Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
File: xafD9LFGk1EiAllaik-VsNa3oQE.mft (raw, json)
Hash identifier: 6RGmAf0kAMOfen5bUA9yfiQw/PQJUqIQf7AaeSCmirc=
Subject key identifier: 26:EE:8B:BA:FE:9D:58:1D:C2:BC:48:08:4E:A4:DB:7F:68:90:CD:E4
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 01968134887B229EDFAB109CFDB1DD490EF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
Manifest number: 14A8
Signing time: Tue 29 Apr 2025 11:00:25 +0000
Manifest this update: Tue 29 Apr 2025 11:00:25 +0000
Manifest next update: Wed 30 Apr 2025 11:00:25 +0000
Files and hashes: 1: Bbxo5GOkMtBPV4eyDiJBtgGCAvs.roa (hash: gPTOZ/QwaGNzYqcGskaYm0Q9CUgsB/kmTCxE6lNVoV8=)
2: GkWtiMh4Kekgq83feCXLfv_pub8.roa (hash: UboiG7GPy5Vm4OyfuuuEVh7hhcZoHsmQQgbXPLJ/4ug=)
3: ScP8kW7fVZKKIlJqtoPhrGG1uQo.roa (hash: kBK8cN2i6ByxK8RJnTQxES9FzgvOd8FoOcnJVY/e4Bc=)
4: xafD9LFGk1EiAllaik-VsNa3oQE.crl (hash: 4EWwzbaAIOD9CkosdnGTvaALPcvXqr3aphLTjIZ7c18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 11:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:34:88:7b:22:9e:df:ab:10:9c:fd:b1:dd:49:0e:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: Apr 29 11:00:25 2025 GMT
Not After : Apr 30 11:00:25 2025 GMT
Subject: CN=26ee8bbafe9d581dc2bc48084ea4db7f6890cde4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:68:3a:92:76:b2:71:d3:8c:ae:bd:de:39:bc:
94:f6:f9:1e:2b:34:53:86:6c:a6:7a:73:c2:cb:21:
17:cc:6a:cd:57:f9:18:fc:72:2c:0b:76:5a:55:85:
4c:e6:c5:8f:83:66:ed:61:72:47:bd:94:85:25:2c:
11:58:86:07:ab:4b:e3:f3:f2:a0:d2:98:46:82:c6:
38:d7:92:5f:fd:25:f1:9a:f0:c9:3b:8a:d0:0b:8e:
af:59:b4:b4:76:fc:04:82:5c:5b:a5:40:b1:11:32:
de:6a:24:0b:12:ac:27:1a:92:ff:64:b4:d7:9c:0c:
90:47:1e:24:5a:b8:68:87:14:b6:ef:5a:30:22:26:
c2:46:48:61:67:b1:01:1e:5b:01:35:9c:36:4d:10:
d6:d8:54:b8:41:ac:0d:71:b5:d9:3a:36:7e:19:b0:
90:50:42:0b:bf:de:7b:09:ab:06:b5:2d:6e:f4:09:
5a:d3:35:5e:7a:d1:7f:53:6d:11:6e:03:1a:98:d8:
47:bb:2d:f7:21:ed:1c:32:c3:07:69:7c:c8:58:f8:
7a:67:62:4e:db:66:e3:bc:89:45:00:73:cd:80:da:
e2:c3:b7:0d:81:ec:bd:9f:f2:6a:8c:64:9c:75:13:
f9:85:f7:cf:be:7b:3c:6b:f9:8a:ba:48:6c:56:53:
66:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:EE:8B:BA:FE:9D:58:1D:C2:BC:48:08:4E:A4:DB:7F:68:90:CD:E4
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:82:ab:f4:5d:2a:c7:95:7b:7c:44:28:f3:c2:ff:85:60:39:
20:a4:da:95:02:95:ed:fe:9b:d5:96:49:fd:db:1c:6e:5e:ea:
a2:aa:ef:e7:cb:13:7d:ce:92:4e:6a:ce:1c:46:d7:5f:d8:72:
67:53:7a:47:fd:1f:18:44:ef:5c:0f:f5:6b:ad:06:d0:53:30:
de:c5:ca:6b:3f:f7:e0:a3:1e:2d:cb:37:76:13:90:ce:df:d3:
ec:8b:de:88:ad:92:38:8d:74:35:35:fc:81:4a:2e:fa:72:ba:
0b:71:67:1d:3b:13:ea:9f:fe:f2:77:29:5e:ec:e6:55:24:35:
43:36:ba:f3:55:f5:9c:3b:ea:7d:13:33:8b:a2:15:7e:43:11:
fe:b1:43:f8:eb:48:44:b4:49:54:80:25:26:6d:a2:5c:cc:7e:
0a:5d:9f:f6:5c:fb:39:4b:21:1d:a0:99:3d:57:73:75:26:2d:
66:ea:46:1b:9e:96:32:b0:e5:44:83:9f:ee:d6:a7:87:f1:ff:
0c:b0:80:8c:4b:c4:af:a9:32:ba:1a:b0:0c:89:20:93:28:d5:
f0:13:03:24:60:bd:0f:28:42:60:6d:b3:8f:8a:4c:24:58:e9:
34:a6:b7:04:65:61:26:f3:38:97:8f:d5:9c:35:d2:18:eb:99:
4d:00:6f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 20:56:50 2025 by rpki-client