Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
File: XX2xSVjPTXheWe9cbGefjvVMHYs.mft (raw, json)
Hash identifier: NUwFWubF0MM09NKGFoEadUe/sh32vhxSvtE2/iiw9+0=
Subject key identifier: 14:7D:24:4B:B9:BC:F1:A4:63:34:61:9F:66:F0:40:0B:A3:78:C2:22
Authority key identifier: 5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
Certificate issuer: /CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Certificate serial: 0196C1CADAA61E2135C972C3CDAC69D992C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
Manifest number: 051E
Signing time: Mon 12 May 2025 00:00:19 +0000
Manifest this update: Mon 12 May 2025 00:00:19 +0000
Manifest next update: Tue 13 May 2025 00:00:19 +0000
Files and hashes: 1: XX2xSVjPTXheWe9cbGefjvVMHYs.crl (hash: ZuRsNzosDWFd7uSUvHWXuPuuv1Tvnose+BmUnGCmTSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 00:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:ca:da:a6:1e:21:35:c9:72:c3:cd:ac:69:d9:92:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Validity
Not Before: May 12 00:00:19 2025 GMT
Not After : May 13 00:00:19 2025 GMT
Subject: CN=147d244bb9bcf1a46334619f66f0400ba378c222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:52:5a:88:90:8f:bf:7d:65:a5:3f:1f:af:be:
92:f0:c1:27:4d:ec:fd:f9:fc:97:13:cf:58:0b:51:
b7:80:55:41:31:60:3a:66:30:49:6a:e6:71:5d:5f:
ba:c0:3d:ea:f2:ef:6d:18:1a:16:a1:a1:0e:ad:7d:
53:93:cc:07:cd:75:f3:22:18:a8:5a:65:60:2d:86:
3a:b0:1a:3a:69:6b:d8:fd:14:98:a9:30:bf:5f:4d:
51:20:49:bd:6f:49:2c:37:aa:79:92:e5:69:35:a3:
ca:b7:eb:72:95:ec:4f:52:86:d4:87:10:ad:78:b1:
03:4e:59:f4:81:12:59:fe:48:e9:81:ad:f1:18:10:
93:85:76:d7:bf:0d:f4:b9:30:ac:e7:c3:52:38:22:
f2:69:a6:ab:5f:44:37:d8:7b:39:ec:98:d5:08:d8:
05:36:a0:e9:f5:f0:ce:bc:c4:09:89:7f:e4:a6:a1:
eb:e8:5e:e3:94:cd:db:b0:7d:d0:46:1a:36:80:d7:
9c:17:86:ff:2c:5f:22:64:c9:2f:7e:33:f5:db:e3:
df:ff:8f:d2:e9:87:da:d9:01:4f:6e:3a:85:de:95:
e9:78:b1:54:cf:0c:b4:e5:2e:77:ae:9f:83:e0:61:
61:9b:3d:27:63:0c:5f:f1:94:7a:7f:d7:f7:bd:97:
3a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:7D:24:4B:B9:BC:F1:A4:63:34:61:9F:66:F0:40:0B:A3:78:C2:22
X509v3 Authority Key Identifier:
keyid:5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:34:0e:0f:d5:14:58:4b:70:aa:49:89:6e:10:3f:22:73:3c:
75:e0:db:2a:c3:e0:f2:3e:58:15:70:b6:57:2d:7a:eb:06:3b:
70:73:25:cc:16:1f:b6:63:7f:0e:1e:81:c7:b4:d5:f1:7a:b4:
40:6c:7d:3e:71:dd:34:c2:88:2d:14:b6:05:24:a8:95:92:04:
1a:bf:b8:6e:dd:65:75:6e:e6:9e:f6:1c:44:66:1f:6e:c9:d4:
be:2c:b0:10:b5:3e:d9:b6:19:15:4a:44:85:fe:cd:a1:68:bb:
9b:95:ec:c3:bf:4d:f4:59:70:63:83:f0:be:9a:94:5d:32:2b:
ce:3b:e7:33:f0:55:e0:3a:23:26:f9:fa:2f:78:04:fb:59:b1:
86:9d:94:01:ef:7a:12:46:74:1e:57:80:69:22:22:7a:1f:3d:
03:e7:02:5a:32:68:31:7d:c9:ad:2e:99:b8:2b:84:dc:39:a0:
e1:3e:4e:cc:fb:b1:39:8c:1d:77:fe:60:a1:c7:e1:5a:aa:a5:
95:2e:ce:0a:7c:82:31:78:8d:a4:e0:cf:3f:9c:82:ff:2c:f2:
7c:a7:f1:8e:90:07:1e:d4:c5:0e:ea:3b:c4:71:68:64:f0:40:
d0:e6:cc:ec:df:3b:c9:f2:6b:05:f1:cd:8b:46:55:bc:cc:e8:
f6:00:35:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 05:16:05 2025 by rpki-client