Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json)
Hash identifier: lub7w3bQFAe85qdLF2j/s+FQBDxTB06mkdqhUqhqBnc=
Subject key identifier: BA:7E:77:83:8C:ED:A8:CA:3E:2B:F2:D7:1F:8C:07:24:8B:F5:7E:56
Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Certificate serial: 0196C83AECF12E87E4954A29869EC3460D57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
Manifest number: 153D
Signing time: Tue 13 May 2025 06:00:26 +0000
Manifest this update: Tue 13 May 2025 06:00:26 +0000
Manifest next update: Wed 14 May 2025 06:00:26 +0000
Files and hashes: 1: nEhO-4IOflDc16smasjo46yXDrU.roa (hash: TGudjeK9/qruL2a7Ja97DNoAnaGXmeBxOzedTAd1+AI=)
2: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: HOZNVtZLUVRyIrjkDMQReNy5hGR/IKndlrjDtpIe7oM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:3a:ec:f1:2e:87:e4:95:4a:29:86:9e:c3:46:0d:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Validity
Not Before: May 13 06:00:26 2025 GMT
Not After : May 14 06:00:26 2025 GMT
Subject: CN=ba7e77838ceda8ca3e2bf2d71f8c07248bf57e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f0:e1:e0:a7:00:ea:7f:03:49:27:78:24:69:
36:54:53:ff:f5:cc:01:23:46:b0:3e:c0:53:9d:47:
78:5d:93:e6:d5:9a:c0:4f:bd:7e:62:15:7c:96:35:
60:12:16:f9:97:15:aa:ed:1a:ed:13:cc:93:66:8b:
38:ce:db:04:5a:df:1e:2a:29:f7:7f:dc:86:f3:20:
67:d0:56:7b:ab:38:d4:ae:ab:03:3e:aa:74:4b:d5:
17:61:c0:a9:f9:8d:8c:4a:46:7b:18:cf:ff:ce:d3:
2b:14:2c:a0:40:8f:3b:76:33:f5:0f:bc:34:b3:c4:
e5:91:ac:a4:40:b7:fb:1e:f5:ed:66:09:db:5b:03:
1f:83:ac:97:cb:17:10:66:b1:f9:54:ff:a0:07:9b:
21:9a:3c:58:f5:15:e9:d9:5b:db:4d:50:f1:83:8d:
ee:f1:71:1f:3a:82:6c:2b:40:57:5f:47:c1:9a:38:
3b:30:5e:63:c3:e4:95:ba:06:13:5d:4a:99:75:0c:
13:08:fb:b8:7f:c3:95:66:82:ba:75:e1:2b:e5:1a:
3e:6b:d3:c2:f1:73:33:5a:10:c9:98:ab:2d:18:6a:
35:7f:77:d2:ae:1d:d1:7c:c9:df:f5:57:bd:59:17:
cf:56:f8:1a:0c:69:2b:78:f0:af:46:51:77:1d:ee:
91:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7E:77:83:8C:ED:A8:CA:3E:2B:F2:D7:1F:8C:07:24:8B:F5:7E:56
X509v3 Authority Key Identifier:
keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:18:3a:d9:42:fe:89:ca:1c:d3:0c:af:47:db:c2:84:97:e0:
5a:15:46:6b:f1:4d:17:7f:25:20:57:e5:c7:95:19:a8:72:7e:
c2:ff:b7:b0:c7:e7:4c:a7:ee:4b:53:dd:68:2c:51:6c:83:d2:
79:f1:9f:da:e4:a0:e6:dd:e6:bd:40:3b:1f:7c:4a:9e:7f:c8:
3e:79:7a:31:9a:61:ea:ab:0c:38:94:c0:2e:33:e3:6f:03:b5:
d8:66:c4:b9:18:93:0a:db:d7:ce:db:56:51:82:db:43:41:f2:
f6:48:b9:97:bd:dd:4b:24:72:f7:f0:85:25:85:6b:6c:ed:0f:
bf:67:1a:e9:4b:04:be:48:5d:a7:71:b2:31:bb:d8:8c:88:07:
6e:9d:c1:ac:6c:78:5e:fe:bb:2e:f0:b9:e4:22:4d:7c:7e:0f:
a2:3a:a7:1d:19:f5:92:aa:ce:c8:11:ed:c3:24:37:17:a2:7a:
64:b3:27:37:d9:4a:c4:e2:5b:bf:0d:de:29:22:6a:bc:16:3c:
c1:24:cc:cb:8e:e2:41:d0:9c:f6:69:79:a5:c9:36:ce:a1:6f:
c3:ee:eb:2f:87:c0:87:c0:84:66:3f:53:8c:7b:9e:81:ca:6a:
e6:57:07:20:8f:0e:1a:40:c5:ee:b8:d0:fc:67:e5:61:db:1f:
46:9d:58:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 08:24:57 2025 by rpki-client