Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
File: Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft (raw, json)
Hash identifier: UCtPITbi/lDGb7pekn0DUo6opXV1AmqLlaxptUNxeMM=
Subject key identifier: 8C:41:52:C2:49:E0:B8:85:85:1B:8C:7D:8D:0B:9C:5F:27:93:86:C8
Authority key identifier: 5E:4F:1A:32:A3:7E:08:39:00:AB:A5:61:70:8E:52:AB:23:4E:3A:38
Certificate issuer: /CN=5e4f1a32a37e083900aba561708e52ab234e3a38
Certificate serial: 0196BF6EFFAA63A3CBED603B91CFE68FFE8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
Manifest number: 04F3
Signing time: Sun 11 May 2025 13:00:44 +0000
Manifest this update: Sun 11 May 2025 13:00:44 +0000
Manifest next update: Mon 12 May 2025 13:00:44 +0000
Files and hashes: 1: MjurembtvVeEftl3x1ofb2bHb8o.roa (hash: LMEfB1EahjyEN1vkkgX4Rq92rZ+ObZyJ1Ue8yFCn1Pk=)
2: Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl (hash: EPN0BX3IhEsiBF/Z3Pzmfx0GJ7iJZ5m/4kNU7/39q6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6e:ff:aa:63:a3:cb:ed:60:3b:91:cf:e6:8f:fe:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4f1a32a37e083900aba561708e52ab234e3a38
Validity
Not Before: May 11 13:00:44 2025 GMT
Not After : May 12 13:00:44 2025 GMT
Subject: CN=8c4152c249e0b885851b8c7d8d0b9c5f279386c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:39:21:68:ac:44:9d:89:85:6d:d0:5b:7c:f8:
d2:6a:fb:7f:47:83:64:21:3e:1b:11:59:83:39:e8:
74:eb:47:60:8a:83:c6:a5:3d:01:47:13:95:33:ef:
44:7e:23:20:e9:81:d5:27:e7:91:1d:fc:db:34:4a:
a0:f5:50:c2:59:44:7b:67:ff:70:ce:1d:77:99:2e:
ae:46:86:bb:b1:d6:4d:06:66:66:08:00:28:98:fa:
58:5a:21:56:1d:f4:65:4d:cb:9f:07:a4:e7:72:ba:
f4:08:53:20:4d:d3:1e:3e:c7:dc:ae:45:99:e0:fe:
c6:20:1e:ba:09:c1:16:9c:ee:75:c4:1e:b9:17:bb:
99:31:17:33:0b:3d:41:28:b1:f9:6f:68:22:33:ea:
f3:c4:89:94:56:e6:31:67:11:7a:d8:ee:d5:4b:f6:
c3:a2:e4:1c:72:fe:85:3f:57:07:7a:60:37:43:b9:
4d:44:0c:57:4c:d5:3d:6a:92:3c:7e:65:e9:9f:8f:
e8:9f:b3:16:fc:58:d6:40:ef:a1:81:c9:4a:66:fb:
0f:9e:da:da:4f:47:07:94:07:ad:8d:99:81:f7:e7:
59:c3:ff:63:15:3a:f2:27:d4:dd:87:1c:90:fd:75:
e8:c3:3f:09:b0:7f:2d:a9:3d:90:32:e7:91:ca:ba:
0f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:41:52:C2:49:E0:B8:85:85:1B:8C:7D:8D:0B:9C:5F:27:93:86:C8
X509v3 Authority Key Identifier:
keyid:5E:4F:1A:32:A3:7E:08:39:00:AB:A5:61:70:8E:52:AB:23:4E:3A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:28:ae:a7:a5:c4:a3:8d:3c:6a:4f:e4:ee:23:28:63:22:16:
0a:75:71:7b:e9:47:52:43:65:e1:b7:59:ae:60:4b:af:19:f8:
71:af:44:70:fa:7f:31:a5:69:27:5e:68:85:7a:93:d9:79:18:
15:7d:9d:40:7d:3e:c2:74:3e:f1:74:0a:9b:a2:af:94:45:52:
99:96:92:a4:95:9f:05:88:30:33:64:34:58:fd:ad:c9:6c:b4:
38:82:7d:92:97:cc:49:a5:b6:7b:ae:ee:ef:bf:00:f7:40:27:
b0:87:37:8a:72:d2:a8:ea:4e:96:88:fb:5c:f4:d0:f4:9b:32:
4c:82:7f:c2:ac:dc:77:e2:fb:ab:98:25:53:24:26:34:61:30:
c3:53:b5:0b:78:b1:19:cd:91:23:c3:0c:10:9c:25:16:59:63:
90:38:3e:3c:eb:6b:cb:35:06:88:27:13:76:e7:d2:ab:29:4f:
18:a6:1e:58:20:61:fc:83:09:10:77:19:54:7e:a8:0b:ea:a3:
1d:dd:14:e6:0c:fd:87:25:78:57:0e:8b:bb:62:33:63:77:ce:
c9:4b:86:d8:88:94:14:22:d9:3a:c1:ca:d6:44:8f:cc:38:7e:
dd:3d:20:b0:7a:d2:e9:94:2f:bc:d8:66:e3:26:13:d2:31:43:
a2:12:8a:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:31:16 2025 by rpki-client