Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
File: x0HESpzVjhJWkGY32TXDGQ9_6xo.mft (raw, json)
Hash identifier: gGOi2M3pyVDzlB6qr8HnuabNUfzsAZqJHS4q7kmSVaQ=
Subject key identifier: 59:C0:77:0A:82:5F:F8:12:EB:63:69:EB:5F:8C:95:67:2F:84:02:EF
Authority key identifier: C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
Certificate issuer: /CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Certificate serial: 0196759E5639A7D739308FB709741F35DAB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
Manifest number: 12B0
Signing time: Sun 27 Apr 2025 05:00:32 +0000
Manifest this update: Sun 27 Apr 2025 05:00:32 +0000
Manifest next update: Mon 28 Apr 2025 05:00:32 +0000
Files and hashes: 1: qptSZ2XpOAOxaz7moTgQi3lsLeM.roa (hash: KtrtO/sBSgHAN1gAhTfDKw+KYUTZI/b5RNJ8EjfK/UU=)
2: x0HESpzVjhJWkGY32TXDGQ9_6xo.crl (hash: jtXjZiGKSqxql0xSKdCsdYfGcYkTQ7oSe58FGi7bg90=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:56:39:a7:d7:39:30:8f:b7:09:74:1f:35:da:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Validity
Not Before: Apr 27 05:00:32 2025 GMT
Not After : Apr 28 05:00:32 2025 GMT
Subject: CN=59c0770a825ff812eb6369eb5f8c95672f8402ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:91:a2:c4:4b:8b:56:0d:c1:d0:87:d3:6f:d1:
be:b4:47:e5:bb:0e:b2:dd:26:4f:90:85:00:ac:23:
01:1b:08:9c:35:f8:1a:7e:d6:73:69:d4:45:af:22:
2d:e0:bc:75:d2:12:3a:d9:10:85:ce:b8:ef:f0:88:
64:40:12:2e:b0:42:cb:35:66:5d:5d:df:d9:30:3b:
e5:b3:31:df:5f:3d:74:82:3d:54:b5:34:27:06:65:
c2:fc:37:03:10:29:98:68:97:a3:52:24:1e:13:6a:
3f:74:c9:91:73:2e:28:81:e5:2e:0b:b2:3f:53:b6:
63:b4:56:7a:27:71:78:68:18:fb:8f:a4:03:eb:e1:
6c:f7:57:c7:c5:f3:f5:a9:55:1a:93:88:5e:d7:a9:
49:48:30:87:9e:18:65:0d:fd:b9:93:ce:9f:51:7b:
95:96:59:38:81:3e:5e:19:28:fe:ad:3a:5e:65:b2:
10:88:c9:8b:0b:f1:97:ea:4c:3c:ca:80:af:dd:6c:
36:fd:be:d6:5c:30:ba:6c:07:42:f6:4b:70:75:e6:
66:09:e4:49:24:6e:1e:ee:02:e9:fe:e9:ac:8a:ac:
d6:23:06:d3:ca:75:2b:9a:f6:ce:8b:a5:99:60:6e:
6a:7a:a9:0b:62:6c:d4:bd:6a:77:c8:eb:b8:21:a1:
c9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C0:77:0A:82:5F:F8:12:EB:63:69:EB:5F:8C:95:67:2F:84:02:EF
X509v3 Authority Key Identifier:
keyid:C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:d4:6b:5a:8d:af:23:41:ab:28:26:56:d8:87:54:e1:93:17:
ee:33:d4:89:03:78:96:b1:ac:8c:bb:0c:82:0f:e2:79:0c:d6:
7f:65:57:66:d5:75:d7:6b:c3:47:b2:8b:32:26:c6:5b:c5:01:
01:15:a5:ef:d4:f7:5d:75:0f:7d:4a:8a:df:69:47:36:23:c6:
f8:b9:da:23:72:ae:f7:ca:aa:2e:ed:80:03:82:d4:3e:9f:75:
8f:c5:79:cd:1f:d0:cf:f4:5e:40:e0:ec:8c:c2:c0:fe:01:6a:
5c:d6:7b:c6:d2:bd:92:ff:ac:3a:7e:9f:95:66:c5:d8:bf:63:
19:06:a0:47:b3:9c:3b:d4:ba:89:67:35:bf:ca:44:5e:89:26:
09:88:cc:4f:64:84:bd:c6:5c:23:5c:3c:41:19:2e:54:28:50:
05:e7:2b:10:ab:57:9a:ae:b5:64:26:c8:fb:78:26:65:37:b4:
c7:c1:03:5a:3d:02:d1:1e:8c:b2:69:b1:12:d0:90:91:42:0e:
d1:bb:4a:5d:b2:13:20:85:6d:be:b4:59:38:49:f1:64:65:fb:
28:a9:45:c0:29:74:6c:f2:62:73:42:48:bf:fa:64:ec:d8:bc:
93:59:13:1d:e0:51:5a:e4:63:80:d0:83:89:92:eb:1d:2e:f7:
ac:62:e2:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:49:52 2025 by rpki-client