Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
File: xhMz0OgQeIbQMFx72BvdNUiVJ64.mft (raw, json)
Hash identifier: q2geWubxEvUl1eRA7pWgGGumwFbg5hanIFTzKm2K9oU=
Subject key identifier: 79:9F:3C:54:00:01:27:9C:A0:98:5F:07:94:F8:1E:39:D7:FD:F3:C7
Authority key identifier: C6:13:33:D0:E8:10:78:86:D0:30:5C:7B:D8:1B:DD:35:48:95:27:AE
Certificate issuer: /CN=c61333d0e8107886d0305c7bd81bdd35489527ae
Certificate serial: 019688B79B3B97E42E3D32F6BBE2644A904C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
Manifest number: 1519
Signing time: Wed 30 Apr 2025 22:00:56 +0000
Manifest this update: Wed 30 Apr 2025 22:00:56 +0000
Manifest next update: Thu 01 May 2025 22:00:56 +0000
Files and hashes: 1: vl15h6bSawu987-Q_9jiY_8d_bU.roa (hash: Ky1qbRFkXL3xxI3+FV1tNHYzBN6SggIg4pNwGCFKnF8=)
2: xhMz0OgQeIbQMFx72BvdNUiVJ64.crl (hash: g/qmUJdd1VHSVkmnPZo4AKWO9lsTlhC0qtoAx6y+0pc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:b7:9b:3b:97:e4:2e:3d:32:f6:bb:e2:64:4a:90:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61333d0e8107886d0305c7bd81bdd35489527ae
Validity
Not Before: Apr 30 22:00:56 2025 GMT
Not After : May 1 22:00:56 2025 GMT
Subject: CN=799f3c540001279ca0985f0794f81e39d7fdf3c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a6:f8:5a:0d:0b:f4:c9:13:79:79:d5:e9:9a:
f5:fd:97:a7:77:24:98:dd:70:b8:51:2e:2c:01:a9:
fc:82:14:03:1c:1a:96:77:7a:72:7d:e4:ef:0d:df:
e1:24:14:e6:cc:e4:26:1e:27:7f:17:e4:58:a3:65:
30:4b:80:47:25:b0:d7:d8:67:5a:e3:d4:1a:17:e6:
c2:a9:5d:b8:33:dc:17:aa:cc:0e:9a:1b:96:8b:ce:
40:f8:60:6c:56:26:fc:e3:54:84:12:93:9f:d6:38:
67:3c:25:98:de:97:40:de:45:01:1c:ed:d0:31:1e:
52:97:7d:f2:7f:75:59:f5:1e:8e:ee:08:4f:6a:f1:
7e:eb:9e:93:a2:a4:ad:6a:42:0c:5a:77:09:86:25:
38:df:02:6e:eb:3d:75:84:ea:77:3f:51:f6:28:13:
34:4e:da:3d:88:60:3c:4c:75:6f:7a:66:38:bf:45:
2c:62:a2:c5:67:c9:e1:fb:f5:0e:5d:4f:40:11:47:
13:cd:1f:cc:ae:dc:52:6a:63:96:c4:dc:f0:da:78:
93:e6:97:f7:d5:7e:3d:95:07:87:dc:2c:93:7d:8b:
a2:bf:9a:c4:d7:f4:e9:41:98:a7:18:87:69:79:91:
34:77:d4:b1:af:e1:93:67:bc:1a:8a:e8:15:6e:6e:
d4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:9F:3C:54:00:01:27:9C:A0:98:5F:07:94:F8:1E:39:D7:FD:F3:C7
X509v3 Authority Key Identifier:
keyid:C6:13:33:D0:E8:10:78:86:D0:30:5C:7B:D8:1B:DD:35:48:95:27:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:d4:82:76:9b:bf:2e:cb:57:30:56:4b:ce:d8:6a:37:5f:a2:
9c:06:57:18:20:bc:43:20:75:07:6c:d0:0d:de:c2:38:3e:f3:
1a:a2:7d:8f:82:d3:f3:8d:ea:63:5f:66:a6:a3:09:b1:e7:12:
a9:ee:ea:54:eb:56:5d:79:4d:4b:79:6c:ea:16:8e:55:62:63:
f1:11:8d:84:29:c4:73:99:e0:6c:b0:af:0c:ae:8e:70:2d:f9:
13:ad:81:a8:77:3d:2c:66:b3:d8:09:5c:c2:3f:bf:9b:15:32:
8e:57:9b:d9:11:93:f5:7a:c1:a1:f0:5b:75:f0:57:7a:20:47:
cf:20:75:92:e5:27:11:17:cd:3e:a4:17:79:dc:d0:60:d1:9b:
7f:de:cb:16:86:13:61:f9:b7:30:87:09:12:0c:9a:05:1e:fd:
16:e6:43:bc:f2:82:9a:d1:15:ac:09:ec:8c:64:67:cf:f2:be:
24:4f:69:c2:62:ff:aa:00:b8:1d:33:91:bb:40:f8:85:21:8d:
2c:5d:11:f7:cf:74:a4:cb:7a:67:8d:53:d1:37:80:ca:59:e1:
7d:7d:bf:67:e2:27:ea:87:79:e4:98:24:f9:ab:0b:72:14:1e:
47:b4:38:dc:fe:94:9f:e6:f2:a8:f0:6c:62:91:9d:52:c3:97:
b2:0f:88:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 06:46:25 2025 by rpki-client