Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
File: xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft (raw, json)
Hash identifier: eZK/LNQeuh+DXEKMMWM/bLZ5RwTos80jRhlbj4r3hMM=
Subject key identifier: A0:25:B7:14:8F:B9:D1:58:F9:EB:F1:EE:8B:CC:18:CE:48:D7:98:87
Authority key identifier: C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F
Certificate issuer: /CN=c596785476efbae77f961d23057057fa036fb27f
Certificate serial: 0196DB545105DEE7A6C57845DA14CAAF802B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
Manifest number: 13EF
Signing time: Fri 16 May 2025 23:00:58 +0000
Manifest this update: Fri 16 May 2025 23:00:58 +0000
Manifest next update: Sat 17 May 2025 23:00:58 +0000
Files and hashes: 1: xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl (hash: PzrrhrEU2M9fbF/UPmloG0cPIxxi+H4FQO4F9Zb9sD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:db:54:51:05:de:e7:a6:c5:78:45:da:14:ca:af:80:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c596785476efbae77f961d23057057fa036fb27f
Validity
Not Before: May 16 23:00:58 2025 GMT
Not After : May 17 23:00:58 2025 GMT
Subject: CN=a025b7148fb9d158f9ebf1ee8bcc18ce48d79887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ba:30:9b:29:55:94:1b:10:30:49:42:f7:58:
f7:ed:cb:e4:a2:11:eb:27:d3:34:9d:8a:4c:06:f9:
e5:d0:f1:2d:74:3b:f4:90:05:76:3d:bf:25:dc:74:
b6:2a:cf:d5:d5:4f:42:ac:26:1b:f2:a5:4e:9a:15:
26:6e:8c:c6:11:65:f4:f6:e7:e1:fb:4c:9a:a2:10:
fe:ab:1f:e9:05:ba:e2:a2:b5:d3:d7:74:55:7c:b4:
ff:21:b9:b9:bc:bd:5b:cd:b4:45:f0:7f:e3:e2:71:
57:37:8c:29:e8:50:fc:39:d3:04:75:98:82:1c:f3:
e0:84:cb:c2:86:3f:3b:b5:29:93:d6:97:fb:4f:7f:
9f:9c:1a:98:a4:c0:b2:b2:a7:15:33:69:c3:8d:10:
4c:e6:d2:66:a7:9d:54:ca:a2:a4:05:2e:c4:9a:81:
4f:fd:b4:a7:d8:47:1c:ff:b6:cc:f5:a8:6d:28:d4:
1a:92:ce:ed:49:1a:e2:74:d4:00:d7:ae:00:50:3e:
ea:f3:47:29:22:ca:ce:7f:21:4a:3f:27:5e:6d:3e:
d3:90:0b:b3:44:9f:d4:1d:09:0d:04:63:45:b2:08:
93:87:69:6d:74:23:40:0e:e0:63:2b:be:5c:7f:2f:
12:b8:c6:ae:ae:34:18:5d:c6:f4:ca:af:3a:e7:17:
3c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:25:B7:14:8F:B9:D1:58:F9:EB:F1:EE:8B:CC:18:CE:48:D7:98:87
X509v3 Authority Key Identifier:
keyid:C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:c1:33:b6:ff:20:69:5b:e6:be:7a:19:0f:f7:56:60:f6:e8:
61:14:50:19:a4:22:1f:d0:28:db:97:14:f7:77:82:84:e7:8e:
82:76:02:38:01:49:dc:5f:ea:74:ce:d7:56:89:58:93:a0:1c:
86:15:2b:c5:80:9c:eb:32:80:71:b5:8a:60:50:aa:7f:50:b1:
2e:5e:ee:e6:1d:09:1b:07:eb:3c:68:f0:19:f1:1c:89:a7:aa:
3e:32:34:9b:2c:4d:ef:ef:b0:e5:e3:59:82:1d:72:1c:c7:f6:
13:81:ed:63:b9:1f:a9:c1:65:bd:3f:bc:f9:88:0c:23:8b:bc:
95:5d:39:98:fa:fd:76:49:e9:2b:85:dd:d3:be:37:33:fd:e8:
ed:0c:3e:20:7b:22:bf:59:00:1f:d3:4a:8b:4e:26:18:7e:15:
ec:ff:d6:b1:8e:f9:44:27:15:ac:2f:62:75:a0:a7:23:39:f6:
ce:ca:5e:da:55:ea:dd:88:bc:3c:4f:7a:7d:5c:aa:2c:4b:c9:
e3:39:cd:a4:79:f1:0a:eb:72:ec:2a:55:01:7e:7b:b1:b6:27:
2a:df:15:a1:32:e9:13:95:97:07:12:c9:0c:8f:c0:69:99:3c:
56:5f:9f:bf:8e:05:7c:25:95:38:73:4e:75:ab:29:81:75:24:
ce:a7:cf:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 02:33:40 2025 by rpki-client