Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
File: xs_ZQjfv0gDdCxFuH2-be8plnKc.mft (raw, json)
Hash identifier: CaDqb4LHbd3Uc/vmWBLx4P4lKeqhYuuZrhshMI2eMEk=
Subject key identifier: 3D:17:6A:58:97:38:D9:19:B5:95:46:6D:2F:19:99:44:F6:92:28:DD
Authority key identifier: C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
Certificate issuer: /CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Certificate serial: 0196B4EB2258B14AF529F7AEEC19E6F8AD91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
Manifest number: 1532
Signing time: Fri 09 May 2025 12:00:30 +0000
Manifest this update: Fri 09 May 2025 12:00:30 +0000
Manifest next update: Sat 10 May 2025 12:00:30 +0000
Files and hashes: 1: K9i5BAZ6MzcgF9CzcPcItueT7VY.roa (hash: SAFMofRuJhJyuX+kxWxAf3VBKLBtrOMj73WD80i1Rgo=)
2: xs_ZQjfv0gDdCxFuH2-be8plnKc.crl (hash: tITWTxuFOKI6lPfE11jgpHPuGIDBXLugjp/cKzC4BsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:eb:22:58:b1:4a:f5:29:f7:ae:ec:19:e6:f8:ad:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Validity
Not Before: May 9 12:00:30 2025 GMT
Not After : May 10 12:00:30 2025 GMT
Subject: CN=3d176a589738d919b595466d2f199944f69228dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7c:94:ec:b2:b0:b9:8d:bf:2c:d8:15:c2:02:
4b:60:9b:b1:a6:f7:9d:e3:73:e4:4b:e2:dc:87:6b:
44:77:c3:51:8b:a5:a5:04:44:f6:b0:43:92:36:f8:
cd:0e:43:aa:e3:77:aa:8c:99:34:21:82:6e:68:44:
b6:f2:8b:b8:12:7d:3d:95:3d:6d:3b:41:0f:c1:fa:
8f:85:2e:36:aa:4e:8a:94:c2:8d:ff:12:b7:1e:84:
80:d3:36:0d:86:81:bc:1f:81:72:8a:0d:e4:2d:fe:
60:1f:bb:0a:2a:b4:c3:76:0c:38:7f:c3:b4:8a:fa:
bb:01:5d:2f:04:89:48:b9:66:8a:a7:46:b3:4e:85:
c9:60:3e:3d:2e:3f:64:88:b8:7a:08:dd:94:93:48:
bf:ad:f4:fa:f3:a2:cd:16:8c:c2:73:17:50:15:4a:
c9:62:5f:9d:47:5e:cd:70:69:b3:a6:42:ce:ca:47:
f2:a8:31:48:24:af:c3:6f:f6:94:05:26:99:89:d5:
26:d6:f9:17:92:f0:8e:43:7d:ac:9e:26:36:15:4f:
3f:88:0e:a2:8c:66:52:17:24:7f:43:f7:ce:6b:df:
6f:f4:f2:29:9a:46:7f:47:89:ab:87:d9:f1:46:a5:
f5:aa:1c:83:fb:2b:0c:9e:0c:ca:14:9a:d3:49:1b:
37:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:17:6A:58:97:38:D9:19:B5:95:46:6D:2F:19:99:44:F6:92:28:DD
X509v3 Authority Key Identifier:
keyid:C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:90:f3:39:77:22:5f:a4:2e:bd:08:33:3e:a9:ce:8f:33:af:
4b:e9:80:08:8f:ca:08:ea:cb:2f:58:03:d9:45:54:56:47:79:
5d:ef:f6:bc:94:1a:3a:4d:73:19:b2:8a:a1:93:e6:8e:e8:a3:
36:b7:fa:e1:b2:5e:8e:11:ab:7c:8d:14:0a:7f:33:16:2d:9e:
a5:36:17:75:13:a9:12:fc:26:d8:b2:10:3b:ac:42:e5:41:46:
96:b8:c4:2b:61:11:32:17:8c:06:94:f0:fc:9d:35:cb:83:c7:
ec:e6:99:52:12:40:a0:dc:78:16:f8:2d:01:79:10:69:a7:a6:
ec:fc:6f:d4:19:c0:74:05:10:df:8c:63:d5:97:9c:aa:3c:3c:
e0:a9:83:7c:13:a1:c0:69:a4:7d:10:c9:52:4c:63:7f:22:c6:
96:9f:05:c8:3e:45:e4:ac:07:7e:b0:73:30:e2:37:1e:c6:85:
36:7d:1c:a6:57:4a:4e:44:46:11:f4:1b:c5:c7:02:4b:55:6d:
9f:86:78:bc:9d:65:a2:ca:39:09:88:02:c9:ce:c6:53:b3:59:
d2:f5:73:f8:78:c7:7c:ee:e4:80:c9:04:97:fe:f7:8d:10:64:
c4:7e:26:f0:d7:be:cb:c4:08:7e:05:f4:af:45:93:5d:68:38:
0b:68:74:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 18:27:09 2025 by rpki-client