Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
File: Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft (raw, json)
Hash identifier: tmfhAvZVaVWiraKd9YwSk0RHVzO49EgYtICByLXwhV0=
Subject key identifier: C6:7F:A0:8C:E5:F0:8F:47:8C:3E:35:37:74:8F:23:AE:B5:1E:AA:59
Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Certificate serial: 01969DBEA4F5C31F5739C8973288BE5DC4F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
Manifest number: 0A14
Signing time: Mon 05 May 2025 00:00:39 +0000
Manifest this update: Mon 05 May 2025 00:00:39 +0000
Manifest next update: Tue 06 May 2025 00:00:39 +0000
Files and hashes: 1: J8DHZy4tMi-CFo8AY9DJvx0HWac.roa (hash: 5pNADEij5vtMepG8+Pp6x2k3eZ8RSfQB0arADw8u/hQ=)
2: Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl (hash: hzmpHcyV7JzqImNeTrAaBACSPGYt5vk9cFsRmdGZ7ZI=)
3: bm8bVIPNaA-bltdEZPHxvRw4XQU.roa (hash: DdBeXwj6zhT54fs1VrM1Iq2GimR5mvINmSrgTPAY9tY=)
4: fcJb-6V4S8Ggt4XkeQ4z4NeOvBg.roa (hash: Ok0E8qecmwKHIVZlR2uj+ZosbjuqbuM99KMf84z3ECc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:be:a4:f5:c3:1f:57:39:c8:97:32:88:be:5d:c4:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Validity
Not Before: May 5 00:00:39 2025 GMT
Not After : May 6 00:00:39 2025 GMT
Subject: CN=c67fa08ce5f08f478c3e3537748f23aeb51eaa59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a9:80:37:77:48:b3:4d:cf:b8:a0:21:8d:e9:
05:e1:9b:df:8b:89:46:e8:b1:b4:ab:8f:d3:74:0d:
b6:26:10:9d:f3:9d:87:b4:66:1b:50:b2:3c:e5:ac:
d3:e2:ee:f4:0e:e4:22:64:7f:e9:77:bf:e8:9a:ca:
c5:5a:76:8e:58:e0:55:f1:1a:d5:a2:aa:9d:b8:dd:
e1:da:90:f4:32:23:74:82:eb:52:68:13:22:4b:d3:
2a:1f:b6:df:a2:15:16:db:ac:30:c0:83:67:1f:5b:
3c:01:04:b7:c2:e1:64:2b:39:aa:59:40:76:b6:c5:
25:d2:34:d7:d4:0d:83:81:6b:b6:06:9c:9a:8e:b9:
e3:ee:7a:5f:c1:3c:a3:0f:d6:76:3e:be:eb:09:7b:
f1:5f:13:13:40:ab:ae:ff:b7:71:b6:a4:49:78:84:
87:3b:4b:cd:39:ae:2e:38:ff:7c:81:8f:fe:24:1f:
92:eb:5a:63:6a:10:5d:ab:4e:31:84:41:7b:04:43:
12:d6:c2:c6:ee:40:57:7d:90:d4:91:f8:ae:7c:e8:
69:66:c0:24:2f:f6:56:7d:61:56:fa:43:02:3d:a6:
bd:f7:4f:0c:3a:b9:31:c7:eb:48:e4:8a:24:3b:6f:
4b:09:9a:31:04:e9:dd:f5:a9:4c:e3:a5:04:97:76:
0a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:7F:A0:8C:E5:F0:8F:47:8C:3E:35:37:74:8F:23:AE:B5:1E:AA:59
X509v3 Authority Key Identifier:
keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:1b:68:34:15:e4:de:13:0f:26:89:ac:cb:b2:ac:e1:a0:df:
7a:d2:45:f7:98:b2:a7:0f:03:2b:db:31:3f:ed:be:26:e4:04:
2d:05:59:1b:dc:1a:dc:f5:d2:cc:b7:4a:bd:2c:b2:25:1e:e7:
2e:5f:ac:c5:6d:e8:35:ab:cf:3b:ec:53:ac:16:ef:8e:c2:26:
a3:1b:37:28:74:fe:d7:c2:04:2d:d0:e5:1e:ef:27:32:7e:a5:
19:77:10:69:71:1d:c4:f9:cf:09:ef:52:66:1d:78:e3:7f:45:
5e:52:d4:56:ec:ad:ed:09:8a:63:e3:64:b8:5f:47:24:0a:df:
04:14:a5:7d:a9:3b:f1:2d:22:a9:b8:50:50:ec:27:71:45:9d:
33:32:35:70:a1:7e:30:8c:04:82:44:01:db:e8:07:b8:ec:e3:
9f:ce:ed:af:d7:a7:c4:5a:7f:be:ff:3d:3c:bd:9b:b0:45:e8:
89:35:69:e2:66:26:80:4b:14:a3:32:c9:7a:fc:c6:a4:e5:f3:
0c:2c:53:8f:1b:08:4a:4e:88:ec:04:39:6f:a2:74:e7:b9:7e:
3e:49:af:21:dd:0e:28:59:01:a0:67:59:0b:b5:c2:09:04:c7:
99:14:23:c2:cd:eb:9e:71:69:59:99:83:4f:ca:b0:ad:d5:b7:
5b:0b:c3:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 05:31:49 2025 by rpki-client