Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
File: XL1s2RrWpyhrIfZQn92fUP7nXYc.mft (raw, json)
Hash identifier: 06aQxx7ZZgvOO41K2RSzX7tq2S7wkmIoPw3C5T6PyWo=
Subject key identifier: 1C:41:BF:FA:D7:58:DD:57:D5:EE:04:E5:3C:27:B2:CE:F4:6A:E7:B7
Authority key identifier: 5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
Certificate issuer: /CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Certificate serial: 0196BB92EF4925ED06CF8A640B47DA198E6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
Manifest number: 1460
Signing time: Sat 10 May 2025 19:01:30 +0000
Manifest this update: Sat 10 May 2025 19:01:30 +0000
Manifest next update: Sun 11 May 2025 19:01:30 +0000
Files and hashes: 1: LfsV7f6LxRRDF8DgEB39eI0JGcY.roa (hash: 57HPzdZv/cmkcVMLJmynj7OnbXGj1b4sWVjtj2VnRws=)
2: XL1s2RrWpyhrIfZQn92fUP7nXYc.crl (hash: euXRH0I82WOx5RwFydXZrwW/k1QOg1WicYwhstCoTJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:ef:49:25:ed:06:cf:8a:64:0b:47:da:19:8e:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Validity
Not Before: May 10 19:01:30 2025 GMT
Not After : May 11 19:01:30 2025 GMT
Subject: CN=1c41bffad758dd57d5ee04e53c27b2cef46ae7b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:fa:75:a8:32:ee:f7:f8:50:c9:63:5c:fd:28:
61:de:d2:a9:eb:7b:7f:9f:31:b3:3e:02:8a:c8:55:
11:6d:7b:3f:f3:b6:68:e0:4b:e6:ce:01:9e:58:e3:
af:93:d9:39:34:22:1f:eb:23:be:51:2a:ef:00:24:
a5:e8:93:5d:b2:26:db:e4:f6:8d:6d:06:f0:e1:72:
c0:f4:06:dc:d4:8f:93:76:55:67:8f:86:e6:e9:c7:
e8:fa:dd:13:a6:a1:58:55:ab:e1:03:87:d7:1a:48:
0d:6e:29:b4:84:51:63:e5:bf:b2:27:d0:5a:fb:59:
0c:f7:44:2d:8d:87:97:fc:d3:02:0e:18:d1:38:5f:
08:dd:4c:9a:54:3e:c0:a5:de:23:4d:8c:c6:d6:60:
18:d8:b1:34:92:90:9e:1b:53:cc:2a:b0:2f:bc:e4:
8e:2d:25:07:71:ec:d8:e6:e5:f4:b3:2c:05:39:74:
a9:f5:b4:73:12:f3:73:22:3c:89:2f:74:6e:33:9f:
0b:07:33:c6:6e:cd:1a:39:e4:7d:66:17:68:4d:71:
ac:62:f8:0a:d1:f0:32:6d:cb:80:fd:14:ad:aa:b4:
80:7d:58:6f:3e:4e:ff:68:a4:55:93:f5:0e:3a:ca:
24:e1:14:1e:32:4e:8b:22:83:ca:da:ab:d9:5b:f1:
00:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:41:BF:FA:D7:58:DD:57:D5:EE:04:E5:3C:27:B2:CE:F4:6A:E7:B7
X509v3 Authority Key Identifier:
keyid:5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:1f:a1:e6:50:48:ef:ef:8a:08:50:ac:2c:1a:85:9b:2f:ff:
5b:8f:d8:f4:c9:61:73:c5:7f:db:6f:bd:45:2c:76:ee:6b:03:
f6:0c:a6:85:41:bd:e3:3c:6c:54:b4:1b:78:ad:f3:bc:32:f3:
c9:46:db:c8:03:92:08:ed:0a:72:e1:f4:2f:d8:e7:f8:1e:33:
e5:8a:08:7f:e3:2d:97:ae:a8:e2:33:48:bf:9c:20:48:d8:b2:
24:4d:b0:35:1b:3f:5d:3d:50:c8:ff:28:61:74:12:83:9e:6e:
a5:48:42:8e:fb:c4:0a:c6:da:9a:71:c4:d5:5a:54:f0:78:f1:
2b:2b:d7:2e:9e:90:8c:92:5b:22:94:d4:c6:84:bb:ce:fe:12:
8a:84:2a:34:6f:92:9d:f5:0a:47:4b:63:f5:31:2f:c9:72:fc:
99:ec:a2:3b:30:92:1c:66:35:87:16:dd:0b:76:a6:d1:68:2d:
a2:41:bd:36:08:67:b1:bc:92:31:23:ae:b1:94:3d:cb:0c:0b:
2e:bf:90:37:68:6e:40:ab:05:ea:51:9a:7c:d7:2f:e0:6f:e2:
76:0e:7e:61:10:ac:f3:65:c2:64:5c:5e:2f:5b:04:70:10:87:
c9:8f:db:50:c8:a6:b7:26:a4:02:13:80:09:7d:12:a0:14:66:
0d:40:88:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 20:44:07 2025 by rpki-client