Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json)
Hash identifier: yotieyOaOaHgDYVW0PBWSzYfESKlY7BqGYCFUuGfCw4=
Subject key identifier: E0:72:14:89:E1:C2:AB:62:67:55:9C:07:40:09:12:2D:86:FF:74:94
Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d
Certificate serial: 019674C274CB5E0A51EC405C7C9E7F99F15F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
Manifest number: 112E
Signing time: Sun 27 Apr 2025 01:00:22 +0000
Manifest this update: Sun 27 Apr 2025 01:00:22 +0000
Manifest next update: Mon 28 Apr 2025 01:00:22 +0000
Files and hashes: 1: Bu2qohV5DT207In6bmDkzPkl22w.roa (hash: yQgjgxJo0jD6Zb5Cbl39m04H6+9TPpDsNpPjtFWzK98=)
2: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: TFvid+DFZR5XS1Ynuzj03eSiY3pGq66CyIZ2EI7HfaE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 01:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:c2:74:cb:5e:0a:51:ec:40:5c:7c:9e:7f:99:f1:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d
Validity
Not Before: Apr 27 01:00:22 2025 GMT
Not After : Apr 28 01:00:22 2025 GMT
Subject: CN=e0721489e1c2ab6267559c074009122d86ff7494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1d:b0:12:46:e8:0c:cc:02:9b:8f:b2:8c:aa:
32:3c:e0:71:69:c1:34:8f:40:b3:1a:75:65:da:95:
92:67:32:37:30:78:cb:af:9e:22:05:bb:9f:5c:14:
c6:88:7b:da:60:61:00:8f:6e:9c:9b:4d:ff:c9:e5:
50:e2:31:9f:d6:93:34:2e:5d:99:c9:7c:a5:1f:66:
bc:c7:95:a7:9a:d1:a1:e2:ae:a8:92:29:b5:9c:95:
a8:a8:f9:c4:7c:d5:4b:27:1a:39:60:83:20:42:f5:
30:48:e7:81:42:22:cc:a4:21:69:f3:db:93:77:cd:
7c:17:df:c5:d8:d6:64:8c:b4:7d:07:64:da:d4:67:
af:1b:71:82:7d:a4:1d:c6:22:98:3f:a7:d9:6e:d3:
9b:2d:cf:44:81:75:f2:e5:b7:9f:8b:d1:2c:b6:31:
b3:ef:50:51:73:7b:56:fe:fe:3b:99:ef:59:4c:b7:
2b:8e:1c:95:13:cd:70:0e:f9:59:1a:39:13:29:f2:
a1:99:1b:7a:06:95:ee:2a:01:fc:56:c6:f9:a7:bd:
70:f4:e4:06:27:e3:1a:27:ea:41:5d:c0:6f:30:28:
39:4a:e7:70:a6:4d:bd:a8:90:7c:88:a8:e1:46:62:
dc:58:61:4b:de:79:55:9b:20:ac:0a:63:20:9a:bc:
1e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:72:14:89:E1:C2:AB:62:67:55:9C:07:40:09:12:2D:86:FF:74:94
X509v3 Authority Key Identifier:
keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:1f:78:53:f8:ad:78:10:54:2a:57:da:6d:03:af:5d:17:af:
2e:17:8a:29:d2:39:cf:a7:b4:31:05:2a:03:bd:46:d2:37:c2:
8f:65:97:14:19:4b:56:0d:43:95:13:a6:44:81:b2:cb:e5:90:
a2:3c:0a:22:2b:a8:b9:53:29:b9:c4:be:40:e9:3e:2b:08:ed:
91:ae:fc:a5:7d:d4:32:52:36:57:74:c2:00:9e:85:d6:fa:c3:
44:a6:3a:e1:39:43:f4:7e:c8:72:b4:bb:de:96:c3:46:34:1c:
20:b0:61:b9:e6:5c:9c:69:6d:24:3e:f3:e8:66:98:af:35:80:
d4:46:da:67:17:70:95:25:b3:67:b2:69:18:86:81:98:5f:44:
0d:b4:63:aa:b1:50:22:d1:61:e1:9c:6b:d5:96:6d:7c:6a:64:
71:d2:32:72:9c:07:55:be:be:06:00:ed:f1:ab:51:a5:7d:77:
c4:12:1f:c8:7b:48:00:ad:ee:ae:27:7f:28:7c:cd:73:04:26:
3f:88:f0:e5:37:18:92:db:3c:1a:c4:05:34:f1:62:0e:cb:2e:
74:dd:51:a6:f5:90:8f:3d:5a:98:be:f7:39:2a:dc:10:dc:b9:
cb:89:76:a8:3e:56:32:a7:bf:83:7f:d6:5a:f7:d0:c7:87:e2:
39:c1:4c:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:12:15 2025 by rpki-client