Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: YX0Q38HGxMKqBx/Z97+f7wVnVHemPy4OA2Fd7nNh9HQ=
Subject key identifier: C1:1D:6B:6B:59:36:71:23:30:83:DD:D8:E4:72:F3:84:D6:C9:8B:FE
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 0196B2FC7273FA5FC6E5CA70333332B163E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 152A
Signing time: Fri 09 May 2025 03:00:10 +0000
Manifest this update: Fri 09 May 2025 03:00:10 +0000
Manifest next update: Sat 10 May 2025 03:00:10 +0000
Files and hashes: 1: kMIoPYj99g2K5sWXNcD0fsxHkHM.roa (hash: FopABAV6PSptIp6OTBNiTRgtYU723NWq9ChEZhzR3FM=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: kceBQCvj7qriEs+yHcXlCwpf1vrP+zOL1zUgZmX5tpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:fc:72:73:fa:5f:c6:e5:ca:70:33:33:32:b1:63:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: May 9 03:00:10 2025 GMT
Not After : May 10 03:00:10 2025 GMT
Subject: CN=c11d6b6b593671233083ddd8e472f384d6c98bfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:df:b5:19:4a:90:8f:a8:86:4d:11:c1:da:d5:
24:5a:8e:19:35:8b:1e:50:13:f4:66:61:b5:53:10:
de:63:40:00:48:40:0d:0c:13:7c:5a:35:1e:c1:0b:
25:ce:9f:9c:7b:1f:3f:42:b0:16:6b:29:15:a5:95:
2c:e0:21:bc:d7:50:5f:b7:50:f0:e0:ea:e2:14:13:
27:f9:f3:35:f5:f3:3f:d7:bf:57:2d:b8:cb:ea:45:
0f:c7:d5:79:4c:7a:21:4f:9c:f1:93:f2:07:9b:17:
ac:89:5a:2c:ab:d4:36:03:01:bc:d4:ad:81:f9:80:
35:37:1a:63:12:c0:35:71:e4:42:ef:12:84:5c:c1:
39:dd:1f:0f:19:ac:60:6f:2e:6a:e2:98:36:45:0e:
bf:77:8a:e4:99:76:40:21:ea:ba:f3:43:84:cb:b9:
16:23:0b:c2:2b:50:23:b7:fd:eb:8b:44:5b:a2:7e:
c3:e6:fa:37:9a:44:ce:07:5f:e5:6b:ef:3d:12:27:
52:18:45:77:bc:78:a5:34:10:75:a3:31:8c:99:ac:
34:85:af:7c:34:fe:01:28:ba:63:01:a9:e2:82:dc:
f0:63:6a:a7:c9:90:c2:d6:26:76:ea:05:fb:52:4a:
f2:bc:60:57:92:31:f7:89:b1:60:c2:11:f2:c8:a5:
67:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:1D:6B:6B:59:36:71:23:30:83:DD:D8:E4:72:F3:84:D6:C9:8B:FE
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:75:ce:4f:20:9f:6d:e4:ad:1c:ea:e1:5c:05:bf:f2:ce:e8:
7b:dd:f3:e5:3c:a2:dd:2a:38:68:b5:47:10:dd:f8:d1:5d:4c:
df:76:2f:33:d7:7b:07:1e:9c:a1:a8:5e:a1:22:21:a7:12:6b:
88:eb:06:87:10:10:f5:78:99:89:9c:5d:ff:03:3a:33:ee:fc:
20:29:02:48:2f:06:fd:60:62:c2:ef:85:15:91:d6:60:b8:95:
af:2c:bf:3f:bc:90:43:1c:7a:5e:0d:71:37:a3:41:3c:35:b0:
9d:c5:64:26:ee:63:58:8c:d2:d4:dc:28:02:82:9f:73:6d:de:
3c:2f:fe:bb:3e:18:9e:72:02:94:3c:5f:7b:de:eb:45:cc:b9:
3d:67:c2:ea:43:ce:96:95:f0:c0:a4:8b:e5:2b:0b:8f:af:7c:
f4:a4:6c:ae:65:1d:7f:b0:ab:e6:0f:10:46:9e:5c:94:12:3a:
fb:3b:12:f7:58:0a:a3:57:77:3c:22:93:89:a4:73:04:53:b0:
a7:a3:e2:e3:2b:ea:0d:a2:7b:87:02:08:ff:cf:7f:b9:41:3c:
cd:a2:1d:13:53:aa:ed:55:68:aa:6f:6c:1d:0e:4a:0b:3d:58:
78:d5:03:5f:cc:7c:e8:3d:4b:92:89:63:8b:d4:8b:ad:18:c5:
ad:65:46:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 08:53:05 2025 by rpki-client