Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
File: XqFlPhd6opVUAIBcjHW9DWhYOvw.mft (raw, json)
Hash identifier: Ozd4FJFaJyJv+IMRjbzwOs/8TX6Q1ri9F7bBkrKVYoA=
Subject key identifier: 80:32:2D:1A:AB:DE:51:38:95:5F:EC:B1:A5:F0:8E:49:72:F6:F1:50
Authority key identifier: 5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC
Certificate issuer: /CN=5ea1653e177aa2955400805c8c75bd0d68583afc
Certificate serial: 01967C0DF3CBA7003A35716FE4A48E2F861E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
Manifest number: 09A2
Signing time: Mon 28 Apr 2025 11:00:11 +0000
Manifest this update: Mon 28 Apr 2025 11:00:11 +0000
Manifest next update: Tue 29 Apr 2025 11:00:11 +0000
Files and hashes: 1: XqFlPhd6opVUAIBcjHW9DWhYOvw.crl (hash: 5p52y4WKc9FFJKgmGDJ62hY4x3+OIc5w3jOQuHiRLD0=)
2: pG0gZB0nkw3GnTji0o-IVbuNrD4.roa (hash: viA8g+053tZ6I/BKlBgt30tnVs0+WwkriBcMwHPLKm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 11:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:0d:f3:cb:a7:00:3a:35:71:6f:e4:a4:8e:2f:86:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ea1653e177aa2955400805c8c75bd0d68583afc
Validity
Not Before: Apr 28 11:00:11 2025 GMT
Not After : Apr 29 11:00:11 2025 GMT
Subject: CN=80322d1aabde5138955fecb1a5f08e4972f6f150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2b:58:a9:24:3f:bc:d5:6d:cf:2e:04:ed:68:
1d:60:5d:f0:c5:d2:d5:e6:24:66:08:d1:2c:21:e3:
26:12:5c:49:8b:50:8b:93:a7:c3:23:41:db:4d:dc:
93:cc:f9:cf:13:15:68:60:a0:e2:47:7b:ad:c7:e0:
82:38:af:16:3f:5e:1a:89:62:7b:40:42:35:f2:bc:
c7:e0:b2:f2:51:b7:66:c3:fa:2a:68:34:ae:a1:f2:
71:ca:aa:b7:14:60:93:91:98:7c:09:37:f2:a4:c8:
1a:25:4b:f2:d5:fb:3c:b4:e4:ee:44:12:13:61:3b:
5d:02:8b:61:75:2c:e4:d3:49:4a:58:26:2c:10:a1:
83:57:ef:ee:19:18:63:67:8c:b2:87:39:95:02:d1:
48:d8:38:fe:13:b4:31:73:39:1f:f1:0c:b8:f7:9e:
fe:40:18:a0:81:a8:10:94:02:ca:3e:6a:87:f4:a0:
dd:42:ee:ce:2f:28:7e:d2:78:89:28:f8:44:06:6b:
ef:be:db:70:b4:a6:d2:84:97:d0:58:d3:51:17:a5:
e0:59:68:89:a7:74:39:f4:28:b0:50:20:05:6b:d0:
35:37:cb:a4:6a:e9:d2:0e:0d:38:ee:c8:7e:91:26:
6a:d9:d6:84:9a:3d:a6:fa:8f:81:e8:5f:c9:22:b9:
43:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:32:2D:1A:AB:DE:51:38:95:5F:EC:B1:A5:F0:8E:49:72:F6:F1:50
X509v3 Authority Key Identifier:
keyid:5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:17:df:ef:77:5e:4e:22:bc:0f:29:51:24:45:48:5a:8e:d9:
4a:15:4b:b6:a8:fe:ca:78:7d:34:8d:3c:36:12:a4:74:0c:bd:
a1:2b:98:ed:69:da:0b:f2:66:30:bf:67:39:f6:a5:dd:78:5d:
3d:cd:74:7e:f7:e4:70:a2:26:30:3b:d4:ab:a3:ef:07:c1:dd:
55:b1:5e:61:df:fb:7d:58:59:59:ab:51:df:b4:88:d1:ce:a8:
b3:63:a4:10:5b:aa:46:9e:46:8b:9b:fe:81:93:b0:04:ea:3c:
ba:65:74:cb:1e:30:00:6f:d5:b3:c3:75:4c:a4:cd:71:52:cf:
c0:52:2f:6f:58:82:32:cb:61:a6:e9:0f:a3:b2:8c:62:b9:47:
cb:4a:31:62:2e:41:89:42:a9:05:fa:5f:83:77:b4:5d:b6:53:
e8:3e:84:ef:5f:b9:e2:63:c5:1e:0f:12:e1:c9:e7:05:45:56:
fe:ce:d2:a1:9e:1e:db:32:7c:5c:d7:23:5a:92:4e:67:23:d2:
6a:2f:57:ed:1b:f2:71:70:a0:f6:2b:66:3b:da:e1:8e:0d:75:
b0:93:d1:0f:c9:1d:e9:7f:41:12:38:dd:6e:76:b0:13:3a:d7:
5a:23:ac:6f:1e:ff:df:e0:36:5a:2a:e9:2f:6f:ea:2b:69:5d:
e1:cf:5c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 19:36:35 2025 by rpki-client