Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
File: xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json)
Hash identifier: aLtTz8TSpXNiuEpWO4xYEqMWwiVvrtdbdjh/++LfSn4=
Subject key identifier: 74:20:71:DB:0F:D0:72:A3:D2:E3:A3:85:30:1C:29:C7:C6:EA:6F:E9
Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
Certificate issuer: /CN=c5bfa71a5113fed82464776c14371514c9218ef5
Certificate serial: 019674FA0A2DAE263ECF864363D2258842F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
Manifest number: 0946
Signing time: Sun 27 Apr 2025 02:01:05 +0000
Manifest this update: Sun 27 Apr 2025 02:01:05 +0000
Manifest next update: Mon 28 Apr 2025 02:01:05 +0000
Files and hashes: 1: IzmeYXYlO_xmlW74WeQyL7gffpE.roa (hash: Z5XX/V/bAHCE8fRhzNUzhUtEMOMQ14B1YoCinHSL1lM=)
2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: C+TvgqLh62l6c0JFmduPaZaUoQq8xzUH0dWJrViPNTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:fa:0a:2d:ae:26:3e:cf:86:43:63:d2:25:88:42:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5
Validity
Not Before: Apr 27 02:01:05 2025 GMT
Not After : Apr 28 02:01:05 2025 GMT
Subject: CN=742071db0fd072a3d2e3a385301c29c7c6ea6fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:0d:15:e1:e8:2c:d8:be:e0:d0:e5:79:f2:10:
3f:de:e8:ac:66:61:ea:7c:3c:b3:be:2c:9e:4f:c8:
2f:9c:85:3c:d5:49:9d:3b:73:8e:d1:a5:a6:c1:18:
ed:22:32:0e:10:42:c6:9b:85:c1:30:27:6c:76:16:
48:f8:84:02:b1:51:b4:c2:1c:03:26:9b:6d:da:27:
79:be:cc:7e:6d:f0:d7:d2:80:8b:eb:10:9c:28:a3:
c1:b7:a2:5b:a4:c5:cc:96:28:2c:49:f8:63:31:a7:
ac:9b:e1:55:b5:9b:d8:59:3e:2c:a7:22:3c:c9:3b:
22:13:c6:46:ed:5e:c7:ef:6e:74:60:67:e0:fb:b2:
b0:ba:1a:d6:7d:41:51:f5:00:fa:be:65:5c:9e:11:
76:7f:df:a1:a6:8b:dd:f1:3c:d7:e5:22:7b:70:06:
2a:8e:16:2f:4c:a4:0b:98:07:41:c9:da:7e:d8:0f:
07:49:aa:ff:34:0e:a3:3c:88:10:9c:a2:8f:91:5a:
0c:16:07:66:ab:c4:41:27:f9:bf:8f:40:1d:1f:80:
42:30:f8:da:35:51:02:32:50:5f:02:68:1e:f5:16:
1a:30:5a:84:23:8d:fb:58:9c:ab:f7:c8:f2:99:ca:
6b:1d:96:f2:5c:d8:38:13:b0:9b:b3:81:5e:94:2e:
e3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:20:71:DB:0F:D0:72:A3:D2:E3:A3:85:30:1C:29:C7:C6:EA:6F:E9
X509v3 Authority Key Identifier:
keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:e9:6b:b4:d1:5f:4c:f4:fb:13:43:58:37:69:22:52:0a:6f:
6e:35:a1:d4:7e:0e:52:7f:6b:bf:10:8c:87:2c:58:86:ad:e2:
1a:d7:3a:35:30:aa:8b:39:98:6e:ca:61:c9:cd:02:f2:3d:e2:
fc:78:bd:3c:3c:d8:61:4b:ec:f4:09:13:56:9d:8e:6a:34:19:
d7:d9:da:24:15:f9:31:bd:2c:fb:e4:62:07:b0:7f:3c:4e:33:
41:6c:78:21:2e:b0:ff:3b:ce:85:a4:11:9a:f8:31:b7:72:04:
9f:61:ba:9f:f4:6b:20:81:01:ad:5d:3a:7a:9b:04:51:97:bd:
33:82:90:a2:1d:b6:3c:dd:d3:ec:d5:b2:44:57:90:b1:c9:43:
f9:51:01:19:3f:0e:dc:5c:36:a1:07:82:1a:29:b3:9e:f3:30:
f5:42:ab:82:d0:56:3e:ec:df:4a:ab:67:e8:d8:0f:0a:bb:7a:
e5:f4:24:88:f8:39:85:b6:aa:a4:d9:8b:91:81:eb:ba:41:8f:
3e:09:09:56:eb:a1:f6:7d:cc:39:c0:18:5b:b7:95:7e:38:ba:
ee:5c:8c:8e:13:49:c3:0a:c4:ed:7e:93:ad:ab:a7:5a:b1:bf:
93:93:69:9c:63:bd:44:bd:49:29:98:75:0e:1f:37:d2:87:4f:
12:a5:7e:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 11:34:27 2025 by rpki-client