Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
File: xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json)
Hash identifier: 49iybiA6nRfO8l3xAuz0ZIL+vNcFo1I7YADlpTITT5g=
Subject key identifier: 15:53:E6:DA:6F:48:A7:9A:B7:79:2E:DF:2B:2F:15:B7:08:58:30:7C
Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
Certificate issuer: /CN=c5bfa71a5113fed82464776c14371514c9218ef5
Certificate serial: 01965048768CDB1407521C6C7B252217B7F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
Manifest number: 0933
Signing time: Sat 19 Apr 2025 23:00:48 +0000
Manifest this update: Sat 19 Apr 2025 23:00:48 +0000
Manifest next update: Sun 20 Apr 2025 23:00:48 +0000
Files and hashes: 1: IzmeYXYlO_xmlW74WeQyL7gffpE.roa (hash: Z5XX/V/bAHCE8fRhzNUzhUtEMOMQ14B1YoCinHSL1lM=)
2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: L8dNkhkqDhwZ8XHLPE9fvsI57kXcj5O4fTn5h97a0yY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:76:8c:db:14:07:52:1c:6c:7b:25:22:17:b7:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5
Validity
Not Before: Apr 19 23:00:48 2025 GMT
Not After : Apr 20 23:00:48 2025 GMT
Subject: CN=1553e6da6f48a79ab7792edf2b2f15b70858307c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6b:e8:8e:00:53:49:88:d1:61:2c:b6:cd:22:
06:50:30:c2:49:42:e0:d1:be:e6:cb:0d:47:7e:87:
63:59:8a:42:18:1a:bb:3f:80:07:57:25:03:91:30:
9d:76:90:e2:42:3c:d5:af:a4:43:a7:cf:ec:09:9a:
05:b1:4f:e1:4c:c1:29:41:16:f4:51:6b:c1:0f:87:
8d:fb:01:2d:e2:70:8d:44:b2:30:49:4e:2f:58:f3:
49:4e:99:32:e6:1d:74:b9:b7:bd:ab:ff:ed:45:cc:
d7:40:7a:8f:92:02:cc:d9:f1:4d:73:b1:bf:1d:28:
3d:73:9d:5a:43:06:d0:f7:ee:23:32:39:98:8d:39:
b7:be:bb:da:8d:f4:9a:4c:ce:bd:15:64:50:a1:71:
a8:91:9e:14:84:4f:56:35:b4:88:85:53:85:fa:d3:
d9:10:49:6e:77:c3:4e:f5:85:c7:71:58:74:11:39:
e1:f6:a9:55:93:0b:6c:0a:92:e0:5d:97:f7:e2:bd:
bb:20:97:a3:9b:14:a3:35:41:cd:fb:68:7e:18:a8:
84:20:3a:b1:0b:89:72:84:36:43:6c:18:51:d3:14:
f6:a4:1f:52:42:73:b8:84:8b:8b:40:c0:ba:48:3d:
16:fd:5a:dd:97:6f:cb:20:25:4e:66:0e:62:eb:7d:
57:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:53:E6:DA:6F:48:A7:9A:B7:79:2E:DF:2B:2F:15:B7:08:58:30:7C
X509v3 Authority Key Identifier:
keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:01:9e:6c:aa:54:e0:65:55:7d:7c:09:ed:88:08:1a:2b:37:
b7:66:8c:52:31:38:61:92:f2:d2:6f:3d:cc:04:14:5d:45:02:
e0:4d:dc:e7:8e:5c:f8:45:85:67:c4:c5:49:3f:dd:5c:38:7c:
7a:fe:26:73:01:4c:6c:71:a0:d2:c6:c7:93:21:8e:c7:e3:92:
b4:96:cc:8e:0d:f7:87:de:fc:f8:43:55:8e:cf:0d:fa:84:27:
6a:ab:4f:a2:3e:1e:33:ac:5e:cf:90:84:b9:d0:2f:2f:77:a1:
4c:62:ce:3b:0b:da:d8:82:f9:f0:a9:58:9a:e7:7b:f7:fd:07:
6f:37:c8:80:76:c9:5a:eb:c3:f8:eb:e0:36:2d:fe:8b:52:6e:
98:07:cf:d8:c8:38:d1:1a:6a:9d:41:15:33:ae:67:61:27:72:
50:c2:c6:33:47:6d:e6:2b:f1:7f:f5:0b:49:70:e3:3c:08:25:
ea:83:67:c9:16:62:d5:9f:f0:fb:53:a4:49:f3:65:fd:26:80:
d3:52:ea:eb:12:7f:c0:42:65:3d:41:53:58:60:ec:6e:b5:a1:
ba:40:fe:c7:0a:56:55:9f:3d:d4:fd:4d:f8:41:c5:cd:57:d5:
77:9c:52:20:01:8f:5a:1c:a9:0f:f3:fd:2a:93:4d:a4:73:03:
e8:02:85:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:11:13 2025 by rpki-client