Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/4942f6-f58c-4eef-918b-f2d9f0e7a697/1/XfqvthoMdKBJ2WvN5Zy5QsyNVXk.mft
File: XfqvthoMdKBJ2WvN5Zy5QsyNVXk.mft (raw, json)
Hash identifier: B/KUkt3elTDodWXndapW/FCMQW7HilyXSH91u+0zaak=
Subject key identifier: 8F:6D:5F:99:DD:D7:31:5B:AF:45:1C:25:7E:11:EE:12:B5:0C:13:4E
Authority key identifier: 5D:FA:AF:B6:1A:0C:74:A0:49:D9:6B:CD:E5:9C:B9:42:CC:8D:55:79
Certificate issuer: /CN=5dfaafb61a0c74a049d96bcde59cb942cc8d5579
Certificate serial: 019675D541FC5FA082B4571B53C3800A236F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfqvthoMdKBJ2WvN5Zy5QsyNVXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/4942f6-f58c-4eef-918b-f2d9f0e7a697/1/XfqvthoMdKBJ2WvN5Zy5QsyNVXk.mft
Manifest number: 150B
Signing time: Sun 27 Apr 2025 06:00:32 +0000
Manifest this update: Sun 27 Apr 2025 06:00:32 +0000
Manifest next update: Mon 28 Apr 2025 06:00:32 +0000
Files and hashes: 1: XfqvthoMdKBJ2WvN5Zy5QsyNVXk.crl (hash: CSUkJVTfojcyKFkxkjclJLkX69FCKrGH116x0mzO+EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/4942f6-f58c-4eef-918b-f2d9f0e7a697/1/XfqvthoMdKBJ2WvN5Zy5QsyNVXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/4942f6-f58c-4eef-918b-f2d9f0e7a697/1/XfqvthoMdKBJ2WvN5Zy5QsyNVXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfqvthoMdKBJ2WvN5Zy5QsyNVXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:41:fc:5f:a0:82:b4:57:1b:53:c3:80:0a:23:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dfaafb61a0c74a049d96bcde59cb942cc8d5579
Validity
Not Before: Apr 27 06:00:32 2025 GMT
Not After : Apr 28 06:00:32 2025 GMT
Subject: CN=8f6d5f99ddd7315baf451c257e11ee12b50c134e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e9:c7:91:3a:a7:3b:1b:1e:eb:c2:95:3b:df:
0e:89:fe:a9:8b:e3:7b:23:1b:21:79:98:5c:60:05:
b1:ec:43:f7:07:a8:9b:26:cb:f7:9f:0a:5c:e4:8d:
50:1a:f2:6b:c5:5e:c8:cd:80:dc:62:a4:f9:d1:69:
18:76:2b:fb:7e:8b:f7:5d:e3:5a:c0:b9:21:d7:59:
87:75:f5:d7:86:92:94:c2:cb:40:d7:77:cd:06:14:
5d:8b:69:80:c4:2c:06:a2:fc:ce:27:68:e8:04:7a:
3c:e3:8b:82:96:1d:98:d9:12:07:1c:c5:a2:8d:5e:
40:fd:cf:6e:27:73:28:e8:da:c7:00:29:8e:5c:10:
1f:c3:36:7e:be:e8:42:29:cd:7b:2c:71:3f:38:12:
a0:84:dd:7a:06:5a:a6:73:73:fe:71:be:a8:76:0a:
12:6b:9a:c0:2d:a6:67:7b:40:ba:e8:e9:dc:5d:ef:
31:24:d6:f2:c0:6a:83:75:93:c7:3c:4e:93:a3:13:
1b:2e:08:cf:5e:13:64:e4:8d:a2:be:eb:28:c9:d6:
97:87:7c:98:40:85:f0:2c:3a:e9:5b:84:dd:bf:18:
b7:bd:ab:80:51:28:93:4b:13:b5:f9:1c:19:bf:c6:
20:8e:ae:01:33:81:af:0a:95:ec:53:fb:67:76:d7:
d8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6D:5F:99:DD:D7:31:5B:AF:45:1C:25:7E:11:EE:12:B5:0C:13:4E
X509v3 Authority Key Identifier:
keyid:5D:FA:AF:B6:1A:0C:74:A0:49:D9:6B:CD:E5:9C:B9:42:CC:8D:55:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfqvthoMdKBJ2WvN5Zy5QsyNVXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4942f6-f58c-4eef-918b-f2d9f0e7a697/1/XfqvthoMdKBJ2WvN5Zy5QsyNVXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4942f6-f58c-4eef-918b-f2d9f0e7a697/1/XfqvthoMdKBJ2WvN5Zy5QsyNVXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:df:89:a7:4d:e3:63:e8:49:77:06:4b:83:64:94:fc:19:f2:
90:fb:6a:6e:0f:62:0d:d2:3b:9e:02:e1:28:fc:a6:60:c3:8d:
3a:22:d3:10:29:35:8c:78:20:da:d6:a4:12:c3:a8:0b:a6:d0:
9e:e8:97:95:a3:30:18:6b:a6:da:75:ca:70:2c:a4:3f:2a:c5:
f5:07:82:e8:dc:73:4d:ae:0b:4c:59:3b:15:ab:f0:5f:77:16:
db:e6:8f:fb:94:9a:2a:6c:12:cf:89:d9:8d:ee:ea:66:71:1b:
76:93:7c:c5:b6:fc:00:64:31:0d:4a:31:fd:07:f3:28:81:51:
82:0a:f6:92:a3:a4:75:15:be:6c:28:f2:b0:4a:e6:b4:1a:71:
33:74:e7:ce:bd:63:80:1f:ca:5f:45:fe:95:f0:59:30:35:33:
0a:d6:d4:54:36:20:50:44:5a:e4:5d:dc:4a:e5:93:3d:7a:be:
ad:2a:5c:74:37:43:11:83:4d:b3:04:6f:7a:df:b6:18:c6:6d:
fe:07:1e:32:b2:4c:b8:0f:50:68:f8:d9:44:09:55:df:bc:bf:
6f:d9:9c:5d:14:c6:32:1d:ee:2f:d3:46:2b:d6:ba:4b:8e:79:
1f:97:55:3a:89:ab:de:5e:4d:02:1c:44:5d:ac:09:11:ea:75:
ce:d1:ab:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 08:45:39 2025 by rpki-client