Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
File: xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft (raw, json)
Hash identifier: poJCuqXm3y1sfb9B5/0jkTfHui+fvfi07ozx3biJ2YM=
Subject key identifier: 20:65:91:35:D8:7D:15:36:E7:31:23:B8:19:62:53:A7:D3:DA:56:95
Authority key identifier: C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
Certificate issuer: /CN=c5721737651598f56cf7195120777d7b5316f552
Certificate serial: 0196A0BF7E5B58F82139FC414CBC8F9E32C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
Manifest number: 1288
Signing time: Mon 05 May 2025 14:00:26 +0000
Manifest this update: Mon 05 May 2025 14:00:26 +0000
Manifest next update: Tue 06 May 2025 14:00:26 +0000
Files and hashes: 1: nB0wD2NbLIcgL4wuuaNReH2xdaw.roa (hash: PmwRmIsMv3KSkKaHz3D8VpJ1Kt0x35JTg65eBK0T3+k=)
2: xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl (hash: BJBX7XCKrEcSNJgKSQg/F+VWP8yp2wVcEtfiK6l7kpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:bf:7e:5b:58:f8:21:39:fc:41:4c:bc:8f:9e:32:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5721737651598f56cf7195120777d7b5316f552
Validity
Not Before: May 5 14:00:26 2025 GMT
Not After : May 6 14:00:26 2025 GMT
Subject: CN=20659135d87d1536e73123b8196253a7d3da5695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:71:f8:b4:95:af:11:b1:90:bd:83:a3:e0:6c:
51:8a:93:33:18:05:47:4f:c8:6b:3d:13:2c:a3:a8:
f0:b0:ed:83:7d:19:df:81:dc:01:62:dc:31:dd:f0:
92:13:52:63:8d:bf:82:8c:a3:5f:6d:bc:b2:bb:fe:
43:bf:ca:d4:e1:7b:50:2b:96:5f:22:6b:02:6c:3b:
7d:fe:46:fc:34:e2:7e:f4:17:f9:e5:58:aa:cb:2c:
af:de:e0:7d:52:00:d8:5e:a9:7f:00:55:0e:01:c5:
34:fc:09:77:2a:8a:f1:67:24:c6:84:84:26:5c:04:
35:95:5e:f6:eb:9b:d6:78:0e:41:b1:57:20:5b:0f:
34:34:44:21:3e:4c:fa:b9:40:b4:8d:9e:70:de:f9:
b9:f9:1b:0a:76:d7:62:03:2c:45:c0:d5:50:aa:58:
38:9b:9e:7a:e0:1e:65:aa:ed:37:e4:d8:02:1d:40:
a1:cc:db:ca:cc:75:ac:76:91:c2:b8:f7:81:22:62:
05:73:7d:a8:be:7f:db:b2:72:e0:16:f4:b4:f1:17:
fa:4c:a6:d2:5b:81:0b:43:32:f6:11:3b:d6:65:fb:
3e:8b:49:49:95:67:14:b2:8d:dd:e6:31:d6:81:ef:
b3:7c:5d:56:d1:1f:42:ab:50:81:3e:fd:08:6d:96:
27:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:65:91:35:D8:7D:15:36:E7:31:23:B8:19:62:53:A7:D3:DA:56:95
X509v3 Authority Key Identifier:
keyid:C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:d8:4f:c9:a6:4c:b0:2f:f7:ab:ed:79:80:1d:4c:7b:40:1c:
2d:48:b1:81:85:83:45:7b:92:ac:eb:2a:4b:6e:b0:df:7e:eb:
cf:18:7d:df:21:29:4e:d3:3d:c1:47:9e:4e:f4:fc:45:8e:90:
f9:72:00:65:0e:aa:ad:22:4d:83:8c:c0:90:f6:61:9b:eb:57:
59:7c:ab:5b:28:92:ba:93:58:66:f7:f0:c2:39:11:ea:5d:f1:
a9:65:3d:57:a5:e8:19:a9:2e:52:41:8d:be:4d:58:ed:26:bd:
25:4a:07:d2:93:2a:84:be:e5:1d:c7:d5:7f:d1:b2:9a:49:11:
c1:35:f8:23:21:7e:6c:a0:db:f1:9c:c1:76:6d:b5:36:f4:39:
67:71:f8:4f:81:1e:4e:ef:df:5d:09:8f:96:35:2d:0e:58:14:
a3:f6:01:66:5b:7c:04:27:b7:fd:4d:bf:97:da:8e:19:39:d2:
cd:31:95:61:e5:c0:67:1d:9b:b8:d5:d9:3f:15:f0:66:6f:ad:
42:8c:88:a9:e1:34:3a:8d:cc:a3:59:2b:2e:e7:6a:d6:5a:b7:
10:46:49:57:8e:6b:c4:1d:95:7d:23:84:30:2d:46:a2:1a:70:
ad:d5:88:e4:d1:76:3a:83:4c:7f:e0:73:a0:f5:25:77:45:01:
3d:a9:93:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 18:39:13 2025 by rpki-client