Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json)
Hash identifier: 90hyl7ARKxk2JnGBBLFI2tZYrqpwlyyv252qPLflr9E=
Subject key identifier: CC:07:49:81:F5:D7:E9:C9:7B:BF:0A:CD:08:89:7E:7D:32:65:7C:D1
Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d
Certificate serial: 0196AAD5824EE860BC2E9D4793D3844EEF4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
Manifest number: 114A
Signing time: Wed 07 May 2025 13:00:41 +0000
Manifest this update: Wed 07 May 2025 13:00:41 +0000
Manifest next update: Thu 08 May 2025 13:00:41 +0000
Files and hashes: 1: Bu2qohV5DT207In6bmDkzPkl22w.roa (hash: yQgjgxJo0jD6Zb5Cbl39m04H6+9TPpDsNpPjtFWzK98=)
2: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: kkEntBhvNYuWI21zDmkA5EtiUd4/BJKu3nqmdC+GmyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:d5:82:4e:e8:60:bc:2e:9d:47:93:d3:84:4e:ef:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d
Validity
Not Before: May 7 13:00:41 2025 GMT
Not After : May 8 13:00:41 2025 GMT
Subject: CN=cc074981f5d7e9c97bbf0acd08897e7d32657cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:eb:ea:68:b6:32:0b:cf:96:76:8b:1c:19:8e:
25:94:22:ed:ff:e7:6d:fb:c5:d5:22:9b:ec:14:22:
e9:65:51:d7:f2:cb:06:d8:96:ae:41:6e:2b:2b:6c:
a5:4a:e2:94:19:fe:3a:2c:91:e2:c4:9b:4a:f7:71:
67:62:f0:a5:d6:81:17:91:44:f5:54:0a:3e:24:fe:
bc:16:97:52:81:a7:65:9b:35:bb:7a:f0:4e:c0:90:
9b:a2:7f:cb:aa:a8:d5:c4:a1:90:ea:44:72:b7:de:
a3:ca:66:92:6b:33:a3:f8:9a:3f:39:c2:8b:f8:99:
4c:47:0c:25:8d:63:62:87:68:39:64:3f:ba:7c:52:
96:d0:cf:87:7c:ea:f6:5c:1f:35:94:a9:df:ca:db:
d3:dc:42:4b:bb:d6:7d:c9:53:90:99:20:e5:c8:6e:
0b:0f:76:55:33:1f:31:c8:77:85:72:9a:59:a8:67:
8b:bd:e5:27:dc:27:9a:b7:19:b4:f9:f8:c8:d2:d0:
d6:f0:b4:7d:6a:1a:d9:af:6a:b9:0b:31:fe:92:ce:
55:87:d8:ad:20:c6:71:f6:35:c6:df:36:70:b6:e3:
3d:1f:fe:ab:2e:bc:df:6b:1e:2f:6e:43:48:cf:3f:
8e:f8:e2:8b:f5:c6:2d:1d:f4:e2:49:d2:d2:76:cb:
61:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:07:49:81:F5:D7:E9:C9:7B:BF:0A:CD:08:89:7E:7D:32:65:7C:D1
X509v3 Authority Key Identifier:
keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:66:c2:b4:5d:f7:31:d0:11:d6:ac:13:d8:33:df:16:8b:e9:
ff:3c:06:46:73:b3:d1:d2:af:fd:83:b6:be:d8:bd:34:ab:42:
a0:00:96:0e:c0:b9:59:aa:b5:67:55:3c:d3:de:a0:1c:ea:ff:
bd:fa:af:b4:8c:ab:ad:64:e1:ee:ac:2a:97:b7:de:9f:45:75:
68:39:3e:8c:f2:7a:1c:ba:14:f3:13:f7:ee:01:39:09:54:89:
c6:e2:4c:53:10:f6:22:e2:8f:33:5b:ae:08:d2:bb:a6:77:07:
99:cc:36:ef:53:38:db:ba:e5:67:a1:15:d3:e0:8f:86:c0:6d:
57:c6:8a:6e:24:30:ac:45:40:2d:ac:ff:ec:f3:96:b7:aa:82:
80:41:40:35:28:6f:52:03:a6:d6:04:7e:c4:f8:40:87:fd:42:
d5:1c:b9:69:97:85:65:db:0d:02:eb:44:bf:5f:72:ed:f7:6b:
13:be:86:d6:0f:51:12:2d:5a:57:c2:bc:10:61:04:43:13:54:
92:cd:a2:92:b9:76:c6:54:23:4e:cd:a9:9c:2b:00:81:75:b8:
36:e9:d1:d1:c3:dc:b8:e2:c4:58:e6:ff:8b:f0:11:9c:f3:5b:
3b:c1:bb:31:ab:29:c7:56:30:08:a0:45:dc:b6:ae:37:61:ea:
94:b9:2e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 20:19:01 2025 by rpki-client