Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
File: xRvfUzN6yxiydpUsNX6RmAvMWww.mft (raw, json)
Hash identifier: Dx2aHtRuBbtY1DX+/FQ8kK7GsZAFlQLUTxwI7IBWi4Q=
Subject key identifier: 60:50:12:E2:1E:A8:DD:C1:58:E7:77:76:ED:79:F2:86:CD:27:5F:5D
Authority key identifier: C5:1B:DF:53:33:7A:CB:18:B2:76:95:2C:35:7E:91:98:0B:CC:5B:0C
Certificate issuer: /CN=c51bdf53337acb18b276952c357e91980bcc5b0c
Certificate serial: 0196C15D18180EF67EC1365DF64F793DD6FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRvfUzN6yxiydpUsNX6RmAvMWww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
Manifest number: 0945
Signing time: Sun 11 May 2025 22:00:25 +0000
Manifest this update: Sun 11 May 2025 22:00:25 +0000
Manifest next update: Mon 12 May 2025 22:00:25 +0000
Files and hashes: 1: xRvfUzN6yxiydpUsNX6RmAvMWww.crl (hash: s32NUeAn/rCUkUW91BJ87E9oetIMccHmHe0Ub+ItYTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
rsync://rpki.ripe.net/repository/DEFAULT/xRvfUzN6yxiydpUsNX6RmAvMWww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:18:18:0e:f6:7e:c1:36:5d:f6:4f:79:3d:d6:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c51bdf53337acb18b276952c357e91980bcc5b0c
Validity
Not Before: May 11 22:00:25 2025 GMT
Not After : May 12 22:00:25 2025 GMT
Subject: CN=605012e21ea8ddc158e77776ed79f286cd275f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1a:28:1f:b6:bf:d7:55:fc:36:de:09:f1:2a:
92:af:4b:59:12:b9:bf:ca:93:c1:95:85:2c:bb:73:
51:14:ec:c1:ca:53:9c:36:d0:21:4c:16:4c:f0:b5:
6f:66:83:09:43:f1:f7:3a:74:be:ab:bb:2a:f4:8d:
b1:bd:27:e0:a6:e8:66:d9:37:33:b4:1e:93:8b:e0:
9b:69:b4:af:13:76:77:f1:ce:17:52:cb:59:ed:42:
89:59:1e:fa:6c:b7:a5:b3:77:26:f5:1f:92:b6:3e:
d6:ef:0d:00:5c:fa:39:b0:23:80:e8:ba:f9:91:6a:
4b:ff:12:6c:2d:9c:16:c9:7c:43:69:31:c8:99:98:
08:a6:d0:c5:70:f0:12:c1:7a:22:fb:aa:30:e9:d5:
59:34:1a:b4:c8:e4:1f:17:c1:4e:4c:18:28:b9:f9:
a4:dc:54:77:cd:5b:ec:33:20:8a:6f:c0:de:bc:cc:
52:ce:8b:e0:a0:76:8a:8d:d5:83:bf:fa:d7:9f:ce:
d1:7f:5f:3c:d4:e5:65:d2:4a:07:b9:87:e0:88:29:
8a:47:ca:99:91:06:90:a3:c5:9f:f0:9a:f9:9f:a6:
d4:29:be:ac:99:d4:61:9d:3c:ce:ec:2c:bf:c2:95:
ef:c5:5b:04:3e:b5:65:5b:e7:bf:57:1f:02:fc:6e:
5c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:50:12:E2:1E:A8:DD:C1:58:E7:77:76:ED:79:F2:86:CD:27:5F:5D
X509v3 Authority Key Identifier:
keyid:C5:1B:DF:53:33:7A:CB:18:B2:76:95:2C:35:7E:91:98:0B:CC:5B:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRvfUzN6yxiydpUsNX6RmAvMWww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:c5:18:60:d2:e1:2f:91:a0:2b:13:d4:35:d9:1c:d4:7c:d4:
67:b0:0d:19:09:33:f8:c4:73:ee:4c:fd:e6:21:5f:a1:e1:ed:
60:8b:7e:dd:8d:c2:48:aa:5e:22:19:f4:2e:fa:c2:05:c1:fa:
69:2b:f9:9f:b9:0f:f4:55:72:0f:a4:da:fe:47:58:4d:76:34:
64:ae:97:a5:f8:13:dc:77:a3:62:1e:da:25:22:9a:ee:4f:69:
51:ec:94:94:5d:75:dd:60:58:b5:63:ac:ec:37:d4:cd:24:2c:
bf:9a:12:2f:20:79:f8:db:6d:76:c1:12:c7:32:47:a5:c4:1c:
14:8a:18:a8:9d:54:03:cf:d4:ce:2b:9e:5b:87:ab:8f:71:b3:
43:2f:bb:b8:52:59:ae:91:39:6c:52:0e:97:8f:be:11:2b:cd:
f1:4e:51:cd:46:d4:65:49:89:96:fc:32:56:ad:24:71:86:03:
fa:3d:be:ae:7d:0f:9b:83:3b:8c:11:e3:52:1b:14:c2:07:f3:
57:ef:ef:2e:37:ef:c5:ac:8f:6e:f1:05:5e:e4:5a:6e:22:8d:
4d:25:65:bf:eb:36:0e:b5:e3:a6:a7:66:2b:97:a4:5b:c9:1f:
d9:f6:df:b3:6a:ea:5a:19:6a:fc:ed:79:de:a9:22:eb:b4:c3:
6e:c5:f0:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 03:34:04 2025 by rpki-client