Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
File: xddsGvj60uvGNOouIzcPEMXFnQs.mft (raw, json)
Hash identifier: /0KcXXMouU6r8FLGmV6DgyY1QUn3K29oV+oAUAmnLP0=
Subject key identifier: 05:26:F4:D7:F5:3D:9C:D8:C9:7C:60:48:80:DE:82:04:A6:99:E7:35
Authority key identifier: C5:D7:6C:1A:F8:FA:D2:EB:C6:34:EA:2E:23:37:0F:10:C5:C5:9D:0B
Certificate issuer: /CN=c5d76c1af8fad2ebc634ea2e23370f10c5c59d0b
Certificate serial: 01967C45943C5070A3D674C61A7C70E8B00E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xddsGvj60uvGNOouIzcPEMXFnQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
Manifest number: 0448
Signing time: Mon 28 Apr 2025 12:00:56 +0000
Manifest this update: Mon 28 Apr 2025 12:00:56 +0000
Manifest next update: Tue 29 Apr 2025 12:00:56 +0000
Files and hashes: 1: Acbly_fCXeuRyFDFzZjmCcQPl8U.roa (hash: 97l8f98tI95Opzr22XniXOh4lBsa/Ac1EBZZQOTU4Lo=)
2: xddsGvj60uvGNOouIzcPEMXFnQs.crl (hash: beD7TxoMT2s8zub+oHClYMn8fARQOgVQGnCrmqkVRho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xddsGvj60uvGNOouIzcPEMXFnQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 12:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:45:94:3c:50:70:a3:d6:74:c6:1a:7c:70:e8:b0:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d76c1af8fad2ebc634ea2e23370f10c5c59d0b
Validity
Not Before: Apr 28 12:00:56 2025 GMT
Not After : Apr 29 12:00:56 2025 GMT
Subject: CN=0526f4d7f53d9cd8c97c604880de8204a699e735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b7:19:ed:43:0d:b1:4f:66:13:86:6f:42:a2:
6b:a0:64:0e:1f:46:93:60:de:80:04:a8:cb:35:8d:
d5:ec:e3:08:9d:0a:78:aa:53:05:02:78:bb:29:0f:
0a:e6:fe:49:63:1d:b5:82:b9:9f:13:d5:e5:33:13:
be:d2:08:8d:af:a3:9f:a9:05:0c:79:a6:ab:f3:ac:
3b:fd:34:19:2f:30:63:15:3f:68:a9:36:22:39:37:
9f:b0:90:c2:d7:ee:51:30:e5:41:a6:ea:f4:20:ec:
00:e9:b0:d1:8d:40:43:c3:46:93:1b:77:a7:a7:93:
8f:63:c7:67:e0:52:83:ce:0b:20:19:93:0e:0a:32:
c2:1c:6e:c8:06:98:09:64:7e:99:be:82:50:96:de:
2a:35:76:77:45:9d:78:f2:3e:77:e3:b5:99:6d:da:
59:0f:2a:a3:06:ae:2a:92:8e:95:5e:2b:8f:6b:d0:
93:7e:84:28:06:e4:68:54:7b:9a:3e:24:d3:09:37:
ae:6c:7b:77:a8:d7:82:81:fe:34:f4:97:ca:00:c5:
45:17:98:b1:e7:fa:4f:9b:2f:10:ad:bc:7a:d2:d0:
1b:69:6b:cc:de:2c:ca:6d:7c:d2:ee:c6:b1:e1:1e:
bf:76:d7:9e:7c:70:f7:99:82:92:45:44:0e:e9:3f:
9a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:26:F4:D7:F5:3D:9C:D8:C9:7C:60:48:80:DE:82:04:A6:99:E7:35
X509v3 Authority Key Identifier:
keyid:C5:D7:6C:1A:F8:FA:D2:EB:C6:34:EA:2E:23:37:0F:10:C5:C5:9D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xddsGvj60uvGNOouIzcPEMXFnQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:d6:6b:ff:ab:b6:26:be:3f:88:ce:9e:d6:00:e6:ed:70:52:
24:22:8f:21:54:b5:b2:e6:56:86:1e:01:77:94:73:08:b6:ab:
8d:1b:7f:14:71:50:99:a1:9f:87:d3:8b:13:bc:2b:c0:4c:80:
60:61:08:aa:7f:0a:0e:fa:2c:43:89:cc:a4:6b:41:85:fb:4e:
5a:ac:36:19:a5:50:31:92:4b:3f:43:82:2a:2a:df:96:82:4c:
3a:37:17:6f:94:3e:2e:c3:7c:6e:eb:20:21:77:12:c2:8f:db:
54:da:71:63:f3:04:64:42:6e:ec:53:12:03:20:21:f4:c3:87:
3f:bf:94:22:67:92:43:e4:31:45:e7:01:47:1f:64:25:6d:80:
e0:8b:b3:7e:5d:8b:19:e8:34:f4:45:37:6f:2d:89:df:0e:c7:
6e:fe:5c:5e:98:a5:f0:97:e7:12:99:44:c0:33:c3:e1:ff:65:
ef:4c:42:96:92:db:b6:4f:75:5b:aa:55:c9:96:be:0e:cd:57:
dc:00:15:11:9a:b7:99:70:ca:69:ea:bb:3a:3b:e6:b8:8c:5a:
b3:1c:8b:d3:fa:a3:eb:3a:ed:13:58:5d:60:18:b4:7a:ab:69:
f5:2d:80:4b:b5:48:4f:89:85:58:66:15:f7:ea:af:72:d5:f6:
8f:05:d4:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:18:48 2025 by rpki-client