Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
File: Xo0HtF99gxJMn4wPrAO-wCRos34.mft (raw, json)
Hash identifier: ZluDQ/DIXVezEWqu8bvLUaGeynWhajyD4TFrJHTeFJg=
Subject key identifier: 34:6E:9F:06:BC:77:53:3B:07:32:8C:1C:BA:09:0D:89:B8:41:77:4D
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 0196AA9E89A4B7E3BC931D74BF03DD59B868
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
Manifest number: 1541
Signing time: Wed 07 May 2025 12:00:38 +0000
Manifest this update: Wed 07 May 2025 12:00:38 +0000
Manifest next update: Thu 08 May 2025 12:00:38 +0000
Files and hashes: 1: 42NnB3jW5n3RbWWrHMDd_7NubAY.roa (hash: bZyySLXxgMQfpoBtEuXSmgHgMgLKQxBjV3IqMenXg0E=)
2: EuMIVvtjfwcw4H_1qN_NTTYxtB0.roa (hash: GstL7gwAEgcyBOR5WEEQ3UJ45LkAklqubcGaSv86PEM=)
3: SehLpw74SFOf8GToYJGtJbUVBmk.roa (hash: adVA81EUt7qt0QBr1zTq2grJDS9XwvlhZ6I/IOaBsmA=)
4: U3GEel-_AheBYgIYIVYL9mt_5dg.roa (hash: qjeuuOD21NigMG6GkIxT7OwP2vU0izG4cg6tV2NDSPY=)
5: Xo0HtF99gxJMn4wPrAO-wCRos34.crl (hash: 0/Pl9RpTbJ31dC+Gxpyg7caymKfy894U2ZYo111D2Xw=)
6: hMxFbe2_woNux6m3JkElwux-E5g.roa (hash: nrSIsPwWOsAGq4mrEG8bp4vhnLrScT5iVl2b8ClElOk=)
7: olCZzHEOZSOjj4yqtahX2zJkhMQ.roa (hash: aXtBhSkmw714xAy5wT1PAT7ELEpsc4omuqROu4g4WE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 12:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:9e:89:a4:b7:e3:bc:93:1d:74:bf:03:dd:59:b8:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: May 7 12:00:38 2025 GMT
Not After : May 8 12:00:38 2025 GMT
Subject: CN=346e9f06bc77533b07328c1cba090d89b841774d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:71:0a:80:7b:75:09:e0:48:f1:0f:e7:0e:7a:
26:4f:8c:69:c7:60:55:b9:70:91:be:a6:d5:30:25:
2c:71:13:86:84:55:70:3e:75:f4:40:7a:a2:02:98:
62:f0:5e:37:65:4b:d2:42:59:12:bf:28:5b:60:6f:
9a:1e:37:63:f4:da:6a:89:07:15:72:b0:1f:63:7b:
64:29:1e:44:9d:ff:7c:2c:82:47:c1:0e:d3:83:f7:
5a:d2:7e:28:da:78:d8:9a:fa:2f:61:fc:99:fe:db:
80:55:11:89:b8:07:65:ee:41:f4:de:0b:70:84:48:
86:e5:58:63:10:8c:8b:42:50:a8:ed:04:00:fe:67:
cd:1e:d9:39:c1:74:4b:55:e1:dc:a1:25:58:c8:46:
38:98:fd:48:cc:55:81:45:b8:c3:c7:7a:88:c5:f0:
c8:b3:56:e9:98:39:1a:fa:8c:43:d3:22:37:b4:b3:
4d:58:d8:74:c9:98:54:25:2b:d5:5c:6b:2d:ab:51:
1b:ec:d0:09:f9:2e:df:55:d0:58:1e:23:0e:9b:8f:
1f:05:f3:d2:fc:ca:c9:f1:05:1f:b6:e8:b5:27:38:
1f:d4:8f:ee:93:eb:15:9c:ae:b8:cf:fa:ad:fc:b9:
38:76:7e:17:2f:03:86:26:f0:03:91:7f:ec:d6:53:
9c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:6E:9F:06:BC:77:53:3B:07:32:8C:1C:BA:09:0D:89:B8:41:77:4D
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:5d:a9:14:19:49:8b:0b:b6:68:c4:65:38:95:53:47:10:66:
16:77:df:12:6a:dc:cf:ac:5d:81:08:4d:62:36:3a:ff:d7:4c:
30:f5:f6:bb:6b:dd:3c:5d:11:43:2c:b7:b8:7f:80:61:3a:2b:
27:26:83:ba:61:f2:79:b3:1c:d7:c0:48:76:0e:e9:1a:cc:ee:
23:71:3a:c0:f2:c6:25:ed:d2:bd:68:99:20:aa:d8:f6:c0:35:
83:dc:36:e7:aa:6e:1e:71:8f:5a:80:df:49:7f:d5:34:3d:df:
af:cb:7c:66:45:a5:02:9d:ce:ee:20:38:63:cc:98:33:19:d5:
76:5c:47:d7:a2:38:78:9b:9d:99:c0:8d:10:ec:e6:93:4d:20:
b0:e5:19:cc:05:f9:eb:cb:20:80:88:4b:45:0f:94:c6:dc:85:
45:74:af:ab:52:cc:cd:82:88:00:28:a4:eb:92:6e:11:5e:a0:
b6:9c:0e:dd:1c:ab:2b:02:f6:ad:db:50:77:41:06:fd:cf:fb:
73:24:d5:d1:9e:07:96:05:17:42:fd:4c:c5:f5:6b:76:8c:d3:
49:cf:3a:7c:bc:51:54:9b:90:d1:31:bb:5f:44:8a:77:66:be:
7a:03:64:84:39:b3:90:ed:8e:dd:ae:63:4b:a0:40:f2:99:ef:
d1:7f:e2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 22:40:00 2025 by rpki-client