Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
File: XeYTaCVSAQKY86aUoA18WQYGC5U.mft (raw, json)
Hash identifier: bVvyMiTNI0JZFAJz+YjPZ5WELyMqUZKGGkP6qGcUd9Y=
Subject key identifier: BC:1B:96:AA:66:61:B3:7C:80:2A:A1:7F:79:6C:36:F2:1D:E9:37:5D
Authority key identifier: 5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
Certificate issuer: /CN=5de613682552010298f3a694a00d7c5906060b95
Certificate serial: 0196C9BBB0B646E70809670D1C70AE9F982A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
Manifest number: 153D
Signing time: Tue 13 May 2025 13:00:42 +0000
Manifest this update: Tue 13 May 2025 13:00:42 +0000
Manifest next update: Wed 14 May 2025 13:00:42 +0000
Files and hashes: 1: XeYTaCVSAQKY86aUoA18WQYGC5U.crl (hash: Zi/Eg0orxX+jP/V879PkDlZQ0fOS/fjHNADHHAQ4b+s=)
2: auYlcZnEp-yqavQsok9_TPLHAq0.roa (hash: kbe3quRrlIxTjuDhfKrAisNkV8HOTBuxWR/raJshlU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 13:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:bb:b0:b6:46:e7:08:09:67:0d:1c:70:ae:9f:98:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de613682552010298f3a694a00d7c5906060b95
Validity
Not Before: May 13 13:00:42 2025 GMT
Not After : May 14 13:00:42 2025 GMT
Subject: CN=bc1b96aa6661b37c802aa17f796c36f21de9375d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7b:19:bb:0e:63:49:eb:cc:b9:e3:23:3d:3c:
a0:0e:22:60:eb:9f:77:1b:da:a3:cb:9f:61:f3:b7:
9a:f4:27:af:81:82:fe:47:34:e8:55:ea:b6:a2:5b:
b7:b1:66:1a:26:fe:9b:c9:d5:d9:80:7c:b8:c7:8a:
d1:1c:5d:29:c3:58:18:dd:6d:df:b4:73:e1:c3:b7:
b3:a6:65:00:59:fd:fc:4d:2f:69:f8:da:2b:33:18:
42:71:57:fb:fa:90:23:9f:b8:13:ab:7c:7a:2f:64:
0e:2d:fd:e2:5d:e0:d0:35:8f:e6:47:f7:62:69:cb:
88:da:50:0c:18:56:d6:14:60:5b:8a:62:8d:e0:10:
ff:81:68:dc:95:1f:f3:c8:8e:77:b4:80:2f:86:64:
01:0c:7d:a8:d2:0a:c3:3a:38:bc:4e:4f:10:7a:08:
f2:0f:90:5d:7b:35:17:39:40:1d:81:59:7e:aa:99:
ea:e6:32:e1:4e:1c:21:3d:29:80:8c:7b:c7:2c:99:
40:bd:21:43:62:1e:c9:40:b8:56:a4:0f:36:fe:74:
6f:e6:ea:72:ca:f7:ac:33:f7:b5:59:2e:3d:c3:26:
fe:26:65:52:4b:08:15:48:2d:40:6c:dd:37:e8:06:
38:e7:da:50:c6:10:91:71:f7:dc:71:49:b8:f8:1c:
1c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1B:96:AA:66:61:B3:7C:80:2A:A1:7F:79:6C:36:F2:1D:E9:37:5D
X509v3 Authority Key Identifier:
keyid:5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:8c:4e:18:a3:e5:9d:42:77:4c:3b:29:ed:88:89:b5:f3:13:
50:d3:04:68:dd:97:0e:b3:31:e5:b9:0c:79:27:13:e7:52:29:
9f:a9:b7:63:ba:f0:e9:cf:26:be:68:61:25:5c:ee:93:75:95:
74:84:25:88:9e:13:dc:c5:16:c9:b5:36:80:12:15:a2:60:61:
2d:54:ac:fb:35:17:54:93:0a:64:97:0c:be:94:7e:ee:b5:bf:
3a:82:24:4e:55:6a:a5:ff:c0:a6:5f:e0:3a:4f:a9:6a:a4:de:
3f:8c:51:8f:53:65:f9:6d:9d:4b:2d:d9:b6:44:36:75:a7:d9:
bd:f0:f5:a9:d6:57:ea:4c:90:41:c6:14:e4:72:d7:e2:f3:97:
c0:65:ac:55:cd:02:f2:6d:4f:42:28:71:79:8c:8b:9c:98:7c:
3e:25:1b:3f:03:76:a9:b3:67:08:05:3f:6d:f1:43:d5:8b:dc:
4e:e6:97:98:13:ff:8a:3e:6b:ba:6a:04:f3:34:5f:13:7a:47:
7b:d6:03:8d:3d:6c:9e:65:f7:5f:22:c2:5f:df:a2:54:72:a9:
94:ac:95:89:16:f4:cd:54:59:0a:a6:02:b9:fb:93:42:e0:79:
5e:01:bf:22:57:c0:b4:23:ba:1c:4f:f2:d1:f1:3e:2e:02:46:
e7:f4:30:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 14:51:30 2025 by rpki-client