Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: SdzXSgFd64woZ4EKzOBY2VgbAD8ClKd2aSNfew6Q+S0=
Subject key identifier: 02:5A:55:E5:AB:64:6A:28:23:2A:26:80:9F:7B:84:6C:78:32:25:10
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 01969FACC3E55E9815501CDEEA912199C7BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 0A34
Signing time: Mon 05 May 2025 09:00:21 +0000
Manifest this update: Mon 05 May 2025 09:00:21 +0000
Manifest next update: Tue 06 May 2025 09:00:21 +0000
Files and hashes: 1: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: GWThjwAZAIcVHJpPmPKuVGbUL0/YA17TbMvUiBbXK3s=)
2: vKqft3GpUgOOXSf2VjTKls-pWMw.roa (hash: 5Tvu15lYIVA9/K7Qk9i7l4tCbiMQ02zrBkIoUMRXadY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 09:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:ac:c3:e5:5e:98:15:50:1c:de:ea:91:21:99:c7:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: May 5 09:00:21 2025 GMT
Not After : May 6 09:00:21 2025 GMT
Subject: CN=025a55e5ab646a28232a26809f7b846c78322510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3c:31:b3:13:4a:32:d6:5b:26:19:ef:f7:2a:
7c:c4:12:d7:c0:ad:ad:3e:43:35:3f:fe:f3:42:29:
76:d3:3b:87:d3:4e:20:46:c1:96:fc:fe:c3:38:ee:
56:ab:a8:b8:4e:11:a3:43:29:75:bf:1f:1f:d3:b8:
45:9e:4e:8c:48:28:e1:85:26:a9:e0:02:80:05:b2:
92:c1:ba:fc:aa:00:b8:99:0a:0f:7e:e3:fd:75:ff:
40:c5:0a:bb:1b:31:ef:43:a4:d7:5d:f4:1d:29:c0:
6c:03:dd:90:41:6b:0a:c0:b1:de:c3:da:3f:00:cc:
fb:65:d4:ee:ef:f1:aa:ab:54:e4:60:e9:87:7a:9c:
1e:ed:a9:f6:9c:b5:4f:65:01:c0:12:5f:bc:17:ce:
7e:f5:1a:53:90:af:47:5a:65:41:46:1c:2e:7f:69:
2d:db:6f:f8:3c:c9:ee:5e:e5:bf:ed:b5:8e:f2:8b:
cd:fe:e2:d4:d0:ca:5a:62:27:e2:0a:b4:29:2b:76:
e1:bf:19:f7:e3:5d:23:15:ee:a2:9d:06:70:65:76:
c5:9b:30:f4:39:3b:cc:7a:45:ea:16:fd:6f:c9:15:
14:a5:d6:96:ca:7b:20:3c:f1:dd:5a:08:88:8f:89:
25:ad:4e:5d:82:3d:a4:d8:f7:ae:7e:d3:a3:1e:e3:
7b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5A:55:E5:AB:64:6A:28:23:2A:26:80:9F:7B:84:6C:78:32:25:10
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:6d:43:01:90:4a:63:fa:70:a0:65:3b:f7:a6:4a:33:46:72:
43:51:bb:90:ce:33:f2:cf:e5:46:c5:25:1b:e5:af:cb:bd:46:
43:a4:ee:8e:df:e4:0f:af:d7:d4:79:78:d4:70:a6:cd:ac:56:
55:ed:55:0d:ff:29:42:e9:08:2e:44:61:d6:e7:aa:86:5d:69:
08:f8:6e:a7:cb:6a:34:49:ee:d9:95:05:9a:ec:94:3c:ee:aa:
4d:91:93:13:3c:c9:12:79:54:ea:94:94:39:e1:c4:ad:04:72:
48:bc:12:39:6d:4f:43:89:df:e6:78:e6:56:37:80:41:ab:7b:
80:f6:ae:55:c5:20:15:e1:c8:3f:64:af:75:42:3b:1d:1e:aa:
9c:f0:1d:1f:bd:12:c2:f8:f0:b5:06:ae:76:bd:45:60:aa:53:
ce:38:b2:ec:22:08:56:48:60:43:fb:aa:b9:4f:c4:60:eb:e8:
f6:61:fb:92:f2:78:d1:2c:82:99:9e:95:c2:34:29:fc:af:c2:
b6:c1:97:09:51:61:c6:5a:5a:c9:29:8a:53:e7:2b:f7:1b:e5:
80:19:82:f8:41:d2:4d:1c:cb:25:82:f9:8e:90:64:d6:a6:53:
dd:17:03:3b:45:c2:d5:62:3f:00:8a:c8:62:2d:bc:10:bd:5c:
0c:f4:c8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 17:47:48 2025 by rpki-client