Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: 7VH70YGfbOMOHBplGsidBlOdKQHdRwRnCGJ6FzC4E2w=
Subject key identifier: B5:0E:0C:0A:E1:86:D1:46:64:C3:C1:19:CD:34:18:B4:12:87:E0:A6
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 0196790D1A60BDBC52BDBA0CE307831785F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 0F0B
Signing time: Sun 27 Apr 2025 21:00:23 +0000
Manifest this update: Sun 27 Apr 2025 21:00:23 +0000
Manifest next update: Mon 28 Apr 2025 21:00:23 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: X5XXMRGSnUfvknGvrM26LlaI7EXzcxaG7/cQfd/gcNM=)
2: yQMt2r0-C951BN6h68fRFJDbCC8.roa (hash: tYqh+1wBm4KwmsyhvHbFDKO/UGyJb2eTnTj9n8iYekw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 21:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:0d:1a:60:bd:bc:52:bd:ba:0c:e3:07:83:17:85:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Apr 27 21:00:23 2025 GMT
Not After : Apr 28 21:00:23 2025 GMT
Subject: CN=b50e0c0ae186d14664c3c119cd3418b41287e0a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:2e:df:ac:ac:9a:02:b0:70:63:62:0c:b0:13:
91:87:8c:aa:b6:7d:f6:5e:58:b7:7a:12:12:37:eb:
a5:45:2b:00:21:21:ee:ec:40:c1:45:58:0d:33:73:
09:8d:cf:cc:74:96:63:94:f9:e0:c2:06:c8:47:20:
56:bc:fe:30:47:32:94:36:36:0d:76:2a:9f:1f:9f:
1d:20:dd:d3:ca:fd:8a:17:c3:ef:c3:ca:a3:c2:aa:
00:26:91:c0:51:fd:81:95:56:3b:6a:86:dc:b4:d2:
95:99:d2:0d:f3:9f:b4:cd:8e:98:47:6e:8b:34:b7:
d3:6a:45:92:28:91:a3:55:0a:ab:9c:f9:67:28:7a:
36:36:06:31:95:44:18:f5:08:f9:1c:c9:63:80:b5:
0f:bc:fe:65:df:ad:56:6e:41:09:91:14:f2:4a:ba:
92:85:a2:17:f8:bb:e0:a7:2b:09:3e:8b:e8:ab:3a:
bb:c8:01:84:49:56:cb:f4:fe:fe:a1:73:a9:cb:f7:
b9:c5:10:73:de:ef:f2:8f:b1:08:9a:08:8e:bb:29:
e2:ba:b5:ed:a5:d2:a2:3f:15:ac:a6:1a:c8:e1:f0:
38:eb:95:15:2d:a1:ca:1a:29:44:1b:ad:66:84:3e:
65:33:7e:03:06:ee:67:cb:71:1f:45:e4:13:0a:aa:
48:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:0E:0C:0A:E1:86:D1:46:64:C3:C1:19:CD:34:18:B4:12:87:E0:A6
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:bb:f4:75:37:15:2d:1b:e2:d3:d7:85:71:8c:44:18:c9:2b:
80:34:c9:68:8b:92:8a:72:b6:20:ff:d6:86:c7:59:d6:f7:38:
20:52:1b:68:de:a0:e7:30:10:c8:00:e8:25:48:d2:de:f2:86:
a4:ea:0c:43:f8:f1:e3:4c:5f:35:21:78:2e:22:6c:23:f5:10:
75:11:d1:7c:cc:c1:a6:54:c6:da:13:20:0f:55:28:1e:32:58:
e2:93:17:05:a8:d2:32:ab:b3:56:f7:b4:68:20:94:02:96:30:
9d:b6:19:b2:75:f7:b8:6b:9e:42:94:c9:d3:6f:2c:aa:4f:33:
0a:da:25:ea:7a:1e:27:ca:2b:ee:ce:2b:77:fc:8b:78:cb:2a:
c2:cf:f8:de:a4:f4:bc:f5:eb:ad:5f:37:61:00:ab:64:8e:87:
86:f2:4c:82:05:a6:e1:09:2c:26:c7:1d:c8:1b:cf:ba:07:29:
52:c7:5f:13:44:ce:1e:d6:13:71:27:a6:bd:2d:56:95:c1:10:
f3:ac:64:7b:53:98:bd:cb:87:4a:a0:9f:bf:1c:af:af:58:ad:
ae:da:84:22:99:9d:81:77:e9:03:d1:14:f1:87:4c:5d:e1:d0:
48:42:8c:89:e8:f2:77:46:ca:9d:ad:01:de:3a:39:07:8d:e8:
e8:89:c6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 06:09:21 2025 by rpki-client