Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
File: XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft (raw, json)
Hash identifier: 4qtRpuVmlyixnwVUsRR6GbNDKoAXqWVpA9qsBmx4J1Q=
Subject key identifier: F4:6F:EC:6B:E1:D7:C4:9A:09:FC:76:AB:4A:3B:52:D6:DA:0C:4B:31
Authority key identifier: 5E:55:AF:DE:34:21:1B:CE:E6:A7:FD:99:24:88:A2:49:27:B4:69:47
Certificate issuer: /CN=5e55afde34211bcee6a7fd992488a24927b46947
Certificate serial: 0196B8C82D3556F7385C42F8883B8CD7F47F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
Manifest number: 017B
Signing time: Sat 10 May 2025 06:00:48 +0000
Manifest this update: Sat 10 May 2025 06:00:48 +0000
Manifest next update: Sun 11 May 2025 06:00:48 +0000
Files and hashes: 1: XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl (hash: Qs7aLGW/QIK8ztLSxLsIqZ+aLEW40cr1k48EcAVGIGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:c8:2d:35:56:f7:38:5c:42:f8:88:3b:8c:d7:f4:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e55afde34211bcee6a7fd992488a24927b46947
Validity
Not Before: May 10 06:00:48 2025 GMT
Not After : May 11 06:00:48 2025 GMT
Subject: CN=f46fec6be1d7c49a09fc76ab4a3b52d6da0c4b31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ef:e3:b2:66:d1:47:62:c1:7e:32:ed:65:fe:
f3:d9:e7:20:04:07:35:a1:4b:c0:43:15:9f:b3:eb:
f8:14:16:51:89:44:c9:6f:b8:df:fb:b9:0e:02:3b:
2a:57:7d:ef:99:ec:15:ae:e4:7a:69:5b:e1:3a:24:
79:2d:3f:ba:0b:3f:b4:a5:16:ff:7b:21:b7:32:de:
d6:14:35:1b:b9:32:d2:f7:0b:a1:30:27:bd:98:80:
b0:86:ca:d6:df:f6:28:10:1a:52:31:8a:ac:56:cc:
40:e2:0f:df:c5:e0:d8:10:8a:29:7b:57:c3:8d:e0:
79:ce:b4:88:e4:f8:fe:54:48:4b:c2:a9:69:9d:ae:
17:01:21:b6:ba:ed:77:43:c8:fb:fe:b8:62:ee:1f:
df:5f:51:08:a2:a6:52:2b:f3:1e:0a:9e:be:05:10:
7b:63:66:2f:9f:0c:8e:41:c0:de:9a:0c:d2:73:af:
2c:e4:fb:13:05:b6:1b:a2:28:e1:77:ce:8f:90:78:
17:80:9e:f1:3b:ee:78:d0:c4:fe:c0:65:eb:7f:1c:
ae:3c:e2:d5:b2:14:6a:b6:fd:b0:46:32:22:ab:d0:
54:c5:cf:2d:e8:36:d2:3f:5b:fb:f1:3f:0a:55:d8:
5b:d7:14:d5:0d:7c:78:ff:26:1b:c2:27:0a:88:12:
a8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:6F:EC:6B:E1:D7:C4:9A:09:FC:76:AB:4A:3B:52:D6:DA:0C:4B:31
X509v3 Authority Key Identifier:
keyid:5E:55:AF:DE:34:21:1B:CE:E6:A7:FD:99:24:88:A2:49:27:B4:69:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:0c:d5:7f:3a:e4:1f:f1:e7:2a:ce:32:8a:59:4b:4e:29:70:
7d:5b:8e:18:79:da:a3:2c:8b:c6:96:ac:2e:4c:9e:59:8b:c2:
a5:b7:9b:0d:6a:8a:f6:fd:d8:21:65:63:bb:21:33:bb:f0:57:
a2:22:4f:86:7c:d5:d8:d5:57:a1:16:05:7e:7f:be:01:5b:39:
de:c9:ad:93:a8:c3:e2:a3:26:82:00:12:43:56:e6:b2:58:ab:
bc:93:56:7b:49:81:16:ce:0f:8b:98:86:17:ee:03:ab:2a:47:
6c:fc:9b:2c:79:f3:f2:c8:ef:6c:3c:96:96:fe:22:97:8a:f2:
0b:e4:0c:df:53:08:e4:ae:89:a6:f4:20:92:db:97:cb:c9:20:
4b:18:64:af:4b:62:c8:25:df:19:f2:41:ff:ff:b0:d2:54:0c:
0c:39:20:64:5c:4a:87:3c:a7:40:52:1d:f4:41:d5:a7:e3:01:
f0:44:3b:6a:4a:dc:44:72:8a:f0:2e:fe:27:1a:67:b3:72:97:
49:85:e8:4e:ea:d7:9c:3e:1c:39:64:02:bb:ef:8d:08:7a:aa:
22:bb:9a:2b:d5:e9:2a:df:3d:56:c3:f5:18:5e:ca:d7:21:5b:
1c:f5:56:c9:3f:ca:1d:75:8f:3f:d4:54:78:ea:ba:ff:bb:e5:
22:d7:32:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 14:29:46 2025 by rpki-client