Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
File: xKMWKFZYILOlo-HPyHdz4oP7lcE.mft (raw, json)
Hash identifier: kAPGGSva/bZqo5y3lsGCRIwcVrnQqiPqNqsvxJiZfR4=
Subject key identifier: C3:F0:24:0B:8F:9A:9C:5E:A2:FB:73:7A:B3:76:B5:4F:B6:8F:01:E0
Authority key identifier: C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
Certificate issuer: /CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Certificate serial: 019688B7B129B2DADE00F06C7C42D4904701
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
Manifest number: 0A5E
Signing time: Wed 30 Apr 2025 22:01:01 +0000
Manifest this update: Wed 30 Apr 2025 22:01:01 +0000
Manifest next update: Thu 01 May 2025 22:01:01 +0000
Files and hashes: 1: O7JK_R6ip6iR244uyf3DBgROHco.roa (hash: GKH7o0xxF7nZfmB+4s7mUapBQQrsXrRHoDwbM7Hh8hA=)
2: xKMWKFZYILOlo-HPyHdz4oP7lcE.crl (hash: IvKbYgO2rYOhszQVPQcjBtCxYh3L7nXlo8CGISk6GzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:b7:b1:29:b2:da:de:00:f0:6c:7c:42:d4:90:47:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Validity
Not Before: Apr 30 22:01:01 2025 GMT
Not After : May 1 22:01:01 2025 GMT
Subject: CN=c3f0240b8f9a9c5ea2fb737ab376b54fb68f01e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:12:5e:f8:3a:cc:d5:8b:e1:5c:ed:19:ad:7f:
d9:fd:87:ff:30:e2:d7:9a:3c:91:0f:b2:15:84:b0:
ad:79:b6:53:78:6a:73:ea:d7:42:82:dc:6b:0b:bc:
5d:a0:fc:b7:1c:df:47:7c:0c:a3:d1:7c:ea:76:40:
9c:bf:02:ab:28:43:16:17:ac:8d:97:1b:2e:13:54:
32:b6:f2:2d:93:82:82:9b:a1:20:0f:ee:61:f4:03:
df:92:d0:9c:8b:30:8d:ca:a5:0e:f7:4d:07:59:4e:
50:9b:74:d6:3c:de:49:d9:1d:59:4a:0d:74:fb:3d:
f5:80:4f:78:60:5b:b7:77:4f:8a:3a:50:7c:60:2e:
a3:8d:28:4d:c6:8c:c8:7f:93:d7:aa:04:fd:c2:90:
85:62:14:a8:dc:e4:93:6f:0c:c2:a3:58:1b:57:de:
03:25:97:6e:68:22:cd:2c:d6:14:eb:aa:e9:e1:5d:
eb:02:43:15:d7:4c:79:2c:24:c0:35:63:6b:7e:d0:
a2:c0:2a:86:ae:8c:0f:b4:52:b3:8d:2f:fa:0f:fe:
c4:46:ac:a4:8c:e3:66:f0:be:78:69:94:00:5d:e8:
ef:21:e0:b8:04:8e:df:46:36:0b:01:a1:42:b4:89:
37:36:ec:82:1e:61:22:b6:9c:a6:9e:ba:3d:19:27:
bb:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F0:24:0B:8F:9A:9C:5E:A2:FB:73:7A:B3:76:B5:4F:B6:8F:01:E0
X509v3 Authority Key Identifier:
keyid:C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:af:4d:68:09:a2:e0:79:3f:a2:c7:c8:81:0e:6e:22:a7:4f:
c5:a4:bd:83:c1:2b:66:16:63:ce:ac:12:f2:d0:8d:2d:71:6d:
e9:c0:83:e7:64:1b:80:5b:fd:fd:f4:36:e4:29:84:6d:5a:f9:
dd:78:ca:11:8e:0d:cd:75:4e:b3:de:2e:6d:4d:5c:09:b0:79:
84:f0:b2:23:89:a9:78:a0:9e:71:18:68:0f:b2:5f:57:e4:9c:
f8:c3:92:80:3a:58:3d:2f:b5:34:4b:f3:a6:c1:bb:6a:45:38:
46:c7:2b:51:f9:cf:4a:81:cb:d3:de:1f:ae:8e:f9:55:bb:53:
e8:e0:30:7e:8c:df:f5:f4:ed:44:50:a0:58:54:eb:37:2a:20:
10:2c:15:b8:5f:03:06:ab:3a:46:06:32:45:34:8f:e0:e8:46:
68:74:95:67:91:d0:10:96:65:1b:fa:c8:bb:99:57:02:4a:7c:
63:24:bd:8f:e0:ed:46:8c:ef:9c:25:0e:44:86:cb:46:a7:ab:
e7:80:79:09:37:ae:e3:df:f1:5c:c2:dc:a6:52:f2:2a:aa:e4:
bd:79:af:45:2d:fd:fb:cc:83:f1:74:2d:cf:f4:d2:f2:be:a5:
14:a2:5b:e9:fd:66:9f:f3:b7:46:46:51:50:0a:21:21:54:c1:
44:3c:0a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:42:15 2025 by rpki-client