Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
File: X8IN7HFLtUY7Fk4VpfihOYolUF0.mft (raw, json)
Hash identifier: Iyx19TAtmk2JmmG0zTzF7KZzQhmHVyFMnmo7w0WMkuQ=
Subject key identifier: 01:D1:A5:23:41:CD:1A:6A:C0:F8:FC:70:E7:3F:30:FD:71:48:F6:48
Authority key identifier: 5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
Certificate issuer: /CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Certificate serial: 0196759E93522108694F6AB18A43F1781D22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
Manifest number: 0207
Signing time: Sun 27 Apr 2025 05:00:48 +0000
Manifest this update: Sun 27 Apr 2025 05:00:48 +0000
Manifest next update: Mon 28 Apr 2025 05:00:48 +0000
Files and hashes: 1: VYOhWlm2y2YZ6EHcFnibmzsOVGY.roa (hash: GJjtJqaW4pHP1Y4i0oHxZvwkAfFAfi2jd3zkxgKT3N8=)
2: X8IN7HFLtUY7Fk4VpfihOYolUF0.crl (hash: h9QH/21TVN3WaAk/kndJ1ld/iICbOjnWMFTMtD+Ttko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:93:52:21:08:69:4f:6a:b1:8a:43:f1:78:1d:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Validity
Not Before: Apr 27 05:00:48 2025 GMT
Not After : Apr 28 05:00:48 2025 GMT
Subject: CN=01d1a52341cd1a6ac0f8fc70e73f30fd7148f648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:21:17:5d:59:47:3f:03:60:30:c5:9a:5b:ce:
9b:c7:f1:1e:78:22:4e:52:ec:e7:e9:36:a5:37:e7:
a1:c5:b4:31:89:48:e2:23:12:ba:80:80:53:48:ad:
39:14:b5:ca:b8:c6:5c:73:d8:a7:64:bc:4a:cc:de:
fe:64:66:c7:aa:c5:4d:47:95:37:72:23:3e:32:30:
8b:2d:ff:21:57:a1:52:a2:af:f6:43:0f:ca:bb:e8:
26:3c:56:78:2e:a0:45:5c:55:18:b6:9f:67:dd:cd:
b2:9f:aa:8d:07:e3:6d:c8:34:cc:f8:26:b1:79:ba:
0a:34:5f:77:3e:ef:2a:79:9f:64:71:fc:49:30:f2:
f4:15:99:e5:5d:33:04:c7:d5:f9:56:13:75:a9:1b:
09:bf:12:9b:44:49:b9:a2:e3:af:d4:de:3d:87:63:
cb:c0:46:f9:8e:ae:3c:e4:12:10:8c:90:d8:97:9d:
70:bc:c1:9e:d4:d8:3c:b8:3a:12:6d:49:4f:0f:dc:
21:51:a5:54:d7:c2:60:98:49:de:00:e2:eb:ed:85:
e8:be:99:0d:e8:d9:b4:0c:e7:3b:70:13:30:4d:6a:
82:59:2e:91:a7:3f:a5:3f:d5:d9:67:ec:27:0e:57:
d7:28:8a:77:0f:f4:15:0c:d0:01:c9:6a:82:11:d2:
12:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D1:A5:23:41:CD:1A:6A:C0:F8:FC:70:E7:3F:30:FD:71:48:F6:48
X509v3 Authority Key Identifier:
keyid:5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:21:cf:f9:4d:a7:f7:7e:1a:37:98:6d:53:9b:00:d5:b5:c3:
9c:a8:df:ae:1f:5f:f7:9c:64:c6:69:45:84:9a:aa:07:e1:06:
85:49:96:7c:d0:4a:9b:08:16:f0:b3:44:c5:b5:42:46:02:e6:
ce:b6:c2:06:3a:3c:0d:70:c3:74:d6:e0:cd:08:46:7f:68:cf:
bd:6d:be:00:43:61:b5:33:93:7a:c4:bf:3f:44:6a:83:a5:76:
61:e0:bb:4c:53:9b:54:81:63:fb:9b:21:1f:f8:6a:4b:42:d3:
cc:48:2b:3a:94:39:a8:ee:64:15:aa:f9:d7:a5:56:15:bc:87:
fa:ae:66:fc:fa:9e:03:9f:44:91:59:b9:eb:e9:54:4e:c6:40:
00:8e:91:19:fb:87:48:c8:ce:51:ea:b3:33:27:24:ba:30:ec:
26:8e:20:cd:c4:df:db:a8:b8:33:33:e4:cf:e2:cd:d5:95:7f:
22:f1:bc:05:86:ef:65:97:e7:f3:22:bb:35:cb:48:10:bf:f9:
ec:6a:24:6c:26:5c:62:3d:08:d9:b3:e6:10:15:14:64:2b:ec:
e3:bb:69:0b:7c:19:d2:d3:07:6a:e1:0d:b1:78:75:57:d3:a9:
c5:50:d5:ac:b8:96:4b:00:bf:06:4c:9b:ed:08:68:e6:cb:a5:
9b:d5:73:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:32:04 2025 by rpki-client