Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.mft
File: xxovfXzIw2N0bpa8P8yLBflgb-o.mft (raw, json)
Hash identifier: COgvN55nE2qagZUQM3ObSONWdqEseqb38xgkRrOizx4=
Subject key identifier: AA:FE:B0:06:50:CC:75:0A:18:0D:B7:32:EA:D1:69:45:AF:5D:23:E1
Authority key identifier: C7:1A:2F:7D:7C:C8:C3:63:74:6E:96:BC:3F:CC:8B:05:F9:60:6F:EA
Certificate issuer: /CN=c71a2f7d7cc8c363746e96bc3fcc8b05f9606fea
Certificate serial: 0196A5AF7154AEFDDEDD2FF01BF999D51A8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxovfXzIw2N0bpa8P8yLBflgb-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.mft
Manifest number: 1526
Signing time: Tue 06 May 2025 13:01:00 +0000
Manifest this update: Tue 06 May 2025 13:01:00 +0000
Manifest next update: Wed 07 May 2025 13:01:00 +0000
Files and hashes: 1: xxovfXzIw2N0bpa8P8yLBflgb-o.crl (hash: cwe+b6kUq3jQwJMQHoh6GWfvAOIxbWXqKg78nwXzW0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/xxovfXzIw2N0bpa8P8yLBflgb-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:af:71:54:ae:fd:de:dd:2f:f0:1b:f9:99:d5:1a:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c71a2f7d7cc8c363746e96bc3fcc8b05f9606fea
Validity
Not Before: May 6 13:01:00 2025 GMT
Not After : May 7 13:01:00 2025 GMT
Subject: CN=aafeb00650cc750a180db732ead16945af5d23e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3e:68:10:92:87:b4:4b:d2:65:ce:e1:f7:f4:
e5:f8:60:68:4c:fe:69:6f:44:eb:82:38:24:0f:c1:
50:98:ff:97:ac:b7:2d:33:a0:0c:5a:0e:6d:0b:52:
0b:4d:45:ea:49:64:60:1d:6d:f4:87:5a:af:e2:02:
6f:b4:f8:97:a9:b1:cd:1f:05:c9:1d:2e:9e:c8:91:
08:eb:89:86:dc:21:08:e8:07:5b:f5:a1:af:fd:fe:
b7:c0:ea:2a:ea:1e:4f:ad:f7:53:1b:15:be:d9:a2:
3f:9f:60:3c:bd:7b:fb:83:3f:ce:6a:78:5b:60:46:
2e:f2:74:85:e9:b9:b8:45:a3:21:1c:41:e6:72:3b:
80:73:da:b8:02:34:2a:7c:df:22:e9:87:81:d3:69:
b2:b1:8f:c6:8c:63:04:56:b9:55:be:41:98:dc:d2:
9f:43:b8:b4:c5:49:f4:52:80:9a:4f:92:66:01:16:
e5:c5:21:91:d4:38:7a:e2:be:97:f7:96:fe:d4:cf:
8c:c8:f9:45:dc:e5:1f:94:07:a5:1b:78:38:89:1f:
78:03:39:36:69:b1:d7:8b:6a:68:98:af:2a:13:2a:
78:69:07:fa:56:74:f9:b9:d8:7e:25:3e:9c:d5:0a:
42:0f:7b:90:65:f1:87:94:bd:49:82:3e:20:d5:37:
2a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:FE:B0:06:50:CC:75:0A:18:0D:B7:32:EA:D1:69:45:AF:5D:23:E1
X509v3 Authority Key Identifier:
keyid:C7:1A:2F:7D:7C:C8:C3:63:74:6E:96:BC:3F:CC:8B:05:F9:60:6F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxovfXzIw2N0bpa8P8yLBflgb-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/0dc925-a33b-4d3a-add3-d6d140e4ce6d/1/xxovfXzIw2N0bpa8P8yLBflgb-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:a4:87:b7:8e:69:ef:8a:06:4f:fb:3e:85:b8:47:66:b6:24:
bb:b7:07:5e:ad:1f:a1:cd:0c:11:db:b7:cd:d7:de:f0:30:1b:
b8:f0:df:2a:9f:57:9a:60:1e:66:48:be:0f:9e:3c:26:0b:df:
60:86:ed:8f:a5:f5:32:b3:44:f7:b4:25:1f:ca:f1:5a:2a:8c:
15:89:f5:8f:19:53:d9:76:38:8f:37:ae:f8:d9:3e:6c:7b:f6:
2a:f7:da:b0:df:1d:88:44:18:41:ce:2d:a8:df:6f:cd:67:88:
5a:9a:bb:08:d5:ad:94:b5:dd:40:ab:bd:72:7d:2a:a8:45:b5:
ae:fd:66:01:ef:0a:93:20:7c:28:59:cf:3b:d5:dd:4c:ad:6a:
d1:56:cf:75:f2:03:cd:78:35:50:b4:61:ab:07:a8:1e:7e:57:
83:02:7a:97:d3:e5:a0:f9:9c:d1:f4:f4:9f:c7:b4:bc:c7:0f:
5b:43:8d:37:55:3b:a4:64:5c:48:5e:9b:44:1e:b3:30:bf:15:
02:61:d3:85:d5:0e:c7:b0:b2:0a:95:8f:8c:9c:df:1e:bd:7a:
5d:bd:b4:2b:5f:d7:2e:1a:91:3d:8c:bc:84:6c:2f:4a:c2:7a:
44:c8:c9:26:3f:9f:a4:f6:61:a0:7c:0d:be:33:2d:61:fe:63:
d2:e7:2f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 22:52:58 2025 by rpki-client