Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
File: XLtvfRHev55LqLH2nDg7j8PErhI.mft (raw, json)
Hash identifier: Upt1HJvf1xy7WSc5bUPMLEIfXiAvCrpA8XmyfO2EaBI=
Subject key identifier: 3A:87:97:FF:52:3F:96:AC:9A:D4:AE:C7:58:39:B6:2F:0E:C6:0B:A2
Authority key identifier: 5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
Certificate issuer: /CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Certificate serial: 01968880517956CA4A2B255EAADA220F7961
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
Manifest number: 093E
Signing time: Wed 30 Apr 2025 21:00:32 +0000
Manifest this update: Wed 30 Apr 2025 21:00:32 +0000
Manifest next update: Thu 01 May 2025 21:00:32 +0000
Files and hashes: 1: GeKBRab06m2Sa_WEDlm2vrbqt80.roa (hash: rshNYrEYAk6Ccd9rs6FmkxFoBRIeaz8vJy7lI8MW13k=)
2: XLtvfRHev55LqLH2nDg7j8PErhI.crl (hash: T5ba172OG3QAylgjkrmzFrYJVbu0yqbzb+SQdB0bhkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:80:51:79:56:ca:4a:2b:25:5e:aa:da:22:0f:79:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Validity
Not Before: Apr 30 21:00:32 2025 GMT
Not After : May 1 21:00:32 2025 GMT
Subject: CN=3a8797ff523f96ac9ad4aec75839b62f0ec60ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a0:e4:73:7d:8a:4d:ba:18:f0:3b:16:6b:3e:
00:3f:95:25:cd:63:bc:ef:c4:09:32:f0:f0:22:be:
e7:e3:b3:03:44:c2:ad:ff:b4:16:32:91:82:68:26:
81:d0:b2:b1:7f:6d:bc:28:72:69:10:eb:cf:84:ee:
26:ff:90:22:e6:b8:fa:0b:dd:05:11:53:f7:40:b1:
e9:a8:c5:ad:a3:67:6b:0c:e5:b2:cb:45:22:47:b6:
a7:dd:50:26:7c:77:09:15:d6:51:02:f9:43:16:06:
c9:1d:e9:d6:a7:21:12:0f:b0:2f:8c:2a:2b:e8:00:
b7:45:2a:e5:fc:db:f8:1a:cb:4f:b4:58:57:00:86:
70:09:ed:b1:20:94:75:8c:cf:1f:f1:6d:09:f7:64:
13:0c:2a:c1:a2:08:f3:d2:b2:c1:3c:d5:86:16:a9:
dd:f2:26:31:c7:63:5d:f2:88:54:3a:95:73:70:77:
c1:07:a1:c6:6d:29:01:47:45:b0:0a:7c:e0:85:c2:
ad:ed:40:79:8c:d2:f9:6c:47:af:cb:3b:5e:d7:6f:
f6:7c:e3:67:f5:80:dc:20:ec:71:f2:f6:8c:61:e8:
79:8b:41:a0:44:7d:1b:32:b5:b8:88:0a:50:87:0a:
95:4b:f3:a7:96:6c:c3:8e:a0:22:ea:d9:8c:a5:07:
2c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:87:97:FF:52:3F:96:AC:9A:D4:AE:C7:58:39:B6:2F:0E:C6:0B:A2
X509v3 Authority Key Identifier:
keyid:5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:fb:9c:12:02:cc:38:3c:3b:1c:79:ed:53:b9:fb:88:34:a1:
5e:e2:48:37:02:27:02:95:c9:0c:27:80:41:69:7a:2c:90:6a:
3d:92:a1:06:65:ac:e9:6f:e1:e6:43:b4:76:f9:c4:27:ab:f5:
a9:b0:63:b2:5b:21:66:dd:00:23:84:34:73:d9:10:09:0c:cf:
8b:0b:46:88:62:dc:61:1c:a1:68:cb:6b:b4:67:12:49:bf:ee:
7f:d3:40:6f:d7:d1:0b:2d:11:3b:f4:8a:9f:1e:25:6a:d8:47:
39:e9:8c:e6:fa:d4:3f:27:98:3d:d7:28:bf:37:ff:9b:21:45:
d5:9c:44:04:0b:79:7e:90:38:69:71:bb:1d:71:40:76:02:ec:
dd:f0:cc:69:29:8e:94:53:08:b4:bb:dc:f9:9a:86:28:de:37:
d9:db:d3:b8:7f:85:ab:6d:75:05:8d:dd:57:bd:88:f8:c4:64:
62:88:a1:96:f0:7a:0f:9a:0e:06:d4:06:cf:90:e7:31:2b:2d:
9b:81:3d:ff:28:d4:04:29:b5:5e:20:67:f6:71:91:37:46:7f:
20:2c:ea:ee:1b:27:14:a1:e8:3d:9d:67:51:01:ff:af:2d:f5:
99:e5:5e:3c:93:1e:e7:6b:09:48:f0:4e:c6:4d:dc:97:30:22:
db:71:1e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 01:01:22 2025 by rpki-client