 Authority Key Identifier:
keyid:C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:73:c5:16:7d:ef:4e:48:0c:00:b7:74:5a:69:33:da:ab:c0:
85:90:98:a3:fb:92:b3:35:8b:00:af:e7:0a:45:84:36:a6:4a:
e8:18:ec:f8:45:c9:11:0e:40:8b:6f:40:55:e3:f1:04:a8:94:
81:e1:44:e3:82:fa:5a:f0:32:a7:f9:05:fb:06:4a:90:dd:bb:
f7:fa:6f:63:9e:5b:26:af:ff:8b:26:1d:8a:19:cc:d7:e3:96:
3e:71:40:6a:c1:a5:cc:2a:c7:9a:02:8c:b3:56:2d:62:fb:1d:
2f:b8:5f:f3:53:a9:3d:a1:6c:c5:96:ad:bb:b2:b1:96:bc:93:
91:00:75:27:17:2a:8a:77:f1:78:2f:55:38:45:47:eb:51:3e:
2c:00:ae:40:0c:b9:18:73:8d:a1:9e:ae:41:e4:be:b6:ba:63:
96:46:72:f0:9a:be:b8:41:32:9e:6e:95:ec:5c:d9:b9:85:1b:
42:22:64:df:c7:38:84:c0:8f:7f:1c:6f:22:e2:45:eb:62:cc:
49:1f:f9:e3:6e:a0:75:1e:9c:88:63:a6:0d:bc:e5:7b:02:21:
17:27:1c:15:81:4c:b5:c6:b1:5f:ba:90:10:31:e6:b3:2a:48:
84:ca:38:a1:c3:65:30:6b:af:2d:21:2c:33:49:9c:57:d2:7f:
20:67:2b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 06:53:51 2025 by rpki-client