Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
File: XOMWuo-zBWfOy8cnBR02QA4lH8c.mft (raw, json)
Hash identifier: Go6FHmHlHJzP8js2d+QyI99bIFGSnDkD+dbj7lbb73Q=
Subject key identifier: E6:A3:3B:F8:10:0F:2E:D2:27:79:04:A3:34:AC:48:DF:50:BA:49:49
Authority key identifier: 5C:E3:16:BA:8F:B3:05:67:CE:CB:C7:27:05:1D:36:40:0E:25:1F:C7
Certificate issuer: /CN=5ce316ba8fb30567cecbc727051d36400e251fc7
Certificate serial: 0196789F4385DDC55955298D2DD60AFF8869
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
Manifest number: 02E8
Signing time: Sun 27 Apr 2025 19:00:25 +0000
Manifest this update: Sun 27 Apr 2025 19:00:25 +0000
Manifest next update: Mon 28 Apr 2025 19:00:25 +0000
Files and hashes: 1: XOMWuo-zBWfOy8cnBR02QA4lH8c.crl (hash: E7Oq2Ih5wDfnJ4Jby/mhc9BjnrRgH+H/unVbmfRP7ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:9f:43:85:dd:c5:59:55:29:8d:2d:d6:0a:ff:88:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce316ba8fb30567cecbc727051d36400e251fc7
Validity
Not Before: Apr 27 19:00:25 2025 GMT
Not After : Apr 28 19:00:25 2025 GMT
Subject: CN=e6a33bf8100f2ed2277904a334ac48df50ba4949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c6:42:f7:c3:78:ac:a7:6b:a7:81:d8:29:90:
a1:aa:56:c3:b8:4a:cd:a1:48:58:55:e4:cf:26:ae:
0c:cd:0b:b8:bb:98:bf:42:0f:98:57:5c:6b:91:ff:
7e:45:2a:3b:8a:0d:3f:56:be:06:3f:f1:e6:b6:27:
5e:0c:bc:e2:53:27:14:f5:e6:7b:ea:c4:4a:9e:00:
8e:8e:94:65:f7:48:4c:2f:4e:7d:89:08:00:cd:b2:
86:5d:97:b1:16:f9:f5:5b:0f:59:d5:4c:6e:21:59:
37:4f:8b:31:1d:bf:93:cf:98:89:c6:75:e8:54:bb:
d0:82:b5:b8:da:19:27:40:b2:30:c1:e7:f8:ab:12:
d0:9c:d6:49:50:2b:5c:ea:6d:26:e7:b2:cc:cf:fb:
25:f2:82:67:96:37:4f:f6:be:64:d6:d5:a6:e2:9d:
1d:18:05:d2:7f:c9:49:93:7e:4e:67:0e:23:75:fc:
f1:77:01:6d:ee:51:de:eb:bb:81:06:76:db:7a:58:
ac:4c:42:77:18:c9:8c:39:eb:71:aa:eb:5a:e6:6f:
a9:e7:5d:f0:99:6b:4f:1b:2d:16:eb:2b:c1:c5:79:
e9:85:28:56:c5:30:1e:d3:7a:c3:f1:29:3c:ec:22:
ab:41:95:2b:48:0e:b4:87:1d:fc:a5:7c:c2:54:e1:
fc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A3:3B:F8:10:0F:2E:D2:27:79:04:A3:34:AC:48:DF:50:BA:49:49
X509v3 Authority Key Identifier:
keyid:5C:E3:16:BA:8F:B3:05:67:CE:CB:C7:27:05:1D:36:40:0E:25:1F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:63:eb:35:b4:a3:ec:29:d7:7f:b9:11:a0:88:87:36:c2:95:
14:c6:e5:d6:a2:3a:f7:e3:24:5b:74:12:f7:af:88:b1:e0:f4:
45:74:16:42:32:c2:41:1d:07:6c:5a:72:04:d2:8f:f3:48:28:
0b:ae:0c:73:4a:e0:fe:e8:02:1c:f9:88:4e:f3:d3:79:db:8c:
6b:ea:16:11:57:1c:e2:7d:a3:e0:78:c2:14:80:d6:65:69:89:
c7:7d:d8:aa:3c:a1:13:43:f0:d9:42:e3:7c:93:b1:99:ca:32:
83:e9:d0:b7:e9:89:9a:f4:e9:49:96:89:4e:81:0f:7b:67:35:
c4:1d:59:57:5e:f8:65:c2:c7:87:41:ea:89:a9:e6:4c:f0:2f:
27:6d:45:63:ec:9f:af:25:0a:6e:a2:e5:f7:9e:76:79:7a:d4:
3c:8c:f0:23:e2:ad:78:42:35:a8:7b:0a:14:42:a7:22:dc:67:
6a:88:4e:e1:77:c6:a0:38:2b:d6:a6:bc:f6:fc:a6:2f:06:0f:
9a:34:a9:a3:12:90:2f:b2:07:12:53:ea:eb:ca:40:b8:25:92:
cc:0e:bc:3c:5c:fd:c3:81:54:68:3c:14:88:96:1c:5d:b6:67:
5b:88:ca:4c:be:8c:ae:36:31:9a:6a:6f:f6:fc:76:cb:38:ce:
45:52:e6:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:07:28 2025 by rpki-client