Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
File: xFz9uYA84FcULRh_hrxPVnHX63s.mft (raw, json)
Hash identifier: F/NAemF4fwQP/bmnKccbZvKy5LZEN+WxHo9vWQwmMVU=
Subject key identifier: 39:03:61:13:2C:0F:8A:1B:CB:01:12:BC:9A:93:9B:82:2B:80:67:D5
Authority key identifier: C4:5C:FD:B9:80:3C:E0:57:14:2D:18:7F:86:BC:4F:56:71:D7:EB:7B
Certificate issuer: /CN=c45cfdb9803ce057142d187f86bc4f5671d7eb7b
Certificate serial: 0196C72805700EAAFE2C6DA41ED490D6FD57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
Manifest number: 1533
Signing time: Tue 13 May 2025 01:00:10 +0000
Manifest this update: Tue 13 May 2025 01:00:10 +0000
Manifest next update: Wed 14 May 2025 01:00:10 +0000
Files and hashes: 1: xFz9uYA84FcULRh_hrxPVnHX63s.crl (hash: exAFEPuFTv+i5auYEVo+J91H4fc00km6sueu1bgEX5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:28:05:70:0e:aa:fe:2c:6d:a4:1e:d4:90:d6:fd:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c45cfdb9803ce057142d187f86bc4f5671d7eb7b
Validity
Not Before: May 13 01:00:10 2025 GMT
Not After : May 14 01:00:10 2025 GMT
Subject: CN=390361132c0f8a1bcb0112bc9a939b822b8067d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:50:5a:10:a4:1e:29:eb:f9:32:52:8c:8a:a0:
d1:21:8a:21:fe:4e:0d:40:d0:68:73:d7:86:04:84:
ed:78:a8:df:b8:2a:5b:5b:c8:28:33:d0:32:c3:63:
7a:c4:24:f7:8f:7c:6e:f2:8a:4b:4c:19:b7:50:fd:
6b:4a:6b:fd:43:dd:6c:a5:9f:51:8f:f2:c1:df:16:
85:2b:a4:11:da:26:57:dd:ac:96:e5:c4:67:3e:bb:
cf:dc:15:53:a8:c0:b0:ba:93:a4:09:95:dc:db:94:
3d:8e:81:73:67:7f:d1:75:cc:e5:b5:de:37:c6:7c:
ae:32:da:29:e5:48:c2:4d:73:00:ec:cf:df:f6:dd:
06:fb:9d:e5:31:38:21:51:fa:07:28:09:75:9a:9f:
53:75:33:3b:1e:ef:80:ce:81:8a:c8:fe:ce:8d:98:
c7:d9:da:be:19:14:c8:9e:61:28:76:d6:35:b4:78:
a1:31:f1:fd:dc:b6:fd:2a:3d:f7:ba:83:05:dd:de:
8c:e7:97:ed:d0:6c:28:a9:c1:35:3b:12:f6:56:b7:
86:11:9f:02:56:9f:40:74:16:cb:64:67:41:f4:b0:
d8:6d:b5:19:c0:5b:9c:53:ac:43:ce:8e:5a:7c:65:
a8:7a:42:26:9a:8b:9b:35:98:ba:33:d9:a5:f4:73:
29:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:03:61:13:2C:0F:8A:1B:CB:01:12:BC:9A:93:9B:82:2B:80:67:D5
X509v3 Authority Key Identifier:
keyid:C4:5C:FD:B9:80:3C:E0:57:14:2D:18:7F:86:BC:4F:56:71:D7:EB:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:49:fe:85:83:8d:2f:8f:56:5f:3e:09:fd:5d:79:58:da:5f:
47:08:c8:91:48:14:58:c9:ec:f3:da:2c:c7:a5:bb:80:10:0a:
0d:44:bf:03:97:d2:75:9a:42:c4:79:33:61:9a:2c:f3:d6:79:
53:9e:68:1b:26:43:d1:a5:5c:f3:ed:3f:ce:71:48:b9:8e:86:
01:9d:4d:f6:79:79:5d:27:bc:4a:58:53:a0:bd:01:d4:a3:bd:
95:db:80:53:76:88:b9:74:c4:2a:58:ad:0f:50:cd:5f:1d:6f:
12:2c:fe:73:14:86:22:9f:cc:96:4e:d6:c7:69:23:c0:0a:5d:
34:e5:bc:18:26:90:25:47:df:48:22:50:cc:f5:49:5f:26:30:
48:a0:48:c0:78:9a:51:f5:23:1c:6f:d9:37:0b:77:2c:56:2b:
02:9b:fd:d2:6e:0a:31:e4:ab:74:5b:26:2e:bf:97:ae:14:4c:
9f:a7:d9:e5:c0:40:2a:4f:2a:87:2e:ce:76:d6:53:84:0d:04:
85:06:79:f6:ec:cc:d1:b8:4a:4e:f3:b4:a1:7a:e1:cf:4b:a5:
a6:4a:f2:e2:04:e7:7d:88:d4:d0:a3:c1:32:a1:3f:4e:3b:c8:
32:63:74:66:8e:67:4b:5e:bc:7f:36:51:85:d7:93:35:ec:b9:
9d:9b:25:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 06:32:08 2025 by rpki-client