Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
File: X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft (raw, json)
Hash identifier: D/iMkfbCu5xSyxcnHcWptKeTkUKHrQW3Ql4UCx9k4go=
Subject key identifier: 90:B9:7B:80:69:69:1F:26:FD:77:BF:59:48:89:6F:A3:26:AF:E6:38
Authority key identifier: 5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
Certificate issuer: /CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Certificate serial: 0196760D288B5ADDBE0B0A0E3DA36D70295C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
Manifest number: 150A
Signing time: Sun 27 Apr 2025 07:01:35 +0000
Manifest this update: Sun 27 Apr 2025 07:01:35 +0000
Manifest next update: Mon 28 Apr 2025 07:01:35 +0000
Files and hashes: 1: X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl (hash: fFQjWUndBSuNh84SaUyLnDp94ptP4f7G9XNFUG9nMbM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0d:28:8b:5a:dd:be:0b:0a:0e:3d:a3:6d:70:29:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Validity
Not Before: Apr 27 07:01:35 2025 GMT
Not After : Apr 28 07:01:35 2025 GMT
Subject: CN=90b97b8069691f26fd77bf5948896fa326afe638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8d:d4:4c:d0:8c:01:bf:64:96:3d:c1:8b:71:
8b:ed:f1:46:f2:5b:ed:c4:15:6f:09:b8:ce:3f:15:
fb:8a:bb:c1:b1:77:66:e6:a5:94:d0:02:ed:0c:3c:
68:bf:a8:0d:d3:bd:de:f1:de:17:f3:70:36:7f:c1:
5e:a3:da:94:bd:ae:c7:b3:36:63:dc:6f:d7:7e:80:
6c:f8:89:e9:c3:00:74:92:1c:9c:d9:35:19:3c:08:
01:4e:6e:c1:be:4f:b1:ff:ff:7b:8d:b8:5c:d7:5d:
5c:a3:a8:df:d7:5e:f2:71:97:23:db:bf:48:f9:e6:
5c:51:b2:2f:77:05:4b:92:0b:a5:30:d7:7c:7e:b7:
28:7f:10:59:62:15:26:92:45:97:a6:4c:f5:0d:7a:
be:8f:ec:9c:16:21:cf:20:ea:e7:e2:5c:e3:94:24:
6a:9b:6e:d6:65:9d:4c:6a:ed:f0:a4:c3:6e:1f:7f:
7c:d2:2e:46:b1:2c:4b:2a:69:d4:f6:38:99:42:4d:
45:68:84:89:2e:4f:4c:ad:48:91:f8:63:41:23:34:
36:b4:7e:7d:d9:ad:94:13:b7:20:54:43:61:68:a5:
52:1f:e2:8a:60:90:25:67:ef:7a:31:13:85:62:78:
21:f3:4c:60:f2:1a:e8:3a:57:5e:8c:0d:5e:7c:31:
33:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B9:7B:80:69:69:1F:26:FD:77:BF:59:48:89:6F:A3:26:AF:E6:38
X509v3 Authority Key Identifier:
keyid:5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:36:8b:cd:1d:87:d5:fa:86:6d:c5:af:d0:69:46:61:da:27:
35:09:1e:6d:8e:25:b7:71:06:94:63:51:df:50:ea:b8:d4:5d:
bd:8d:69:90:81:d2:71:5c:a0:f3:ce:70:31:a9:d3:33:d9:4e:
b1:15:80:31:57:28:ef:3f:c7:c9:82:c5:b1:a4:cc:cf:62:d0:
28:13:f8:0e:d4:21:1d:02:9c:60:97:06:e5:71:87:fa:50:c1:
65:d1:00:f9:30:d2:dd:03:94:c1:4a:8b:4f:62:e2:2e:c3:95:
46:29:e1:b9:33:c7:b8:51:90:51:57:f3:b9:a0:3d:52:bf:7b:
4f:41:15:0c:da:f0:74:57:44:ac:34:72:67:7e:e8:87:5c:55:
f1:b5:0d:99:9c:ae:7a:56:03:e8:9a:ee:6e:44:57:74:79:f6:
01:62:ee:5b:8d:0f:f4:ec:1c:7a:35:cb:f6:e2:d1:45:27:16:
8c:2d:cf:f3:42:08:8c:d1:37:e7:51:15:bd:24:2f:3b:f2:8a:
78:e1:0d:74:c9:32:89:63:5d:fa:9b:38:1a:79:42:37:58:9d:
2c:4f:2f:b8:fa:ac:d1:57:f2:d7:a7:6c:c4:c0:a0:0c:f7:26:
18:59:59:89:53:56:fa:cd:86:92:63:23:da:66:29:a5:63:6c:
86:57:59:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:55:15 2025 by rpki-client