Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
File: XYLKb462haVz5dHZH48GEhqwKjc.mft (raw, json)
Hash identifier: cvyIVzBHEruBV8opqTu35DnzPt3XYV2DkXHfKlXx+ec=
Subject key identifier: CA:34:D8:98:7B:A8:62:9C:FF:A6:6C:63:F1:BB:73:99:06:8C:C6:52
Authority key identifier: 5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
Certificate issuer: /CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Certificate serial: 0196797B029967D2E94FAA62A915A7A597FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
Manifest number: 1148
Signing time: Sun 27 Apr 2025 23:00:26 +0000
Manifest this update: Sun 27 Apr 2025 23:00:26 +0000
Manifest next update: Mon 28 Apr 2025 23:00:26 +0000
Files and hashes: 1: 5CQ4eO5LX17KXZ4KRK1zO2WmDio.roa (hash: elGO+kkXCWf6xUhLxKQr6fK8y3EJu/aqnItwgZKwIWc=)
2: B7NZ-u78J5mcpsov1XyIGK10cH0.roa (hash: U6kZ6B0tG819VSZmmXYNrc7xdPGbBot/5/JsXAv6Iss=)
3: OoBGTJUsN0YQ8-kRUhL79IvaFTU.roa (hash: KQ8kfmaZw2mJmdCZhrX6qjUaRt+eTM3yBnvc8ppjAws=)
4: XYLKb462haVz5dHZH48GEhqwKjc.crl (hash: xeBKMThfG1KNGRk5Jr0V90l5qsxazhmE1sqI4nT01Hw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:7b:02:99:67:d2:e9:4f:aa:62:a9:15:a7:a5:97:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Validity
Not Before: Apr 27 23:00:26 2025 GMT
Not After : Apr 28 23:00:26 2025 GMT
Subject: CN=ca34d8987ba8629cffa66c63f1bb7399068cc652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:37:68:8e:b7:8f:81:80:2b:2b:18:7f:11:00:
d9:29:3b:18:4c:79:40:ea:a3:d8:c5:80:b3:42:08:
58:f8:c1:c0:84:60:a6:01:03:95:48:cf:cf:23:66:
b9:b9:c5:3a:a6:cf:26:27:42:97:d4:ca:d4:90:5f:
1b:05:be:e8:18:95:6e:3f:d5:a2:ad:9e:ee:9e:6d:
0a:22:01:00:8d:a9:f7:07:54:f1:25:45:46:8d:f9:
b4:85:e9:31:21:51:e3:17:9f:5e:a6:10:2b:74:79:
6b:6b:22:4b:a5:39:af:b6:9a:af:0c:2f:ba:8b:ff:
9c:59:55:46:28:7d:91:f8:ad:8e:6d:ff:e2:31:1c:
e7:b2:df:31:9f:14:d9:77:e1:44:11:7d:02:42:a0:
c2:4a:b1:45:a5:4f:9c:1d:c9:02:43:c3:41:15:71:
2c:13:d0:81:94:0b:72:19:f0:24:c5:0a:35:ec:ac:
e1:57:ad:6f:50:0e:f2:e1:ec:f3:ab:7f:2a:a7:c5:
db:62:e5:15:2d:46:4f:f3:7c:34:c2:3e:4f:58:41:
fd:a4:80:0a:11:c5:da:16:5c:67:02:6f:36:46:91:
47:cf:0a:71:9d:53:e9:5b:8d:df:30:a7:7f:f4:bd:
87:ee:7b:ae:ff:79:b0:86:a0:fa:18:70:1d:94:bc:
6d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:34:D8:98:7B:A8:62:9C:FF:A6:6C:63:F1:BB:73:99:06:8C:C6:52
X509v3 Authority Key Identifier:
keyid:5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:7f:94:ab:ca:ea:c9:79:d8:65:c0:b5:26:3f:ae:6c:64:3f:
ed:c7:13:5f:f2:1c:78:9e:99:0e:84:82:9d:57:44:53:af:8b:
ee:89:19:95:98:5c:91:1d:82:b4:81:e3:4b:17:73:df:b1:79:
be:eb:54:ed:6e:61:2d:b5:c2:c7:ce:28:e9:60:a2:bd:a5:ff:
e2:16:2d:04:30:b2:4d:65:2c:71:80:8f:c3:b4:37:e6:77:35:
c4:94:51:fa:b2:55:a1:3f:a9:87:69:9c:cd:5a:81:27:96:89:
6a:ba:d5:75:87:db:2e:bc:95:d6:ad:69:79:4c:8f:03:36:3d:
9e:65:0f:37:96:80:a3:dc:5e:40:dd:14:d6:7b:b7:e4:a3:d2:
27:43:9c:07:ef:67:be:a1:74:e6:d1:26:cf:6b:47:5c:a6:29:
a8:99:d2:14:11:0a:50:63:f1:4e:eb:3f:dc:39:b6:a9:fd:8b:
6e:7b:c0:c1:50:c3:13:80:82:48:69:4b:a8:73:a1:09:4a:ce:
22:8a:93:80:20:32:95:57:ce:40:bc:c9:3b:c0:94:6f:e9:ec:
c5:36:c4:a0:1f:91:ba:42:9c:24:14:03:ed:ed:1a:72:a0:59:
ed:e5:3c:e5:8f:8d:d1:bd:9d:53:b3:07:78:58:e5:7f:3f:b4:
a0:b4:f7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 08:22:53 2025 by rpki-client