Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
File: XwImpwTPYg6yAA8n56kZznMJkb4.mft (raw, json)
Hash identifier: kKoKDI459o8SYih+mKI6j+pst9k5fWx44Df1dhxH03Y=
Subject key identifier: 1C:B1:7F:5B:74:27:FE:4B:DD:9F:15:65:1B:DF:2C:73:BF:7D:46:2C
Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be
Certificate serial: 0196797B246C0921A4B92F004491DE143567
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
Manifest number: 0D6F
Signing time: Sun 27 Apr 2025 23:00:35 +0000
Manifest this update: Sun 27 Apr 2025 23:00:35 +0000
Manifest next update: Mon 28 Apr 2025 23:00:35 +0000
Files and hashes: 1: P2NRYwvD64-ChL8WHsL3n2VNc0o.roa (hash: ieevRAfzDccOVGuN3ZGz3jBO2k67pRtiKtsN5CR5hf4=)
2: WePWXi4BVJvCbK70G_Bl8LvCy1A.roa (hash: KcxOlT86bPrqOuZYUTgExqyOPNUmMSnB0pr0K4kluRk=)
3: XwImpwTPYg6yAA8n56kZznMJkb4.crl (hash: GZlgtzxQ18HoZflhaj5e1vKbNJaYkjyUiv19sLec7VQ=)
4: ZN7LHZSqu6VYidqfpIPOfCxL2L4.roa (hash: HOkUkg1LrwSaHvSseUfJQzAJzpgcTNuaZCYPqCnldN0=)
5: fm5A4Lmh3Dyoqm8phCUbdJ-SJ50.roa (hash: y1l9jzGOcVZ0GENozcALgbMdp6ZfPx8sRn42vZfb0eg=)
6: mOQsXh6W-nguYweUEP-GggtQ8co.roa (hash: BRX6qGv8sEq7HbLRmf+hKda82RdBa8GI6j+263A+qA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:7b:24:6c:09:21:a4:b9:2f:00:44:91:de:14:35:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be
Validity
Not Before: Apr 27 23:00:35 2025 GMT
Not After : Apr 28 23:00:35 2025 GMT
Subject: CN=1cb17f5b7427fe4bdd9f15651bdf2c73bf7d462c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bb:50:7a:e7:cb:b7:c7:f6:ef:4b:bf:76:e2:
4c:8f:e9:76:24:b1:d9:34:09:32:a2:a6:0d:45:79:
de:f4:1c:f9:b4:3e:0a:39:6a:02:32:5c:b2:fd:38:
8c:99:23:67:b7:9b:f9:b8:95:bb:5e:aa:de:81:07:
19:e8:9c:39:7f:a9:82:2b:96:22:03:fd:f4:14:ea:
f8:86:f9:33:3c:0e:9c:96:e0:e8:d3:e7:00:07:45:
18:55:89:08:43:7e:25:47:19:f4:29:a4:e6:dd:8a:
e3:f0:1d:72:2e:50:63:fd:1f:11:90:0b:73:d9:17:
ce:f5:aa:de:b7:b8:26:6e:9e:97:12:b1:46:b4:f0:
3f:2a:27:44:bc:5a:9a:4c:a5:52:b4:4f:52:db:27:
12:af:f2:d6:9a:79:91:d3:72:bc:65:83:98:2f:2e:
78:18:91:09:03:ca:9f:26:12:60:38:2d:01:e2:f5:
6d:03:30:08:5b:06:5b:25:a9:a9:ef:cd:dd:d4:36:
fc:04:0b:a4:2c:cc:68:56:13:fa:18:62:4d:a4:21:
9c:e3:3f:b4:49:7f:2e:54:32:c4:85:a3:92:09:a9:
c3:1d:ee:bb:fb:8c:7a:5c:d6:c4:e2:35:81:06:1b:
f3:96:a6:62:18:86:50:7d:b0:dc:96:58:cc:bc:87:
23:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B1:7F:5B:74:27:FE:4B:DD:9F:15:65:1B:DF:2C:73:BF:7D:46:2C
X509v3 Authority Key Identifier:
keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:2b:48:c5:0b:16:17:e8:f4:01:3a:72:01:c0:a1:29:1f:c0:
4e:51:5c:f3:08:fc:70:1c:24:78:3a:90:5c:14:97:85:c1:5c:
02:48:65:a7:e6:78:43:94:cb:12:e8:35:a0:c7:27:51:ea:dc:
4c:44:24:59:3c:9c:bd:9b:0a:fc:6e:ce:61:07:7e:fa:74:8a:
e9:34:e2:ae:a3:9c:ab:85:75:2e:20:3a:c3:b8:bc:c8:c1:41:
1e:3e:38:1c:b6:33:42:e7:f2:57:66:34:94:64:5b:d3:8a:96:
da:43:fb:27:45:da:04:96:70:2e:0a:f8:62:e5:7b:76:cc:bb:
1e:62:07:06:c1:d2:d5:2c:cb:e6:5f:27:3c:59:b4:4d:4f:b3:
ca:e3:63:29:55:49:bc:a6:71:39:c4:5d:ba:3e:aa:b7:b3:e5:
14:d6:88:c8:80:45:55:88:1b:28:bd:a5:fb:22:7b:f9:7c:3c:
1b:7e:8e:b5:0c:e8:b4:f6:0e:22:e7:46:fb:53:41:d7:1f:27:
4a:24:a6:16:21:a6:52:7a:7f:85:90:31:db:47:3c:7c:94:6b:
76:37:f7:7c:38:ec:20:37:55:a5:a1:a6:7c:78:dc:f6:06:a3:
68:3e:ed:95:7b:e8:03:55:60:01:81:9e:94:7e:df:8d:7b:79:
14:ed:54:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 06:14:01 2025 by rpki-client