Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
File: XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft (raw, json)
Hash identifier: I9CP53HvTEAGXILF9aiqbpdXBCExwBxhCYB7GlL8hAE=
Subject key identifier: 34:62:77:63:B8:A7:28:08:33:55:FC:2C:18:1F:24:1E:5C:7B:8D:3B
Authority key identifier: 5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
Certificate issuer: /CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Certificate serial: 019682EC100539E13A2628E960EDD395349C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
Manifest number: 0726
Signing time: Tue 29 Apr 2025 19:00:30 +0000
Manifest this update: Tue 29 Apr 2025 19:00:30 +0000
Manifest next update: Wed 30 Apr 2025 19:00:30 +0000
Files and hashes: 1: XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl (hash: lVZ8qbDPVqzJA1w2viI24pYpjhGthYOr9vlQ/9lpqVk=)
2: zw3OOzLu7F0rCvVUhFlHNjK6_48.roa (hash: EC4+NtSiW4UmHKtwZdLsHrR4X7fUOJDCpzkjNoARw5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 19:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:ec:10:05:39:e1:3a:26:28:e9:60:ed:d3:95:34:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Validity
Not Before: Apr 29 19:00:30 2025 GMT
Not After : Apr 30 19:00:30 2025 GMT
Subject: CN=34627763b8a728083355fc2c181f241e5c7b8d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:da:c9:da:9b:9a:ac:48:92:94:1a:a7:e8:a6:
54:b1:eb:a7:f5:40:dd:6b:b9:08:2b:19:23:51:d3:
58:6e:90:2e:58:17:32:26:74:9c:5a:4a:f8:91:f7:
df:11:ea:ad:01:db:cf:71:c2:d3:1e:54:27:b2:74:
78:65:b4:64:5d:d8:df:31:df:2e:98:cc:f8:40:2e:
f6:b1:ac:7c:1e:73:7a:70:2a:59:76:14:35:6d:fe:
f1:cf:43:9c:4e:90:7a:7d:df:5d:d7:30:02:7b:2d:
d2:f2:6c:96:7a:9d:e9:24:a8:50:08:ac:bd:d6:a2:
96:3e:ce:0d:a3:4d:99:dd:a0:ea:f7:1d:8d:52:3b:
29:0f:63:29:19:56:a2:1b:ad:98:66:f1:44:e6:13:
e4:ed:97:66:80:99:29:62:e0:76:ad:5b:77:f2:30:
94:c8:72:cb:74:ef:f2:6e:fc:db:fb:ea:89:6a:96:
85:49:26:60:07:5f:bc:9a:6e:55:3f:67:08:c6:39:
4e:55:cc:69:01:c6:bb:2c:e2:0c:2f:46:35:98:13:
cb:9c:6f:64:3d:5e:e1:d2:2d:e1:23:35:3c:08:8c:
90:39:3c:3a:b4:d8:f5:19:35:5a:5c:12:b2:0c:a7:
ef:f2:30:91:d3:3c:c1:6e:17:c7:84:b1:d6:4b:32:
97:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:62:77:63:B8:A7:28:08:33:55:FC:2C:18:1F:24:1E:5C:7B:8D:3B
X509v3 Authority Key Identifier:
keyid:5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:2d:80:6e:e5:fe:ce:cb:86:51:39:f6:22:2b:43:64:34:08:
a0:a0:37:94:84:bb:e9:5b:33:41:b8:34:93:1f:d6:60:6a:3a:
f3:95:22:40:0e:7b:d8:bf:45:a1:b5:2a:99:eb:5a:08:55:cc:
8c:a6:e0:c6:ce:a7:ce:82:35:f3:99:69:69:83:0a:98:d8:ac:
00:11:36:0a:ff:b7:bf:3c:36:65:5a:03:29:70:68:e7:d0:13:
ad:01:e3:81:3b:0b:7a:86:ae:f2:6d:c8:70:22:d3:41:c8:03:
63:ab:c7:26:cd:3e:a7:ce:29:be:a5:9b:38:69:33:cd:de:0c:
a3:dd:d3:50:0c:4c:49:c3:9a:dd:f7:3a:0f:28:bf:90:4c:06:
76:85:f2:41:3e:ce:69:92:c8:9b:30:96:d0:ae:21:32:ee:09:
13:48:aa:6d:14:c2:86:f9:42:7c:6b:5a:46:9d:4f:ea:30:b8:
f0:8a:78:dd:0c:23:62:95:be:7a:ef:3e:e9:f3:ed:f5:d1:7b:
b7:c4:b3:8a:0d:ad:10:d4:3f:71:74:c7:81:d8:3c:cb:a8:21:
aa:a0:d1:c7:09:61:e1:c4:a2:30:14:51:7d:19:1c:9f:cd:d2:
10:d8:67:f2:6b:21:50:88:de:88:92:e1:ba:d5:e6:5a:4e:77:
fe:03:fc:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 02:45:33 2025 by rpki-client