Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
File: XX9jQBQHwcx5excDToE9IlT5dz4.mft (raw, json)
Hash identifier: ZpXULZtN9/Rb49BEJtArBCS8vbg7SoNb0Ac2gTZq8TQ=
Subject key identifier: 36:2F:8C:62:62:78:FD:86:82:EC:78:96:1F:93:77:74:D8:C1:10:04
Authority key identifier: 5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
Certificate issuer: /CN=5d7f63401407c1cc797b17034e813d2254f9773e
Certificate serial: 0196C194101F394434A3A5FA662A3A9AE06C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
Manifest number: 0BCD
Signing time: Sun 11 May 2025 23:00:28 +0000
Manifest this update: Sun 11 May 2025 23:00:28 +0000
Manifest next update: Mon 12 May 2025 23:00:28 +0000
Files and hashes: 1: XX9jQBQHwcx5excDToE9IlT5dz4.crl (hash: FScgUHrI1pwYmXhAw4nUieWS+k294MVcSvBiI3lcVm4=)
2: d_GxW2d1XGEYH2UR9fC88UUW3QY.roa (hash: uor8f2a3ITsSo8ZIn5M2P4KmPLaok++1jFjqHJFf6Ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:94:10:1f:39:44:34:a3:a5:fa:66:2a:3a:9a:e0:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7f63401407c1cc797b17034e813d2254f9773e
Validity
Not Before: May 11 23:00:28 2025 GMT
Not After : May 12 23:00:28 2025 GMT
Subject: CN=362f8c626278fd8682ec78961f937774d8c11004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5f:a1:c3:52:d1:9f:04:6a:03:5b:03:fb:d3:
c8:0d:e3:92:ef:50:43:22:ef:77:69:5b:9c:db:b6:
8c:95:16:ed:4f:17:58:4a:66:1f:c1:ce:9e:c4:8d:
0a:a2:33:af:43:02:42:75:7c:c9:54:df:5d:7d:6d:
a3:14:54:e6:5f:55:0b:23:e8:e6:03:41:6a:20:93:
d2:29:27:15:f4:4f:4e:5c:3f:9a:9e:1a:65:e9:18:
80:6e:df:93:6a:06:bc:83:39:fe:50:aa:07:d3:4c:
76:ee:81:52:60:2f:61:d4:02:8c:44:c4:58:83:9a:
6c:c6:c0:98:fa:d8:35:0c:d0:bd:fa:07:f0:a2:4c:
58:17:19:75:c5:ab:ec:50:c2:9b:0a:23:0a:aa:0d:
de:ca:d3:28:a6:66:cf:92:60:2a:6d:73:d1:89:79:
e9:a1:29:d2:c2:4f:cd:69:76:76:e8:3b:59:a7:de:
b4:fc:53:14:aa:2e:64:19:25:2e:b4:59:5f:19:0f:
1a:67:2d:eb:27:f1:d9:15:93:94:83:01:f7:98:47:
e2:27:d5:6f:b9:b0:fe:84:96:0b:ed:33:38:4d:8a:
a3:7e:38:12:8f:1d:ed:2f:ca:72:51:80:d5:32:f9:
f9:9b:f4:0e:eb:d3:7a:0a:c9:6e:27:03:90:61:f3:
4f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:2F:8C:62:62:78:FD:86:82:EC:78:96:1F:93:77:74:D8:C1:10:04
X509v3 Authority Key Identifier:
keyid:5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:99:d6:1b:7b:02:f1:95:e6:e1:42:5c:80:a9:41:81:c9:de:
20:9b:e3:79:f6:dd:8a:5e:98:30:da:80:77:db:5f:06:b5:5c:
41:ff:d1:be:89:99:c0:93:98:c4:62:c7:ae:82:bc:65:6d:58:
b2:50:f7:e6:7e:af:29:7e:66:de:ef:13:d3:d8:78:61:d9:71:
b5:cc:27:1b:b2:d3:1d:f1:17:a2:5a:4a:0e:48:ad:3d:fa:a7:
08:d8:a2:63:77:58:90:32:2e:30:c3:e4:b9:68:ff:88:01:e5:
e3:12:22:7f:e8:ef:3c:ae:8c:82:a3:d1:14:13:7d:ae:dc:94:
1b:18:b0:4c:e0:07:59:4a:eb:e4:07:ca:15:bd:a7:0b:d9:ac:
78:90:f1:32:63:c8:79:f1:7d:30:c4:d9:a3:5b:fe:4c:ef:44:
4b:92:64:8e:1d:f8:d1:59:09:f1:25:2f:80:9e:f5:29:50:c3:
97:50:c4:42:19:67:ab:e3:eb:93:2a:34:da:d0:f8:62:41:2d:
66:56:5e:75:9f:2b:7d:32:a8:33:48:5c:d8:0f:d5:e2:ed:1c:
bd:f8:19:61:ea:2b:11:aa:30:ee:f7:46:42:4b:d9:21:2d:d1:
8d:36:8b:7c:99:bb:7c:92:ce:ed:a1:30:f9:8d:af:f2:dd:0e:
51:6e:8d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 08:54:47 2025 by rpki-client