Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: GCDJE8IxrZ4Yg0h4sRb8ThGIZOaCKWdS15/4J9pJpmE=
Subject key identifier: BE:CE:D1:42:EF:99:00:5F:07:9D:8F:E5:8A:4D:FD:B0:2E:90:B8:34
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 01968391A409667C9EA2E4F32F97C9570528
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 1025
Signing time: Tue 29 Apr 2025 22:01:22 +0000
Manifest this update: Tue 29 Apr 2025 22:01:22 +0000
Manifest next update: Wed 30 Apr 2025 22:01:22 +0000
Files and hashes: 1: QGKSiFavp9LMElSoLZBhqzLqFMM.roa (hash: ip/2uYmlI+BKnaF8k1mqNHwsPmNtHEQrk8aTeSCdMUA=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: phSG1A08JlzLmC6PuC3NA+0JyihMMoezgUl0iw8H0a0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 22:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:91:a4:09:66:7c:9e:a2:e4:f3:2f:97:c9:57:05:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Apr 29 22:01:22 2025 GMT
Not After : Apr 30 22:01:22 2025 GMT
Subject: CN=beced142ef99005f079d8fe58a4dfdb02e90b834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:b8:c0:fb:24:85:32:c9:bb:3a:08:ed:49:95:
35:b2:56:d6:85:83:c1:d3:70:03:32:c8:f2:41:cd:
04:c9:e2:29:e8:90:43:6d:d1:22:6e:18:91:1d:ca:
61:0e:fe:d6:4b:97:f6:04:e8:f6:58:88:44:cf:3a:
af:75:ab:e7:6a:8a:56:f2:be:21:5e:3e:21:68:e6:
66:6a:e1:92:74:82:88:72:15:5e:74:7d:de:3a:aa:
a8:3c:0f:de:12:ce:e0:2f:1d:a8:51:15:5a:9a:74:
d4:2a:a4:b5:c6:31:8a:0e:72:8e:96:32:50:87:09:
59:b2:37:7a:f9:44:94:de:cb:f1:ec:3b:46:7b:0f:
e3:bd:85:f5:5d:8f:4a:79:f6:73:dd:46:e6:51:1e:
39:a2:0f:47:6f:a3:34:c1:40:df:55:7f:3b:93:d7:
09:a4:a2:fc:40:a7:0d:82:de:4d:f4:f9:6c:91:f1:
73:f4:a6:17:79:36:80:70:62:85:f1:60:58:82:95:
16:d8:04:7a:c9:d0:2c:b7:e0:37:8a:94:99:9f:bc:
d2:e3:49:95:21:56:99:0e:22:5e:80:69:48:37:ea:
cf:51:5d:ab:02:3e:07:b4:77:f5:ee:7c:f3:1a:2a:
0e:1c:6a:42:a2:0e:ca:b8:00:73:90:dc:c6:a3:b7:
c4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:CE:D1:42:EF:99:00:5F:07:9D:8F:E5:8A:4D:FD:B0:2E:90:B8:34
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:18:ef:93:98:36:23:62:76:7e:b3:c6:9a:52:1e:66:40:71:
79:2c:7a:22:ce:7a:c0:c3:39:99:3c:0f:9c:2a:06:6d:fe:95:
48:87:4f:10:96:fd:49:81:f4:4f:85:d8:7d:1e:87:89:eb:c9:
13:8e:cf:81:fc:fc:3f:a6:70:7c:76:45:48:80:95:c9:99:82:
91:3b:8e:9c:6c:d4:5c:c8:04:eb:77:09:40:3b:30:fa:0c:7a:
36:4e:d6:15:84:47:59:5b:46:53:26:33:ce:d0:af:5c:bd:28:
da:10:d9:25:62:74:fa:05:b3:20:55:be:52:fd:39:7a:3b:34:
2c:2d:95:65:20:d7:41:f0:c0:66:23:df:d1:1e:98:71:7e:c2:
46:7a:2d:97:5b:57:a4:61:7b:50:52:70:d2:75:c3:0d:5c:ef:
5c:bc:a2:67:29:ad:f1:c6:1d:30:0f:53:09:45:5e:df:60:02:
88:12:ea:7c:d8:0d:55:a0:d5:67:71:cd:60:7e:39:94:62:63:
0e:2b:61:2b:19:50:c2:a1:4f:4b:f5:39:66:ca:d3:2e:8c:f9:
a2:5d:76:1e:24:2c:e6:12:e2:fc:f0:b4:7b:c3:41:4a:61:0b:
c9:9a:a8:d2:ac:fa:7b:ea:c4:0f:ae:02:0c:6b:c1:1a:6d:2b:
65:37:3d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 07:36:48 2025 by rpki-client