Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
File: Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft (raw, json)
Hash identifier: JDr9psBHox5I+a9mYtunvDRkC3EakDA5QB3fICuS9Mc=
Subject key identifier: 5D:DC:68:F1:40:25:89:95:75:83:D6:65:63:4E:99:25:3B:6B:18:3F
Authority key identifier: 5E:3E:4F:A8:C9:97:1A:EF:12:34:5F:C0:E3:7D:16:B3:45:9B:78:3B
Certificate issuer: /CN=5e3e4fa8c9971aef12345fc0e37d16b3459b783b
Certificate serial: 01968210E234245D2266D5DA39C8695C34E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
Manifest number: 0B6B
Signing time: Tue 29 Apr 2025 15:01:06 +0000
Manifest this update: Tue 29 Apr 2025 15:01:06 +0000
Manifest next update: Wed 30 Apr 2025 15:01:06 +0000
Files and hashes: 1: Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl (hash: HNcwSwbBYwz++pbsMLLIfRr0rm3F8MmPhbersxVVTm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:10:e2:34:24:5d:22:66:d5:da:39:c8:69:5c:34:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e3e4fa8c9971aef12345fc0e37d16b3459b783b
Validity
Not Before: Apr 29 15:01:06 2025 GMT
Not After : Apr 30 15:01:06 2025 GMT
Subject: CN=5ddc68f1402589957583d665634e99253b6b183f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f9:6b:0a:a6:ac:42:26:16:71:d3:c2:30:ee:
37:7b:33:47:d8:78:5d:72:28:9a:b6:df:eb:20:5c:
18:27:d9:ec:66:42:17:37:37:62:62:03:2b:7b:06:
29:2a:1f:70:5d:05:24:21:27:51:0b:b4:c5:21:71:
15:75:5b:5e:ba:70:fd:27:f3:f6:3a:b1:52:31:00:
7e:43:85:6e:86:eb:0d:63:aa:d5:e2:18:e0:29:c3:
51:43:b8:a0:37:8f:d5:99:df:3a:dc:59:5c:b3:7b:
14:1a:26:fc:e8:63:bd:cf:b5:f7:d6:a0:7f:1a:0e:
2d:14:ee:1f:5e:86:40:39:c3:83:8e:1c:1a:eb:af:
85:ab:66:ce:16:f9:e7:bf:f2:e0:60:a9:50:c4:61:
9c:a6:2e:0e:3c:94:70:da:b2:93:8c:bc:b3:3f:b4:
c6:2e:83:38:9e:e6:bd:86:c6:af:84:18:5b:ff:91:
05:50:51:c7:f0:2b:42:d6:50:a6:61:a1:11:1b:4e:
8b:5d:c7:5b:13:9f:0b:f7:56:0b:f1:06:2b:1b:73:
f2:9f:b1:23:29:31:f8:08:8e:ef:2f:63:7c:56:6a:
96:76:7e:c7:dd:89:a2:c4:b8:a2:29:9c:c4:e5:bf:
9e:80:45:12:33:d3:02:ea:d1:fe:e9:77:1a:da:01:
d6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DC:68:F1:40:25:89:95:75:83:D6:65:63:4E:99:25:3B:6B:18:3F
X509v3 Authority Key Identifier:
keyid:5E:3E:4F:A8:C9:97:1A:EF:12:34:5F:C0:E3:7D:16:B3:45:9B:78:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:e1:4e:01:b9:77:8f:08:31:7f:ba:97:f4:e6:e2:53:59:05:
e0:56:a3:12:c1:61:1c:ac:9d:0d:3a:ad:cf:c6:58:2a:2f:0f:
c5:e1:63:6a:72:53:0d:1b:aa:da:be:dd:ab:d2:2a:3d:49:02:
72:71:1b:97:18:bb:a5:84:c8:65:ff:84:b9:4f:60:94:08:ce:
24:5e:49:88:54:f2:a5:9f:0c:27:c0:ad:93:09:50:00:63:b4:
cf:3c:34:16:7e:17:0b:35:40:b1:21:d2:1b:cc:45:86:ee:44:
f5:e7:c2:96:3c:f7:a9:fb:fc:11:2b:c5:a5:f3:5b:d2:9f:24:
d9:67:71:e5:c8:03:04:52:fb:cf:83:e8:23:41:92:ba:60:9c:
76:47:bb:38:46:7a:9a:7e:7e:a1:cb:15:ad:d5:55:4f:57:31:
a0:6c:b1:b1:65:b4:a7:18:a6:8f:02:c8:3f:64:3f:97:6f:e8:
8a:54:8c:27:50:b9:85:62:80:2d:b7:07:c1:2f:f6:30:75:6e:
bf:4b:56:67:dd:96:26:73:84:33:04:bf:22:0d:a5:96:ac:4a:
b8:da:5a:27:bd:51:69:39:65:ac:36:85:90:9e:5a:6a:f1:21:
ba:c3:50:dc:c5:cd:f6:3d:2e:c0:bf:b7:6c:63:17:02:47:a7:
9a:8e:1d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 18:32:45 2025 by rpki-client