Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
File: xVFHJIBoPGGXD2BfsZnuturhIYs.mft (raw, json)
Hash identifier: mjKSctc+TBtZa9f+wG9BP8R1Jja5LM30qRr7z6dlNBs=
Subject key identifier: BC:4E:36:A4:7C:2B:7B:07:95:80:B6:83:43:EB:C6:83:71:00:1E:9D
Authority key identifier: C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
Certificate issuer: /CN=c551472480683c61970f605fb199eeb6eae1218b
Certificate serial: 0196C34B9DEF1E9D150839EAC71FF436C6FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
Manifest number: 1239
Signing time: Mon 12 May 2025 07:00:34 +0000
Manifest this update: Mon 12 May 2025 07:00:34 +0000
Manifest next update: Tue 13 May 2025 07:00:34 +0000
Files and hashes: 1: 7CZAgUvQPu-wrbV-N9bEd3CgOWs.roa (hash: sMayzuz7AI9s61a/aq9HH1Cc6asWKL5qDPVUoL1bHKQ=)
2: xVFHJIBoPGGXD2BfsZnuturhIYs.crl (hash: h+7Y8Jb0MJbGooH3BQBZXZqS79bbiDrTBbGJu+JbqrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4b:9d:ef:1e:9d:15:08:39:ea:c7:1f:f4:36:c6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c551472480683c61970f605fb199eeb6eae1218b
Validity
Not Before: May 12 07:00:34 2025 GMT
Not After : May 13 07:00:34 2025 GMT
Subject: CN=bc4e36a47c2b7b079580b68343ebc68371001e9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:12:ae:02:60:cc:f5:73:de:4a:cb:45:20:06:
31:ad:cc:41:d8:9e:89:4c:5d:59:9b:e5:87:7a:63:
42:09:53:67:ea:4a:2c:1b:92:23:51:e2:34:37:a3:
c1:e6:67:48:d7:91:22:22:a5:de:45:d7:6b:85:17:
fb:16:18:e1:0f:9b:fe:63:20:5f:69:88:65:b8:ae:
a2:08:39:5e:9f:15:72:77:e6:f5:bc:44:b0:1b:9b:
04:06:00:6f:02:21:d8:12:5d:17:85:15:96:14:53:
e0:4c:88:b1:a1:fc:c5:bb:e5:5c:a8:83:89:18:63:
78:7f:4a:20:93:96:e8:4d:42:7a:98:00:ec:5d:a6:
bc:09:b3:16:51:a7:b4:4d:b0:f6:03:b5:f4:c8:62:
06:20:73:85:f9:93:1a:fa:48:fa:29:29:7c:e3:48:
f8:1d:3c:17:5e:2d:80:e0:46:a9:3a:14:4d:b5:03:
96:da:ed:43:b8:64:d6:d9:14:e2:ca:d4:ca:11:7f:
26:75:29:4d:8a:8d:2b:ed:43:f4:5f:87:2a:ba:98:
f5:9c:c2:e4:f4:d3:05:e8:80:ff:42:74:a2:a1:7e:
16:77:ac:fb:b3:cd:2c:b5:e4:fc:58:f8:e7:0a:20:
ca:26:af:15:5f:bf:4f:af:95:88:0b:e9:c3:f3:b0:
62:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:4E:36:A4:7C:2B:7B:07:95:80:B6:83:43:EB:C6:83:71:00:1E:9D
X509v3 Authority Key Identifier:
keyid:C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:91:0b:b5:1c:d3:19:2f:58:5d:cd:f5:6d:6a:cb:c5:48:cf:
66:b2:60:a6:5a:04:35:4a:40:37:aa:fe:71:b8:66:b1:7e:a9:
b9:a4:84:d4:fe:39:03:23:d0:8a:fa:03:83:08:d1:37:17:59:
98:6f:08:a2:83:f6:5b:5f:0a:af:43:ad:b4:9a:48:16:ec:86:
b2:54:e7:3a:56:29:d6:7a:0a:f1:0e:72:a4:86:5e:ae:1c:a7:
5f:f3:d4:52:1b:fa:fe:e5:15:12:8d:99:43:17:a8:5b:fe:89:
93:80:27:03:94:1e:b9:8a:1c:99:6b:fa:6c:ef:7a:0c:4a:33:
4e:ce:3f:58:d4:6e:85:bd:3d:5d:03:f5:9c:d0:1d:67:13:56:
5a:4f:1a:16:ce:99:87:82:6d:b5:58:ac:e2:ea:fd:ff:87:44:
f5:3e:d3:45:f8:52:0e:41:e3:5e:b3:75:6f:ed:5b:a9:05:50:
ef:c7:f2:df:26:7d:9e:a5:90:30:a9:5b:b1:be:52:4f:4c:ac:
88:bc:9a:88:20:28:7b:d5:6d:b6:66:4f:80:71:8e:58:ee:98:
65:ef:e3:d5:a7:4f:7e:2d:6b:2a:29:08:48:25:26:0c:9c:ad:
aa:a8:4f:32:8e:7a:bd:aa:b9:e5:d2:8d:fe:4e:23:25:ed:dd:
64:c2:bf:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:56:22 2025 by rpki-client