Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
File: xGn-PYgsk-OOi2ooajF33Bfpmsc.mft (raw, json)
Hash identifier: dBlKXNnTZlf7FsexqSW0qGDsWXfVtzHtc0/EM17pg7E=
Subject key identifier: 45:A1:5E:88:EB:DE:A7:75:88:58:97:E4:9B:35:64:36:AE:4C:BD:18
Authority key identifier: C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
Certificate issuer: /CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Certificate serial: 0196A0F707C85CEF838156997B1E1A73F223
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
Manifest number: 1527
Signing time: Mon 05 May 2025 15:01:05 +0000
Manifest this update: Mon 05 May 2025 15:01:05 +0000
Manifest next update: Tue 06 May 2025 15:01:05 +0000
Files and hashes: 1: EOlGjDlmQ3zjWLU87OYTWDWcCEY.roa (hash: pUBA00I+CQC2RPjmIddeqkkbXGoBJUyoSnMxqvr2Gas=)
2: VWhDL_pbFyyRh5F_p1365369fw8.roa (hash: h0UGnV1yT7TAR4sgEMb7SSbuBaNRRDcOsgJUpZU75gM=)
3: eStVA852783cSRla3cS6Sa73nTo.roa (hash: hjwJSk0hM/n7mjZhOiCDKrp/IiuwE5tJF1ttaMrAUdQ=)
4: mz6tpSTyWG1tpsywf2xFprKsdgk.roa (hash: TcXisvKqSL089bUIJMzgiUZfK9JnlvU+0pDp8FZCWe4=)
5: xGn-PYgsk-OOi2ooajF33Bfpmsc.crl (hash: /WrHej6C8NZ8KHNEAc74NuueeruNgybYIDl6hDnD2+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:f7:07:c8:5c:ef:83:81:56:99:7b:1e:1a:73:f2:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Validity
Not Before: May 5 15:01:05 2025 GMT
Not After : May 6 15:01:05 2025 GMT
Subject: CN=45a15e88ebdea775885897e49b356436ae4cbd18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:13:d2:23:b2:19:84:7f:2b:97:97:c3:98:d1:
26:e7:3a:94:e9:05:e2:03:3b:f7:3b:8e:e9:e2:82:
4b:e1:ff:bb:01:ed:81:e9:82:da:e6:9a:f6:2e:40:
c8:30:d7:35:8c:ef:1a:9f:d9:f8:bb:1e:4d:a2:39:
64:bf:ee:67:2d:bf:2a:ad:26:10:1e:e5:87:8b:20:
7c:e4:4f:bc:ed:f1:f1:42:69:a0:9b:56:bb:4c:1e:
63:a8:9c:99:74:24:de:bd:34:36:86:8e:e6:46:b6:
17:c1:96:d7:42:ac:dc:bf:49:fc:a5:e9:01:1d:02:
cc:9b:d1:1d:85:c7:ea:8b:68:b8:e6:b1:43:d2:c3:
0b:98:ee:3e:f8:de:04:4d:54:71:50:d2:91:de:25:
62:fa:8c:99:6a:e9:f5:2c:41:4e:55:af:72:df:4e:
aa:93:4c:e2:55:4a:34:54:ff:86:b0:26:d8:52:ba:
41:28:c2:7b:c4:02:c5:3d:67:76:38:43:f9:db:f8:
cc:03:67:0c:a4:98:bb:fb:1e:3a:fa:1a:99:45:e6:
d8:29:00:35:0a:ab:1b:0b:9b:96:e4:96:2f:e0:d7:
30:59:90:d3:0a:94:5b:df:0c:19:13:a2:31:60:35:
7e:85:69:f3:a5:a8:47:4e:e7:25:87:1e:8b:7a:b7:
03:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A1:5E:88:EB:DE:A7:75:88:58:97:E4:9B:35:64:36:AE:4C:BD:18
X509v3 Authority Key Identifier:
keyid:C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:07:f2:f5:02:4c:0a:88:05:0b:33:7c:0f:ab:ae:38:59:9f:
a0:d5:4e:be:d2:b9:cc:4d:f9:a6:24:8e:ee:89:2f:0a:d0:3a:
79:41:fd:eb:91:be:32:77:2a:ae:8c:e4:a7:52:79:31:49:c6:
d0:93:c0:dd:90:5f:27:bd:96:ea:88:30:2c:f8:3b:41:b5:1b:
f7:bb:a3:63:b1:71:30:91:d0:fe:21:bf:07:ca:64:48:a9:06:
12:ca:79:5c:bb:dc:18:8e:d1:99:17:09:66:e1:8f:a4:08:0e:
95:96:cc:67:fe:92:5e:37:be:1f:b7:14:d8:09:c2:7c:6c:e3:
e3:ab:14:a9:45:a4:9d:cf:b3:23:b2:12:af:64:e3:e1:92:8e:
3d:f7:44:35:7a:fb:22:b5:c2:9a:53:75:3f:b4:9c:51:a7:a4:
5b:2e:5d:84:9e:4d:1d:3f:ed:29:75:e5:4b:fb:58:db:4d:6d:
63:5c:0b:e9:d5:2b:b5:d8:b1:38:0b:fd:e5:78:98:3d:4a:df:
e5:61:12:02:8b:b0:4f:70:e1:5a:f3:64:89:f1:c6:4e:fd:bb:
27:1e:1a:fc:fd:ea:a9:80:9a:a5:b1:09:49:10:8b:d6:f2:48:
d3:58:65:45:0e:f2:1d:d8:2a:3f:a4:3a:90:c7:13:84:51:01:
8f:55:50:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 19:14:08 2025 by rpki-client