Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
File: XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft (raw, json)
Hash identifier: qrzmYBeFbD9pKWTvKPshfYB3385aVgHyQjNUvLUbZAE=
Subject key identifier: 4A:CF:84:1A:CB:39:BF:A2:84:90:C8:BE:51:77:6C:20:DB:C2:DB:EF
Authority key identifier: 5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF
Certificate issuer: /CN=5e4098f206850488b72cdde8387c3181c63f8cdf
Certificate serial: 0196C314C9C3ED3A429A390F04FFE78046C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
Manifest number: 02E7
Signing time: Mon 12 May 2025 06:00:41 +0000
Manifest this update: Mon 12 May 2025 06:00:41 +0000
Manifest next update: Tue 13 May 2025 06:00:41 +0000
Files and hashes: 1: XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl (hash: wdSoYAf1zIm/A48EVGsS7h3mOXyRrWWPb0sXCkeceoQ=)
2: Zalmb79lgnJ8ZqrgJMNHmIB0_a8.roa (hash: qT5QBRK21+1uxjdCx9gW03qYws/IDIrgYu8jrzg9fD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 06:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:14:c9:c3:ed:3a:42:9a:39:0f:04:ff:e7:80:46:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4098f206850488b72cdde8387c3181c63f8cdf
Validity
Not Before: May 12 06:00:41 2025 GMT
Not After : May 13 06:00:41 2025 GMT
Subject: CN=4acf841acb39bfa28490c8be51776c20dbc2dbef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:58:8f:f5:16:67:69:6b:7e:88:21:d9:d8:01:
f5:ce:56:30:55:3c:d1:39:3f:95:96:39:75:50:7c:
70:ae:03:22:af:87:73:e5:8e:d8:e2:09:7e:ea:3e:
32:e6:ed:c5:d4:98:cb:ca:c3:9f:1b:41:38:28:e5:
84:64:d6:7d:de:7b:25:0d:56:ab:0b:71:63:b5:b6:
c2:56:7c:30:e3:2a:f9:d2:af:76:a2:31:44:0b:73:
34:15:3f:21:ca:3f:b9:35:3c:ba:61:ec:cc:d8:39:
61:a3:3a:15:a8:a1:e7:88:52:53:cc:da:5b:08:6a:
4b:ae:6f:b2:e0:c2:d7:99:67:8c:00:e4:d0:67:98:
ea:21:a8:d6:94:1b:57:7c:80:a1:30:66:e7:0c:9f:
32:b3:8d:81:6c:77:32:89:90:8b:af:30:0a:74:79:
85:a1:c3:a1:b6:ad:d6:b4:31:92:dc:cd:1c:45:f8:
10:b1:8d:ad:a0:f9:b3:8b:51:4d:8f:4b:e8:a3:fa:
e2:b3:05:6b:23:0a:42:a3:d4:01:06:db:db:41:ff:
6d:c0:d3:33:8e:af:02:33:f3:e4:3b:19:c3:1b:19:
f9:bb:e3:d0:89:e8:9d:a2:f6:ff:44:13:84:df:0a:
b0:f8:ec:06:10:3c:76:ec:7a:9d:d4:6c:89:a4:a2:
bb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:CF:84:1A:CB:39:BF:A2:84:90:C8:BE:51:77:6C:20:DB:C2:DB:EF
X509v3 Authority Key Identifier:
keyid:5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:3a:8b:8a:c7:33:3a:52:12:38:91:3a:36:87:17:9a:4e:d8:
1c:8f:d6:5c:a3:07:24:24:90:81:e3:31:66:7b:1c:08:96:92:
8e:a7:ae:9b:f4:55:ff:7d:0e:b1:a0:49:c9:ce:ee:c4:54:84:
93:43:5d:a6:8f:b7:7e:9d:55:d0:c9:44:a3:3a:94:bf:6a:52:
7d:75:04:7c:f5:d3:9e:b5:03:d4:fb:99:7e:9b:30:67:4a:7e:
d9:54:9a:8b:ab:d9:e9:f5:41:ee:3b:07:db:1e:6b:e1:f5:a2:
f8:05:7a:98:bb:56:69:ff:9c:1d:7f:da:d7:e7:bb:89:b0:9f:
24:5e:90:18:2d:93:d4:2b:36:28:9d:6d:51:f3:1a:8c:40:f0:
59:a8:bf:97:c8:99:58:01:39:ff:b6:eb:68:d4:93:95:a8:59:
9f:c1:e3:8a:e4:7f:09:ba:f7:38:3b:c9:5a:39:20:2c:6f:5e:
eb:5b:36:d2:e7:90:ac:e4:95:b5:f4:e4:d9:2a:00:6d:21:8f:
47:2f:f3:b6:25:46:29:7e:21:7d:a0:d1:1a:89:ae:9a:8e:e6:
63:2e:61:cc:15:65:bb:58:0d:f2:cb:27:52:0f:95:2e:54:0a:
94:f3:d9:ba:51:7b:3a:ba:96:b0:4f:32:ae:c8:9d:d8:bb:80:
26:38:12:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 14:56:59 2025 by rpki-client