Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
File: XfEaGA3xeZTkitMxhyz9AK2augQ.mft (raw, json)
Hash identifier: GR3IHnJZ1urKbG9cN7ZP8ZSt0LnKp46fYo8LhqKXng8=
Subject key identifier: 48:17:62:12:40:0D:36:8F:C3:FF:54:51:8A:BE:31:F3:30:E8:1D:CB
Authority key identifier: 5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
Certificate issuer: /CN=5df11a180df17994e48ad331872cfd00ad9aba04
Certificate serial: 01968ADC863E2437270BDEFA1E9E435ABB52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
Manifest number: 151A
Signing time: Thu 01 May 2025 08:00:30 +0000
Manifest this update: Thu 01 May 2025 08:00:30 +0000
Manifest next update: Fri 02 May 2025 08:00:30 +0000
Files and hashes: 1: Ncjyog8MF3WbF2yJkOiT3QGNrY0.roa (hash: mac69omVU5l4vKMkEn8yNVakFQh8bBKDgGibhl+5Pew=)
2: XfEaGA3xeZTkitMxhyz9AK2augQ.crl (hash: ttZ25q5gGIQDD7f5QxrBfQc5k9I5Hkx6l7kJyIgcKWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:dc:86:3e:24:37:27:0b:de:fa:1e:9e:43:5a:bb:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df11a180df17994e48ad331872cfd00ad9aba04
Validity
Not Before: May 1 08:00:30 2025 GMT
Not After : May 2 08:00:30 2025 GMT
Subject: CN=48176212400d368fc3ff54518abe31f330e81dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:53:38:c1:3f:8d:b4:1e:7a:27:16:a3:8a:c8:
8c:7a:a9:b3:5a:5f:a7:5a:ef:48:43:b6:49:2a:8e:
5b:c5:30:28:24:cd:3d:50:a1:3d:21:f6:94:5c:c1:
6b:ae:2e:04:07:eb:75:fb:8f:c4:5f:3a:34:b5:e8:
64:92:b3:4c:af:60:77:f8:a7:b9:20:ba:e4:d0:77:
0e:d7:eb:ea:a3:41:74:50:b9:3f:04:4e:86:9d:d2:
63:21:d8:bd:06:fe:6c:66:72:0a:3a:71:41:d7:75:
33:9b:64:b7:fa:f2:c7:b7:52:fe:ea:b0:47:da:b0:
73:53:6c:9c:04:d0:15:58:b2:59:e1:5c:d1:92:99:
16:0d:a9:52:18:a3:8a:93:32:ab:b8:43:a3:43:ef:
81:61:3a:5e:88:b3:0c:e1:7b:87:05:b6:22:7c:79:
19:d9:7d:b4:bb:46:4d:a4:52:cd:02:33:4b:50:1e:
98:81:f9:cb:9e:57:d7:86:e1:3a:86:5d:b9:a2:21:
14:80:31:5e:c7:18:09:9b:a1:d0:2e:85:dd:d7:be:
a2:4b:c4:df:ae:02:63:ee:ad:be:e8:88:90:dd:fc:
f4:93:d3:a4:13:47:96:e2:67:32:52:13:24:98:7d:
e2:ec:61:e1:77:66:96:fb:7f:17:50:2e:70:bc:c3:
17:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:17:62:12:40:0D:36:8F:C3:FF:54:51:8A:BE:31:F3:30:E8:1D:CB
X509v3 Authority Key Identifier:
keyid:5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:ea:ca:3e:f5:30:f5:e9:28:52:b3:04:58:25:89:88:56:da:
81:7a:b6:93:c5:9b:1c:3e:fa:f0:b7:e2:75:37:15:d8:6e:12:
d1:83:ef:07:54:c4:a0:c3:27:0f:5c:fc:e3:13:a7:6b:bd:ed:
49:02:5a:00:96:29:55:f7:68:13:4e:65:2b:9e:c0:3f:76:8e:
f1:ce:96:82:d2:8b:80:ac:1f:81:ac:77:9a:c8:6e:1c:33:3b:
8e:ec:68:90:e2:67:14:af:51:f7:e4:fa:d5:65:ac:0f:ef:a1:
37:16:64:53:cc:74:ed:0b:25:f2:d2:f1:7c:5f:27:97:7c:3a:
b2:d0:5b:88:67:b6:fe:e5:e3:4f:35:da:2d:df:f6:d8:23:aa:
f4:7e:87:8a:21:0f:03:e7:84:04:28:50:3e:d1:ee:d5:b8:4d:
cb:ac:f3:d2:70:5b:25:24:a0:8e:ff:13:ae:e5:f1:6a:48:50:
7f:44:a8:51:6f:80:7f:36:dd:19:fe:8d:4d:a5:b5:54:a4:f0:
f6:ca:28:d1:77:08:97:fe:93:90:16:89:3e:7c:de:f8:17:23:
1c:e5:63:1e:d8:87:57:e2:0b:a3:1c:e9:f9:b8:cd:85:db:85:
98:ec:cc:19:31:61:6a:58:78:4f:30:9f:1a:a6:31:d6:8a:74:
93:8b:e0:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:14:43 2025 by rpki-client