Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.mft
File: XaOPfD7K0p7FBkS3AGi5KhvkcHQ.mft (raw, json)
Hash identifier: WtpgSj2OaoFxJbtqAdCqvs2CWM84bNzV/pBTt5/Mmi8=
Subject key identifier: E9:81:62:11:C2:D3:3D:B6:76:69:D9:DF:DD:77:27:87:E1:59:AD:5E
Authority key identifier: 5D:A3:8F:7C:3E:CA:D2:9E:C5:06:44:B7:00:68:B9:2A:1B:E4:70:74
Certificate issuer: /CN=5da38f7c3ecad29ec50644b70068b92a1be47074
Certificate serial: 0196A0F661DF03A7B7FFE8BC3CE7C194AA56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.mft
Manifest number: 045A
Signing time: Mon 05 May 2025 15:00:23 +0000
Manifest this update: Mon 05 May 2025 15:00:23 +0000
Manifest next update: Tue 06 May 2025 15:00:23 +0000
Files and hashes: 1: SzmhUfWJuFhyT5TGLouRAgBLoIM.roa (hash: Qov0MeRXvHn6kZBTJQaoc48+Yw0xT2B5xVOV+b6Nifs=)
2: XaOPfD7K0p7FBkS3AGi5KhvkcHQ.crl (hash: UmG4GNFbBCZSpm1Sx3sUH+JoBlg8o8N7XtEdLdAJT2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 15:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:f6:61:df:03:a7:b7:ff:e8:bc:3c:e7:c1:94:aa:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da38f7c3ecad29ec50644b70068b92a1be47074
Validity
Not Before: May 5 15:00:23 2025 GMT
Not After : May 6 15:00:23 2025 GMT
Subject: CN=e9816211c2d33db67669d9dfdd772787e159ad5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a3:d0:91:aa:26:e2:37:01:de:78:e9:54:f3:
85:fd:3f:2e:a2:91:d1:6d:ac:82:a4:9e:ca:26:70:
ce:14:56:00:a8:1e:fe:57:67:1c:8b:34:b0:ac:d4:
e0:e0:b1:76:8e:1b:1b:c7:d4:1e:39:12:97:6a:55:
5d:56:88:a0:34:1f:cd:f2:bb:9c:37:a6:7d:8d:75:
ef:2e:60:cd:89:97:e0:5f:91:80:66:b6:f4:67:00:
9e:3f:0c:08:33:12:ca:20:5e:d3:7c:8e:89:b8:90:
f6:43:f6:3d:11:81:c9:54:d5:4c:20:00:87:7b:d0:
42:f3:1f:d8:dc:95:88:89:f8:c0:6a:fa:cf:bd:37:
f2:2e:a2:9f:d1:f3:90:47:9f:be:10:d1:31:ec:39:
6b:ef:10:5d:91:84:f1:7e:30:be:f3:77:59:3c:73:
44:03:f3:af:78:f6:d2:01:97:0d:3c:78:e2:08:e8:
ac:af:c9:cd:4a:9c:19:36:6b:66:6b:aa:85:f1:65:
3a:6c:6d:9c:a1:4f:b8:99:11:7f:36:d8:d8:03:1d:
1d:7b:9d:44:0a:95:72:b1:1e:eb:df:1e:30:f5:c6:
da:ed:f4:61:26:f8:58:91:16:0f:40:38:c8:63:4d:
e7:c7:70:e9:f1:85:ef:02:fd:7d:df:a2:86:fe:ed:
3c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:81:62:11:C2:D3:3D:B6:76:69:D9:DF:DD:77:27:87:E1:59:AD:5E
X509v3 Authority Key Identifier:
keyid:5D:A3:8F:7C:3E:CA:D2:9E:C5:06:44:B7:00:68:B9:2A:1B:E4:70:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:24:3e:51:58:c2:44:36:4e:e3:1d:72:82:56:76:7b:9c:17:
61:b6:8d:a7:08:37:17:10:b4:35:0e:6a:c5:2d:de:d1:89:ab:
f3:0e:2c:cf:80:68:07:89:a5:da:50:00:7a:68:f9:bd:16:1c:
96:f8:47:e9:8e:75:fc:9c:c0:75:2d:0d:97:11:c9:44:06:2f:
88:96:90:e8:c7:f7:89:c8:51:62:86:40:80:e3:12:4e:e5:c4:
40:91:f6:f7:96:08:04:0c:66:69:d2:41:7f:99:5f:27:84:80:
57:0e:03:06:7c:5f:c1:c5:ed:60:ba:85:e7:d6:60:c9:40:df:
e3:83:38:27:30:58:ed:c9:fa:31:ed:d2:45:a3:c7:83:9e:76:
c4:74:db:55:a8:c6:99:74:b7:b8:35:2d:27:11:fc:26:a3:b0:
3c:cc:56:dc:23:b2:7f:73:69:29:04:d1:ed:3f:eb:e9:1c:09:
9b:91:5d:2a:22:8b:ab:f0:72:d7:b1:c2:5d:45:ed:da:87:82:
66:79:b8:86:a9:80:0a:ea:62:52:69:a0:ca:f4:3a:8e:88:0c:
87:1e:d4:e9:40:1a:bc:1d:0a:7d:94:e1:0d:20:fe:d9:4c:0a:
f5:9d:fd:2b:d8:3b:04:ad:01:18:95:da:60:a3:36:b6:62:75:
d4:db:50:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 22:17:43 2025 by rpki-client