Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: znd72PXfejPdQqBavq4hKMdahNv2gZXrky0dPP2XtWI=
Subject key identifier: CB:0A:DA:7A:82:AE:0A:84:B4:B1:8B:7E:CC:F9:9F:B3:42:67:D9:EE
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 01967BA050ED2CE54DA9909E9832E0E8248A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 1256
Signing time: Mon 28 Apr 2025 09:00:26 +0000
Manifest this update: Mon 28 Apr 2025 09:00:26 +0000
Manifest next update: Tue 29 Apr 2025 09:00:26 +0000
Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: yhvLmi3FXPnjS+JdYZuo6AUyeAm30qrwPFgeiiBp9f0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:a0:50:ed:2c:e5:4d:a9:90:9e:98:32:e0:e8:24:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Apr 28 09:00:26 2025 GMT
Not After : Apr 29 09:00:26 2025 GMT
Subject: CN=cb0ada7a82ae0a84b4b18b7eccf99fb34267d9ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:69:48:32:44:ce:95:eb:79:ad:f7:b4:eb:fa:
6e:3d:9f:0e:76:0a:a5:2c:49:54:5b:f9:83:02:5d:
36:ff:f6:85:a0:f8:28:bd:bf:26:49:74:7c:f7:21:
95:6c:95:38:19:80:63:b5:e9:c1:7e:5a:82:25:d9:
58:af:32:4a:38:bc:2b:7f:82:48:f3:fd:69:b8:ef:
bf:23:c1:f7:48:d3:d1:43:50:b4:23:20:01:90:f0:
8d:89:9b:f3:74:3e:c7:8b:82:cb:5e:2c:5d:54:59:
95:9c:3d:dd:41:66:4e:c3:f6:e8:e9:78:74:ee:6f:
60:b4:2c:90:74:c3:3d:9d:c0:95:9c:c2:18:69:92:
f6:e6:12:6f:7e:35:4e:a4:24:65:9d:aa:3f:09:b9:
ee:f3:a3:f4:84:84:c9:ab:97:d0:4d:68:5f:6f:4b:
28:a7:a3:d7:1f:dd:60:23:73:70:1d:32:af:ed:3f:
d1:91:cb:63:13:55:2e:b6:9b:dd:8b:c2:27:89:75:
13:f7:10:24:f8:3a:59:2e:bc:e0:6c:f1:55:10:11:
cf:bc:d1:6e:16:c2:77:50:12:db:f9:c0:64:da:d2:
49:fc:d5:c9:f5:d2:63:c6:ee:0a:ee:7b:77:5b:9e:
61:ae:5e:ba:4c:f0:f2:82:35:ce:ac:4f:eb:ae:7c:
0c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0A:DA:7A:82:AE:0A:84:B4:B1:8B:7E:CC:F9:9F:B3:42:67:D9:EE
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:fe:40:33:47:97:2a:01:3c:b1:8c:f3:04:0c:8d:ef:35:2b:
69:de:71:a6:03:9c:59:c3:c1:9f:a0:c9:6a:5a:d2:c1:b6:a9:
1a:90:d8:c2:e2:c4:fa:0c:ef:1e:4e:dd:5f:fd:19:d6:8f:e4:
88:ad:39:d3:68:d4:9e:59:c4:92:a3:53:5a:fa:6b:58:66:90:
4c:96:e6:3f:04:3b:43:53:02:4b:f4:e3:f6:7f:cf:cd:09:18:
24:24:57:6b:57:fc:9a:35:c9:9a:d7:25:e0:69:22:77:e3:30:
ee:f0:f4:cb:1b:2c:96:07:88:c4:97:29:4c:09:dd:21:bc:e5:
27:db:56:03:8f:7c:24:a7:fe:93:3e:8c:65:df:da:bd:ab:78:
c9:f8:b5:c5:28:42:dc:60:3a:a3:49:56:cc:46:34:e0:74:d7:
d0:cc:dc:8b:0b:2e:67:a1:31:08:b6:d1:25:8b:6c:02:61:f4:
7a:a6:8b:93:be:55:be:17:cc:32:78:18:2f:47:ea:5a:34:12:
92:2b:c4:db:07:d0:8d:fd:8e:65:99:55:5c:80:ed:bc:ea:c3:
49:93:75:54:56:75:36:06:7c:a8:13:8b:fe:89:74:21:0a:69:
0a:df:36:a0:4f:8e:6f:f1:a2:5b:f6:df:a4:87:15:bc:e2:7d:
ef:68:2f:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 11:50:29 2025 by rpki-client