Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: 59N+mKpRwE7xsDqC1av3UXeSkVgjqbyGVMm8mPHZwbo=
Subject key identifier: C6:18:24:DC:C3:77:C3:E2:F6:34:11:2E:3D:40:95:93:64:D6:68:BE
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 01967B32A62FBDE0E6B6F387D80BE82AEECF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 0EBC
Signing time: Mon 28 Apr 2025 07:00:39 +0000
Manifest this update: Mon 28 Apr 2025 07:00:39 +0000
Manifest next update: Tue 29 Apr 2025 07:00:39 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: XzAfkjCUglAovbMboL5YIohueWPLWWDcvHof8PlHspg=)
2: BBc69UDcCnvJ9YXOkYKIegaNiDE.roa (hash: u/teCtCSqk7whi20Ul6NWhHZ26QmJCDD43T9Guz4eqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 07:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:32:a6:2f:bd:e0:e6:b6:f3:87:d8:0b:e8:2a:ee:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Apr 28 07:00:39 2025 GMT
Not After : Apr 29 07:00:39 2025 GMT
Subject: CN=c61824dcc377c3e2f634112e3d40959364d668be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cb:e8:34:26:62:76:b2:51:98:96:22:39:53:
c6:aa:0d:5f:a0:cc:f6:8b:5f:56:34:76:72:35:ea:
ca:f9:27:f8:95:13:c5:af:cd:82:28:91:a7:bf:c8:
b9:b4:ca:ab:fd:d8:08:78:fa:46:f6:ae:03:0c:a7:
79:19:e5:90:99:98:85:29:8b:09:25:b0:14:95:12:
e7:ce:38:b9:2c:c2:d7:09:9c:a2:99:d9:21:33:e2:
fa:8d:88:d2:fe:90:83:04:4d:07:e9:86:5b:c6:6b:
74:b4:a5:25:11:41:26:9f:6c:d8:d3:96:f9:33:5b:
1f:f8:3f:69:2e:4a:85:ff:6e:a1:7a:ab:67:ca:30:
b9:80:83:74:9c:d3:61:23:0b:a7:98:01:35:dd:94:
6d:a8:ef:6c:84:4c:0e:7b:50:24:e2:2d:94:c2:ab:
e3:bb:60:49:93:83:e6:21:0f:86:c5:74:58:39:3b:
be:e1:90:c3:f2:17:80:14:03:59:07:25:85:79:0d:
d1:0c:b2:b7:28:4d:c9:17:bf:a2:b2:ea:eb:f8:b5:
42:ef:a4:35:1a:4a:34:68:15:34:60:77:1e:7d:eb:
4c:49:e4:c3:61:6d:10:3d:db:23:d5:77:03:59:aa:
a3:43:17:e4:e8:53:8d:22:b7:83:b4:5f:a6:16:9c:
59:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:18:24:DC:C3:77:C3:E2:F6:34:11:2E:3D:40:95:93:64:D6:68:BE
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:e3:a9:17:25:6f:28:bd:12:f3:b7:b7:f0:50:e3:7b:1a:e7:
e7:95:4c:78:b4:b3:b4:b0:d7:2b:c7:99:bc:77:9d:67:bb:59:
90:4b:03:35:ad:25:d2:74:e7:51:65:74:cb:d0:bb:7c:ef:e1:
92:50:7e:3f:59:7f:0f:1c:ce:1c:b8:df:a3:94:7f:55:79:f4:
2b:10:5f:13:95:fb:06:a5:d9:0e:0a:88:b9:b4:1f:68:4c:17:
7c:69:1e:eb:2c:c6:a2:22:ae:73:fc:7a:ca:81:b4:8b:e9:40:
95:d7:0b:bf:b0:71:db:e4:ff:67:1f:a6:74:68:19:df:b7:20:
56:d7:20:dd:b6:63:14:5a:f8:14:41:04:b4:24:8b:fd:e0:37:
9d:62:aa:31:2a:00:19:70:e0:89:63:a2:bf:fa:91:87:0e:5b:
80:e0:c8:c4:47:d6:8a:22:f8:26:7d:12:7b:13:c9:bb:9c:42:
5a:7e:b5:74:fd:e8:01:18:54:75:91:41:d3:74:42:bc:4e:ca:
3d:55:0a:99:10:19:c5:bc:37:51:4c:c0:25:fc:21:ea:78:36:
3f:4c:78:83:9d:a4:a9:00:b1:9d:98:33:4e:d8:1c:ed:ac:59:
54:32:10:77:5b:e6:0a:32:d1:85:fa:58:42:16:60:26:c3:5a:
41:8f:55:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:03:44 2025 by rpki-client