Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
File: cxkAeiit4HgdMS2NSUcts2dnBBY.mft (raw, json)
Hash identifier: 1WS3jzhO0RwMJSND3CBrFsU692SfoQl1e3VUnvv8eR0=
Subject key identifier: 6D:66:F4:52:EE:0A:08:C5:CC:E5:66:5A:97:A8:E6:7A:E9:59:44:91
Authority key identifier: 73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
Certificate issuer: /CN=7319007a28ade0781d312d8d49472db367670416
Certificate serial: 01968FCBDA4F8113E6E5CAEE53702307FE96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
Manifest number: 0798
Signing time: Fri 02 May 2025 07:00:23 +0000
Manifest this update: Fri 02 May 2025 07:00:23 +0000
Manifest next update: Sat 03 May 2025 07:00:23 +0000
Files and hashes: 1: cxkAeiit4HgdMS2NSUcts2dnBBY.crl (hash: LWED9mhPa9prgSjc36sYRls7UGHl1ix4vncVcP33Ni8=)
2: rOIGMeXF9bxOY5fu4vCOE7NrCP0.roa (hash: 1nU5+mzZGJaibKrLnnLB5qj48GydY1KP7W2pluR6Ujw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:cb:da:4f:81:13:e6:e5:ca:ee:53:70:23:07:fe:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7319007a28ade0781d312d8d49472db367670416
Validity
Not Before: May 2 07:00:23 2025 GMT
Not After : May 3 07:00:23 2025 GMT
Subject: CN=6d66f452ee0a08c5cce5665a97a8e67ae9594491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f8:a0:9d:0e:95:60:ad:e5:82:c6:4d:77:13:
9e:1a:db:19:6c:7c:81:d1:07:e8:6b:d8:c8:74:40:
59:5d:61:d6:17:a9:3d:41:65:c5:17:00:e6:a0:70:
38:b7:a8:b7:95:1f:13:7e:4f:d5:d7:ba:8e:d8:fc:
88:f3:77:a1:06:5a:de:48:0a:be:ce:d5:28:e7:96:
89:f6:bb:77:44:ac:f6:3e:4e:fa:04:1e:03:58:6e:
8b:de:5f:90:c2:c7:e7:dc:63:bb:96:b6:9b:ad:8d:
d8:68:25:52:03:01:3e:d9:45:a3:92:cf:a0:cd:86:
d5:d7:78:a4:65:96:60:d3:6f:7d:0c:41:37:0a:b5:
74:2e:ad:0b:c5:19:21:ba:75:41:04:3f:13:72:4e:
d5:89:ed:b4:8d:36:c3:09:46:bc:42:64:86:15:92:
a5:2a:fc:a6:71:d3:6c:23:b3:7b:88:b2:2a:a5:45:
3f:9d:79:f5:5c:4c:28:6a:e1:d8:8c:92:7a:6d:0a:
c9:d2:d4:88:6b:a0:d0:6d:51:fd:7e:0e:8b:c0:40:
df:6d:d7:5b:98:d2:4c:1f:fc:1b:db:56:fb:31:d8:
5f:dc:d9:92:54:80:83:70:30:f7:d2:d8:68:dc:46:
35:3b:6f:d4:a0:e9:b7:4e:86:9e:60:35:db:f9:42:
9b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:66:F4:52:EE:0A:08:C5:CC:E5:66:5A:97:A8:E6:7A:E9:59:44:91
X509v3 Authority Key Identifier:
keyid:73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:36:c2:39:0a:81:de:32:aa:9a:04:cb:74:c2:fc:06:b6:7b:
9d:b4:8a:22:1f:d1:58:95:83:ab:bc:37:5e:39:e7:ee:11:1b:
53:f7:0f:19:5d:f6:cc:50:5d:4e:57:0a:dc:96:c0:36:b3:66:
75:78:92:8d:36:7a:99:75:69:08:2b:7a:b1:dc:2e:ef:25:f2:
56:b6:fa:d8:9a:e8:a1:d3:ac:f5:ac:31:5d:b2:db:c2:a3:34:
ff:29:ad:7b:e2:1d:68:75:02:b0:50:47:13:8b:74:9d:3f:5a:
56:21:b2:97:9b:b4:3c:bf:68:81:b3:90:60:b4:47:2a:a5:a0:
ca:39:a1:07:c7:9e:b9:19:8c:c7:56:e7:39:46:e5:a8:5e:58:
c3:e3:47:3f:1f:c1:ce:5b:ad:02:0f:3f:83:fe:f1:06:ed:7f:
7e:17:0f:75:a8:45:4d:96:c4:be:b9:0a:91:37:e5:8d:41:9f:
c0:ea:70:0b:93:9b:84:d0:a5:77:95:3b:fa:50:e6:49:40:24:
a2:b5:39:c6:1a:f6:ce:87:e3:ad:c4:d1:ed:71:f2:f0:08:ae:
47:a1:68:e0:44:74:6f:d7:f1:2c:82:3d:97:9f:7e:9f:fd:0a:
b4:86:49:9a:68:80:35:3b:8f:e7:bd:85:09:4d:aa:8f:0d:8f:
4f:c6:c6:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 14:59:24 2025 by rpki-client