Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
File: xU3YgoUsxFhrH-40wFAdXbfWDws.mft (raw, json)
Hash identifier: V7nXLiY1gDFS+VVEi3eZei9IOl7mG/RRfL/JkwKw8Cg=
Subject key identifier: DA:52:5B:30:53:3F:23:70:85:25:6F:B4:B2:0A:93:6A:68:63:A0:CC
Authority key identifier: C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B
Certificate issuer: /CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b
Certificate serial: 0196D408544DF731593ED23FAB7453D5B6E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
Manifest number: 0704
Signing time: Thu 15 May 2025 13:00:37 +0000
Manifest this update: Thu 15 May 2025 13:00:37 +0000
Manifest next update: Fri 16 May 2025 13:00:37 +0000
Files and hashes: 1: XArLVttX_wCBnKO2u8bWM8Vk3NU.roa (hash: BE5h5QGSzKEJoBRH8Cvw/x+Z7DD6UePHMldATT7VyV4=)
2: xU3YgoUsxFhrH-40wFAdXbfWDws.crl (hash: yRPUZkTlrVjRyUEgg+aErAlxT9lQkixaW9gMPX50fl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 13:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d4:08:54:4d:f7:31:59:3e:d2:3f:ab:74:53:d5:b6:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b
Validity
Not Before: May 15 13:00:37 2025 GMT
Not After : May 16 13:00:37 2025 GMT
Subject: CN=da525b30533f237085256fb4b20a936a6863a0cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:25:a8:fd:f8:88:55:cc:09:dd:46:44:3e:bb:
06:d1:a2:0a:c3:0b:d2:64:06:0d:3b:57:09:5d:df:
39:cd:32:d1:c9:a2:be:bd:d6:80:48:5e:28:b8:e2:
e3:59:aa:20:87:9a:f5:6e:66:8d:78:28:66:0b:f2:
12:b6:69:1f:b2:02:1e:67:96:34:62:99:35:dd:93:
d8:06:91:bf:a7:46:6c:39:31:be:7e:21:a5:a0:42:
6f:4c:5a:9d:d4:95:42:e8:c5:28:b3:2b:d6:12:72:
0d:72:a3:16:31:82:b2:c1:20:ee:63:bb:ff:36:f4:
f4:b4:d6:17:0a:4e:92:f7:af:0e:de:13:61:f2:73:
43:15:38:a1:f8:ff:48:e6:d6:8d:81:2a:77:e3:58:
e6:e6:c6:6b:d4:9d:b1:b2:d7:fd:cd:34:ea:d9:5e:
e5:61:1a:2f:b2:39:0b:7d:30:64:f2:7e:99:ac:3a:
66:26:8f:54:3a:88:2e:5b:23:05:36:a2:ff:81:2f:
12:f1:f6:0b:5b:b6:4a:93:9c:48:a7:61:42:09:27:
6f:05:f0:8b:ce:cd:bf:2b:fd:72:94:a6:d6:2f:f8:
f8:89:04:46:9d:46:35:6c:ce:a1:8a:65:9e:89:94:
b5:d4:7c:cb:d0:75:f6:ea:fb:eb:b0:af:46:af:2b:
ed:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:52:5B:30:53:3F:23:70:85:25:6F:B4:B2:0A:93:6A:68:63:A0:CC
X509v3 Authority Key Identifier:
keyid:C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:ab:94:8f:57:48:23:99:0a:50:d4:ce:68:e2:ba:9e:6b:0b:
1f:39:07:1f:c2:60:90:1a:19:8f:5b:66:8c:67:75:e4:7d:17:
ab:ad:df:16:2b:59:fb:4a:dc:da:19:09:62:b7:7a:45:c5:0e:
e8:53:98:cf:74:52:63:da:aa:a4:43:a2:71:bf:af:fe:11:2c:
e8:5f:a5:37:fc:41:64:93:96:2f:72:85:45:e8:66:02:e4:a6:
15:10:e8:92:29:84:cb:fa:05:a4:26:ce:fd:3d:39:51:c0:23:
b3:c9:30:7b:1e:dc:66:38:d3:39:fa:23:f3:96:ba:5f:49:71:
58:bd:1b:42:7e:df:6e:e8:a4:06:78:78:e1:8c:8b:bc:e9:67:
86:53:45:a0:b8:db:b3:5d:b2:27:1d:45:71:bb:2c:4b:a2:a0:
7f:2b:97:ca:a9:79:f7:e3:b5:f5:0e:09:c3:ee:da:4c:e8:bd:
3e:c9:3a:fb:ef:a4:0f:6d:90:f6:72:d6:ba:a6:3b:c6:e6:8a:
1a:28:20:df:95:b0:b2:a6:64:48:b5:6d:df:bb:da:03:71:5f:
f9:16:54:2e:d4:5f:3c:69:37:c9:76:98:9e:b2:e6:83:4e:18:
a8:8c:88:fc:96:77:4c:23:25:f4:88:71:e9:7e:73:c3:8a:4c:
f8:de:c1:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:21:36 2025 by rpki-client