Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
File: xaL0JAfyHJ12kPsw_YzbK_320DA.mft (raw, json)
Hash identifier: WIffS80L2eyVuni1ZSyEYHRyivwGIklu/75EExwTQuo=
Subject key identifier: F4:C2:26:26:2A:57:6A:05:BD:A0:39:43:AF:E4:54:F2:94:27:43:82
Authority key identifier: C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
Certificate issuer: /CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Certificate serial: 0196827E433AA0D95B14F5D7E85889CD6FB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
Manifest number: 1528
Signing time: Tue 29 Apr 2025 17:00:34 +0000
Manifest this update: Tue 29 Apr 2025 17:00:34 +0000
Manifest next update: Wed 30 Apr 2025 17:00:34 +0000
Files and hashes: 1: kvgwT2CIxiAz0KGy17PsocByagw.roa (hash: uswWYZe8p+8Gmx/n8zkQaGQ6Q2+Rru2JGoDveoK/xUw=)
2: xaL0JAfyHJ12kPsw_YzbK_320DA.crl (hash: UUvV0WYfjwVi5jnepoRhXLYooBPrNt9fa1AF2ZEBplY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:7e:43:3a:a0:d9:5b:14:f5:d7:e8:58:89:cd:6f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Validity
Not Before: Apr 29 17:00:34 2025 GMT
Not After : Apr 30 17:00:34 2025 GMT
Subject: CN=f4c226262a576a05bda03943afe454f294274382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7d:a2:00:17:24:28:66:a1:20:43:b6:e3:68:
f6:aa:95:15:b9:38:f4:4f:b7:3d:e0:3f:c8:8b:da:
50:a3:fe:17:88:45:15:dc:f7:65:8d:fb:74:ee:3a:
ed:f8:d3:3e:b0:c3:04:81:91:1f:5e:ae:5d:ad:fc:
a0:90:62:05:d2:c1:7e:40:08:1c:ad:d4:13:cd:fc:
6e:30:30:a5:e6:f1:40:f8:d4:69:d0:3a:ea:7d:ac:
e8:62:2a:bc:ba:55:42:ad:22:63:75:f8:aa:3b:b2:
20:59:63:08:88:d1:7b:80:54:03:18:33:d3:20:c3:
91:15:13:ee:03:a2:b6:58:59:3c:87:3c:3e:dc:45:
12:6f:6e:75:3a:49:b8:01:46:6b:76:49:47:99:47:
5c:4d:75:be:f4:67:77:ff:ff:74:a2:21:7d:69:ec:
61:fd:2b:d9:24:e2:41:63:68:bf:a7:31:d5:c8:92:
c7:25:6c:7c:69:ee:b7:04:22:4b:24:ea:43:81:cc:
26:bf:65:ef:74:26:9f:4b:49:8e:16:52:4b:f8:8e:
1c:d9:f8:22:1d:c0:34:22:05:8c:6c:27:80:89:06:
0f:69:0f:66:98:aa:3d:54:7d:11:14:c0:cf:2a:05:
fb:81:7e:42:f6:1f:a4:19:87:d3:9f:81:dc:75:d2:
09:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:C2:26:26:2A:57:6A:05:BD:A0:39:43:AF:E4:54:F2:94:27:43:82
X509v3 Authority Key Identifier:
keyid:C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:22:09:03:69:41:77:50:fe:d6:13:2f:ee:75:e6:06:b6:7d:
e8:ae:f7:04:7a:9b:ed:7c:12:bf:fb:32:66:d2:e4:34:a0:10:
a0:04:7f:e1:f8:02:1f:b7:a7:1d:8c:35:9d:58:3a:49:44:86:
a2:d9:f2:df:be:ab:b5:92:e4:28:e2:76:a4:a6:9d:4e:16:52:
ff:96:a5:c5:4f:83:b3:85:6b:91:91:eb:95:d8:46:b1:7f:21:
93:32:b0:c0:52:a7:e3:9f:f6:55:35:12:61:19:11:b4:bb:93:
06:8a:1a:e4:2b:33:c4:63:d7:c1:78:06:c5:6c:53:41:5e:0e:
76:47:8b:35:9a:a7:4f:e4:b5:76:ff:a9:ce:60:bd:52:fa:24:
6d:6b:71:6e:e8:47:a8:e4:47:54:70:bd:f2:0e:56:93:52:c1:
69:40:1f:58:60:52:05:22:0d:1c:65:cf:84:27:6c:cd:f0:b2:
a4:bf:46:fd:13:46:9d:42:5d:7f:50:f0:39:fb:f4:61:71:cd:
b0:84:fd:78:64:23:24:61:4e:c9:0e:2c:06:b0:97:44:9d:f2:
09:68:13:4d:a3:f7:18:d7:6e:cf:b1:8f:f6:0c:28:94:3a:41:
7d:30:b4:81:92:54:0c:09:54:d3:7c:78:54:a3:7f:9d:7f:c1:
58:fe:83:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:05:29 2025 by rpki-client