Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
File: XchzCYds7EBPAHv22gQ0wL3GLYs.mft (raw, json)
Hash identifier: l4xnWFtHcTHhgG7+qIXKQ7D8rHpwI8Jp7nXdtBVieTE=
Subject key identifier: 2E:50:8A:2C:43:46:ED:A3:02:45:B4:09:DB:69:A0:00:8B:63:02:37
Authority key identifier: 5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
Certificate issuer: /CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Certificate serial: 0196BD498FB980FCE96EF55D3FDDB343CA3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
Manifest number: 1531
Signing time: Sun 11 May 2025 03:00:36 +0000
Manifest this update: Sun 11 May 2025 03:00:36 +0000
Manifest next update: Mon 12 May 2025 03:00:36 +0000
Files and hashes: 1: XchzCYds7EBPAHv22gQ0wL3GLYs.crl (hash: Yv7m3f5I8WLjeWepipNfsmCOlM8e67uR/mZ4aq/YkWg=)
2: jcQt-MOzJfjybIamiUioFB-oBn4.roa (hash: vxzopxc1UXJfcspNz3GsRCac77+K0gwBOQSeqjgarpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 03:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:49:8f:b9:80:fc:e9:6e:f5:5d:3f:dd:b3:43:ca:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Validity
Not Before: May 11 03:00:36 2025 GMT
Not After : May 12 03:00:36 2025 GMT
Subject: CN=2e508a2c4346eda30245b409db69a0008b630237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d5:19:29:a4:b2:62:e5:41:8d:1e:28:5d:62:
bb:71:86:e9:bb:70:ac:15:99:38:e9:3e:84:50:59:
51:db:8a:b7:78:7f:5b:c8:8a:fa:48:32:60:e8:e2:
2e:ba:17:8c:81:0b:e9:10:62:f8:bf:f0:6f:5f:7e:
2f:73:72:8a:05:c8:a6:15:25:bc:64:0c:81:20:13:
1e:77:d6:0d:93:a9:4a:d1:42:19:77:96:ad:94:07:
49:69:18:cf:5e:59:3c:fe:b5:f3:c9:7a:0f:a6:19:
be:5d:39:96:70:cb:33:ec:7c:dd:1c:3f:f9:94:88:
49:69:7c:00:10:d2:ec:37:8c:9c:dc:c7:e8:db:ad:
09:dc:df:58:0c:54:a2:21:56:27:fb:55:38:8c:f5:
6f:31:37:56:14:a2:3b:83:3b:79:e5:6c:73:d2:ae:
0a:31:d0:31:63:54:5f:1f:e5:27:57:60:e9:23:ae:
9d:3b:c2:45:fd:cd:9b:77:07:63:3d:f4:85:c0:d1:
82:6c:3f:95:c7:b5:32:ba:d3:e6:fc:27:1e:ba:b5:
19:e9:21:b7:88:f7:b4:50:07:cf:6b:43:b4:37:d8:
ca:94:48:41:da:70:14:1e:49:da:41:5e:0e:a3:8a:
51:5d:e1:db:db:bd:9e:d0:aa:33:ce:3d:57:48:18:
f7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:50:8A:2C:43:46:ED:A3:02:45:B4:09:DB:69:A0:00:8B:63:02:37
X509v3 Authority Key Identifier:
keyid:5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:c6:66:2f:c1:71:2c:15:23:c9:4d:d1:23:a3:36:5b:6e:3d:
9b:f7:b9:51:e1:9b:57:56:73:85:b2:99:16:7a:e1:b7:97:5d:
eb:fc:be:3b:7a:48:97:09:a1:e6:08:30:84:14:d9:ba:b5:68:
04:60:61:2b:bd:68:2e:e3:f3:25:99:0c:07:ae:72:f1:0b:c8:
2b:b6:14:99:54:f8:8d:11:09:e2:1c:27:44:1c:32:f0:21:af:
e2:e2:2e:10:af:28:ac:83:bd:0f:f7:2b:ae:3b:20:b1:6d:e8:
d3:e7:86:a7:be:2b:e2:09:0a:4e:e7:6d:53:8a:d5:4e:5d:93:
ba:0d:f5:2d:7e:d3:80:cc:71:71:7a:b8:cc:37:b9:e9:eb:0b:
7f:93:24:d9:7e:e4:68:e6:86:9d:e1:12:74:48:7b:29:5e:55:
29:af:eb:fb:23:9a:3b:a5:13:4b:cc:d6:78:c1:e9:29:be:77:
58:1b:97:85:a8:04:a3:5e:a9:8f:81:47:ef:5a:21:4d:7a:dc:
5a:c2:95:21:f5:de:1b:16:e5:72:25:72:3b:b3:cd:79:31:c6:
f0:07:ec:35:24:4e:3a:f0:53:03:65:97:11:a2:f4:36:18:f4:
c6:06:a7:86:1e:41:7c:d0:66:77:2b:4c:e6:4a:73:be:d0:54:
4f:3b:21:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:34:19 2025 by rpki-client