Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: Kffiy6+wTDMNB0IuKaWdd4W5Y34OFPCtadv9x5/dpRM=
Subject key identifier: 41:17:80:2F:B2:BA:22:2E:18:6A:78:3D:5C:4B:EB:01:85:0D:35:DE
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 0196974E6C6E228D0396973A976E0E04329A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 09AA
Signing time: Sat 03 May 2025 18:00:21 +0000
Manifest this update: Sat 03 May 2025 18:00:21 +0000
Manifest next update: Sun 04 May 2025 18:00:21 +0000
Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: lSLf+lzaI3wOWZsZnlopsup6ZFrpwJ9GMesXDwI58l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 18:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:97:4e:6c:6e:22:8d:03:96:97:3a:97:6e:0e:04:32:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: May 3 18:00:21 2025 GMT
Not After : May 4 18:00:21 2025 GMT
Subject: CN=4117802fb2ba222e186a783d5c4beb01850d35de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:89:87:db:2c:2d:78:62:07:c4:2a:89:d6:8d:
65:25:e5:8e:e2:aa:1c:e9:65:36:0a:91:0f:68:6a:
93:9b:6c:78:19:e0:4e:42:cf:d0:0c:a2:84:57:23:
89:2b:87:3f:91:fb:d6:67:84:04:09:cb:59:1f:cd:
44:9c:f6:a2:0b:bc:e5:b9:0e:40:07:f3:43:a5:7c:
e1:bf:16:86:ea:80:9e:3d:65:07:33:05:2f:ab:53:
bb:c1:09:26:7e:d6:b1:0c:c5:5b:59:86:16:3e:a4:
52:76:df:46:f8:bb:6c:ec:27:78:4e:55:13:5b:9e:
ae:3a:76:3e:00:da:b0:20:11:a2:16:58:a6:74:1b:
db:b6:52:10:cd:31:e6:44:68:25:b8:b5:1e:51:79:
a8:26:18:6c:ce:84:e7:0e:56:42:ae:c0:03:4e:67:
7b:fb:02:e1:c5:04:6d:a8:d9:91:dc:99:ff:bd:31:
0b:87:43:84:50:69:8c:b0:c0:02:68:92:a6:4a:d0:
fe:ba:6a:29:fe:20:45:91:08:b8:22:4e:0c:02:9c:
60:f6:5f:61:72:16:50:34:cc:13:89:58:f9:60:57:
07:92:e2:dd:a7:4c:0e:1b:c6:b2:03:c0:1b:6f:1a:
82:14:bb:52:a3:f3:f5:0e:b3:ed:31:b6:60:0b:07:
af:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:17:80:2F:B2:BA:22:2E:18:6A:78:3D:5C:4B:EB:01:85:0D:35:DE
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:f0:50:39:30:74:a0:5e:1d:15:f3:54:e8:1d:84:ae:90:ff:
19:7f:0d:00:89:25:25:d0:ea:81:3f:3f:97:5e:a8:53:65:a0:
83:a3:dd:33:c2:0e:b7:bc:a0:c1:3e:ed:67:bc:c8:08:8d:70:
71:a6:27:59:3e:30:08:40:f0:60:86:ed:ce:af:e4:cc:21:5f:
e9:40:e3:0d:0e:87:a4:eb:a8:b7:f8:ae:52:e2:d9:84:2c:9a:
04:9e:0e:c4:2f:d5:40:cb:c2:0d:de:8c:68:56:6b:0d:81:f2:
f9:2b:3c:fd:8e:66:44:9c:cd:72:78:2b:39:2a:0d:e1:15:fe:
83:b9:10:06:b3:07:ac:8d:97:52:9d:b1:fe:09:0a:13:b6:53:
8b:2f:2b:38:60:1d:1f:57:07:78:40:61:23:bc:5e:9e:ad:b9:
c3:66:43:0a:8f:14:9b:0c:7b:bc:34:c2:7d:5b:a1:3a:40:2c:
ad:37:9a:32:cf:c3:7d:81:e3:ca:04:54:6d:86:74:b5:ff:df:
9a:1a:68:23:9c:e1:18:1e:aa:8f:62:f5:37:e2:07:84:d6:5f:
1b:ea:b7:a1:0a:ee:98:33:5c:65:47:31:2c:a7:bd:b9:76:38:
86:3e:e2:f1:ce:60:cd:22:2c:d6:fe:6b:f0:24:2e:0e:e7:3a:
3a:2d:ff:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 04:37:25 2025 by rpki-client