Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
File: XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft (raw, json)
Hash identifier: 0A9rYQLDEdhmAIqWzyQbILZ23o+jei6GWSONE8IrqJg=
Subject key identifier: 79:69:26:08:D5:46:B8:BC:C9:F1:7A:1C:34:9B:0B:DE:E2:36:FF:DC
Authority key identifier: 5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36
Certificate issuer: /CN=5de458f21d406466bdf68240f505eefd197ba936
Certificate serial: 01969FE4188E736736FE9CEAA4B50CB57711
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
Manifest number: 1527
Signing time: Mon 05 May 2025 10:00:47 +0000
Manifest this update: Mon 05 May 2025 10:00:47 +0000
Manifest next update: Tue 06 May 2025 10:00:47 +0000
Files and hashes: 1: 8x6SWTgZKaQldoz2iRV_QSdqbtg.roa (hash: LzTLrE8ZLdriPR/s+lretToH9KQur6QiGymJnQCIGiw=)
2: XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl (hash: vzx5B9FR5+QrZua+9nC3Wo0P4ONZCDS45SE1hETrAek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:e4:18:8e:73:67:36:fe:9c:ea:a4:b5:0c:b5:77:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de458f21d406466bdf68240f505eefd197ba936
Validity
Not Before: May 5 10:00:47 2025 GMT
Not After : May 6 10:00:47 2025 GMT
Subject: CN=79692608d546b8bcc9f17a1c349b0bdee236ffdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:de:05:47:3e:e9:81:25:fb:4c:04:fb:90:9e:
aa:00:cd:5f:eb:56:71:9e:d6:79:1f:93:99:92:fc:
be:0a:38:41:31:f2:64:ec:2e:7f:84:4c:df:b5:e7:
c8:bc:f0:db:5d:fc:1e:e6:1e:d5:61:67:48:c9:9d:
02:e5:b4:8b:7d:0d:10:a2:12:9c:4f:cb:2c:f3:59:
df:30:fc:0f:1b:15:c3:e8:e8:7c:1b:31:47:2b:ec:
6c:32:63:4f:ac:b1:f9:fc:59:7d:3c:31:61:6e:ad:
53:2a:7b:09:4b:84:e0:e7:10:9d:9b:83:a1:d3:9c:
14:e4:4e:af:e4:c3:6d:67:64:d7:28:fb:12:c8:de:
26:88:04:23:af:4b:26:60:7f:5d:b4:bb:e6:29:99:
2a:be:ad:c3:98:60:b2:5e:c4:2f:31:81:32:d8:ea:
b8:60:d9:52:f7:82:dd:22:43:61:85:d1:94:18:be:
84:9d:2c:48:4d:9d:05:81:df:28:d3:8a:70:29:e0:
c8:c3:3e:e7:d1:ce:e7:3c:ed:b8:85:46:a2:e8:b9:
62:23:2c:0c:a1:93:19:20:8c:d2:b2:8d:ec:33:58:
31:8d:71:1b:5c:43:35:86:b3:cf:ea:68:a2:02:db:
b0:d1:cf:de:8a:49:85:77:7b:24:a5:25:74:fc:4b:
5c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:69:26:08:D5:46:B8:BC:C9:F1:7A:1C:34:9B:0B:DE:E2:36:FF:DC
X509v3 Authority Key Identifier:
keyid:5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:a6:d0:58:5a:39:b3:b8:b2:05:02:b2:d4:a4:3d:f7:ae:cb:
a8:ab:ec:26:ec:75:6a:5b:27:c9:4e:09:4f:8f:d2:d3:25:56:
c1:8a:15:f7:b4:a2:6f:33:c6:c0:30:57:b2:9b:cd:71:dc:42:
47:cb:4e:27:26:6c:47:ed:2b:6f:47:e7:56:a7:98:f7:c8:df:
65:76:68:28:ff:01:8d:1b:80:57:6f:7b:b3:d5:13:66:68:a1:
e6:0b:5f:ed:b6:80:94:19:0a:1b:d5:2a:2a:50:b1:62:11:37:
6f:be:75:35:c6:6c:2f:49:cb:1b:a4:bd:6a:3a:e5:85:b3:28:
77:4f:f3:aa:d2:a5:e0:90:c4:14:06:df:95:ce:15:63:bc:fa:
a2:18:63:b3:d7:5a:92:ee:e2:5c:2b:a4:4b:b5:74:8f:c2:21:
3d:19:11:a1:37:55:d5:89:b3:ac:56:ea:e6:5c:db:ee:7d:c3:
9b:61:12:d9:7d:1d:94:61:20:6b:92:44:ed:1b:2c:72:ed:d5:
b4:57:83:b2:60:ed:a7:9b:4e:70:ec:3f:c6:26:a3:94:fe:b3:
49:47:58:a7:74:c4:d4:34:be:3e:48:05:2f:4e:40:a5:32:83:
ae:9a:86:6b:23:21:f1:2c:3c:65:e8:69:a7:40:16:cd:81:8b:
af:d4:ce:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 14:08:04 2025 by rpki-client