Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
File: xRlGjFXmvnFcDagFzvta7IXTKSY.mft (raw, json)
Hash identifier: a+mRgQdPcVaTjZI8UEveVKVm1o+Ycw9F8dWxFObgbAY=
Subject key identifier: ED:44:57:2F:01:9A:2A:80:84:4F:D9:90:73:90:87:F8:9D:E4:69:D6
Authority key identifier: C5:19:46:8C:55:E6:BE:71:5C:0D:A8:05:CE:FB:5A:EC:85:D3:29:26
Certificate issuer: /CN=c519468c55e6be715c0da805cefb5aec85d32926
Certificate serial: 0196C53A8FF888BD56B0E8D7A4B4057EF8AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
Manifest number: 0E31
Signing time: Mon 12 May 2025 16:01:11 +0000
Manifest this update: Mon 12 May 2025 16:01:11 +0000
Manifest next update: Tue 13 May 2025 16:01:11 +0000
Files and hashes: 1: xRlGjFXmvnFcDagFzvta7IXTKSY.crl (hash: OWREl5WrL5NSKDeTJynPbCOPScikzKcmYQWLwUIjhkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:8f:f8:88:bd:56:b0:e8:d7:a4:b4:05:7e:f8:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c519468c55e6be715c0da805cefb5aec85d32926
Validity
Not Before: May 12 16:01:11 2025 GMT
Not After : May 13 16:01:11 2025 GMT
Subject: CN=ed44572f019a2a80844fd990739087f89de469d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:18:a9:78:ea:a2:dc:9f:58:15:4b:6a:0d:de:
14:1c:23:6e:8d:1d:85:8f:88:cc:8a:90:87:f4:f3:
34:c6:31:f6:a9:92:b4:7b:91:87:8b:07:0f:b9:02:
47:0a:49:b3:97:c7:ce:e1:b1:ec:23:3e:aa:5f:87:
8d:e5:8e:34:f5:24:ed:de:bf:a0:91:15:17:a8:5a:
89:a2:68:2f:ea:5e:c0:b4:25:44:bd:61:ae:9e:e1:
e6:c7:1c:45:fa:18:03:0b:bb:e3:88:81:be:dd:31:
52:42:2a:f7:a2:9e:a1:57:b6:82:78:23:2a:39:59:
77:2e:a5:be:ec:e4:eb:76:8d:6d:2b:e5:84:d6:3c:
80:92:04:d6:f3:40:2c:4d:06:27:66:14:a7:4c:08:
09:6e:b5:c5:80:28:41:9d:78:22:be:64:f6:8b:88:
07:a7:4a:00:71:e5:20:f3:6f:27:53:1a:e2:07:7d:
7c:17:7a:39:70:3f:a2:68:7c:0c:2b:01:c0:e0:ce:
ae:63:ea:b5:22:a8:ef:8a:53:cc:5b:78:d5:b4:42:
c0:44:95:6b:b0:18:86:21:33:e0:16:74:38:ad:1e:
97:ee:c0:8b:ee:79:39:39:3a:29:c8:ab:a8:00:47:
fb:13:1e:50:be:0c:c5:6a:e1:07:27:ec:18:76:e8:
06:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:44:57:2F:01:9A:2A:80:84:4F:D9:90:73:90:87:F8:9D:E4:69:D6
X509v3 Authority Key Identifier:
keyid:C5:19:46:8C:55:E6:BE:71:5C:0D:A8:05:CE:FB:5A:EC:85:D3:29:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:c6:ab:5c:5d:0c:28:f9:6f:11:31:ac:57:3b:1d:58:7e:73:
87:7e:62:ad:01:52:28:8a:9d:f9:73:2f:a7:0e:9e:cb:3b:39:
c2:3b:97:8d:6c:f7:96:80:14:4f:98:db:7f:c8:42:85:a4:7e:
fb:f7:84:14:3e:70:a5:22:6f:a5:e5:51:81:a9:30:7a:2e:c9:
0d:a9:57:d0:da:c8:98:36:c4:13:c5:2f:74:e0:4c:5d:ad:0a:
ed:3f:97:c5:23:40:c6:6f:62:f9:78:38:c4:c3:f5:1d:d3:c2:
68:af:2f:e9:28:60:4d:d2:52:75:c8:c6:8c:b2:69:d2:52:53:
48:a2:63:43:22:7a:1b:5d:c0:86:1c:17:be:62:9a:9d:41:96:
04:10:19:ec:5b:78:d9:d1:97:43:fb:6a:9a:5d:99:b3:36:4f:
8f:c3:6e:d5:a4:70:65:51:5d:3a:4f:2d:8e:77:af:b7:c9:5d:
c1:07:64:64:c9:a2:7f:fd:7c:28:f2:83:50:10:a9:a5:a9:c1:
4c:a8:6a:8b:4e:26:ff:f3:bf:f2:15:92:de:e9:16:9e:7e:65:
7c:b5:75:5e:0a:24:65:d7:d0:ed:a7:65:5a:47:a6:dd:f6:97:
e4:21:0b:1a:c2:01:98:6b:e7:ba:21:12:20:9a:4e:06:ce:42:
40:4c:43:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 00:02:39 2025 by rpki-client