Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.mft
File: tXikYahZ3cmGwIqI6VEtXD0iEOY.mft (raw, json)
Hash identifier: 4XTR6xE9WZYNRlzIvSosRa10Vm4QcvMO69gi/N9yzu4=
Subject key identifier: F1:C9:5F:09:BD:46:F4:C1:78:E4:1C:D4:BB:89:CE:40:A0:80:B1:AE
Authority key identifier: B5:78:A4:61:A8:59:DD:C9:86:C0:8A:88:E9:51:2D:5C:3D:22:10:E6
Certificate issuer: /CN=b578a461a859ddc986c08a88e9512d5c3d2210e6
Certificate serial: 019688EDE015D696F9EA0B9CEEBE62E94ED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tXikYahZ3cmGwIqI6VEtXD0iEOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.mft
Manifest number: 11F2
Signing time: Wed 30 Apr 2025 23:00:12 +0000
Manifest this update: Wed 30 Apr 2025 23:00:12 +0000
Manifest next update: Thu 01 May 2025 23:00:12 +0000
Files and hashes: 1: fOeHWLSvpiv5KgmUiK2xlWpmRm4.roa (hash: 70iF+LPpbMiVmu1EBYdz2CkmI0h0sZ5SaRk5YWSmNI0=)
2: tXikYahZ3cmGwIqI6VEtXD0iEOY.crl (hash: TbC5uJYs4Lqsq6jWYcyQCIeD+5TxFCBeRnEeW89g/Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tXikYahZ3cmGwIqI6VEtXD0iEOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:ed:e0:15:d6:96:f9:ea:0b:9c:ee:be:62:e9:4e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b578a461a859ddc986c08a88e9512d5c3d2210e6
Validity
Not Before: Apr 30 23:00:12 2025 GMT
Not After : May 1 23:00:12 2025 GMT
Subject: CN=f1c95f09bd46f4c178e41cd4bb89ce40a080b1ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e4:31:ff:14:09:dd:fc:f3:28:3e:f2:52:98:
1a:0e:a5:83:f5:38:21:23:65:35:67:1a:91:f9:9e:
ce:94:7e:3a:7b:2c:54:1a:49:67:9f:de:e3:c8:8a:
8f:08:77:4b:44:4e:a6:9d:06:a6:a3:a4:d7:00:2e:
2c:8d:76:65:e1:5a:77:a8:61:19:da:a7:aa:e8:86:
4f:06:55:74:33:76:8d:bb:b7:f8:96:a0:81:6a:f5:
62:e3:ec:3e:82:ae:6c:f4:8e:85:07:27:a9:74:4c:
3a:28:86:fe:c5:31:12:6d:bf:db:9e:c4:10:27:38:
c6:0b:bb:37:cf:c2:3a:d2:7d:7d:2b:e2:45:f5:65:
4d:7e:5f:bd:d6:ce:1d:36:ac:38:99:34:6f:41:2a:
be:cd:18:99:9d:eb:1a:45:6a:1e:f5:a7:cd:ac:03:
55:02:86:78:44:37:4a:d5:15:b5:aa:38:88:8b:bf:
3a:f2:30:9c:54:97:ad:70:73:5f:89:b8:b7:ef:93:
98:ed:98:ee:5a:26:38:79:da:e6:4e:78:b1:d4:e0:
a6:5e:8f:e3:26:54:dc:5a:4f:45:03:18:96:12:3b:
e1:18:24:b3:cd:5b:7e:aa:dd:99:ab:b7:5a:36:b4:
53:b3:ca:40:69:c1:69:14:c7:62:20:09:63:ce:73:
37:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C9:5F:09:BD:46:F4:C1:78:E4:1C:D4:BB:89:CE:40:A0:80:B1:AE
X509v3 Authority Key Identifier:
keyid:B5:78:A4:61:A8:59:DD:C9:86:C0:8A:88:E9:51:2D:5C:3D:22:10:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tXikYahZ3cmGwIqI6VEtXD0iEOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:db:7c:b6:b2:d3:ea:56:d8:bb:98:2a:37:56:12:50:97:17:
0f:c7:0c:7b:ce:d0:9a:3c:3a:ba:49:54:9e:ba:50:8c:d2:5a:
dc:21:89:b9:23:99:e1:da:f3:a9:b2:78:81:9d:e3:1a:b3:9d:
51:7a:9f:0b:e1:56:45:b5:74:75:8f:11:0c:b1:fb:f6:da:27:
61:10:6f:20:22:3c:5f:b2:81:3c:ac:c9:58:0c:3c:dd:88:6b:
97:1a:93:e6:63:8c:72:1a:bd:4a:e2:0b:2f:09:6d:4d:84:a6:
86:97:9a:dc:d4:c1:0a:1a:43:af:a0:a5:46:a7:6e:80:0f:d7:
d2:40:8d:b0:6e:90:88:76:70:b6:b7:d3:38:78:b4:10:f4:36:
27:cd:80:61:6d:67:2d:26:6e:94:c4:5e:4a:83:5b:68:9d:b8:
8f:1e:a5:e7:fb:7f:72:ac:40:9a:fa:82:ef:97:9b:7a:cf:a8:
48:7a:75:40:ff:a3:da:56:2b:6e:fd:bd:6a:a2:79:d9:d9:f9:
3d:c4:ae:8e:35:11:20:c9:d5:57:26:ff:e1:a4:19:c0:52:44:
91:6f:aa:9e:44:0c:a0:55:e3:90:a9:b0:b0:33:8b:c8:d8:82:
41:3f:c4:0a:85:7a:88:32:7b:e2:c6:3f:a1:4c:b0:bd:2d:f4:
f4:94:d5:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 03:25:48 2025 by rpki-client