Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
File: xKMWKFZYILOlo-HPyHdz4oP7lcE.mft (raw, json)
Hash identifier: THN5xhRc3eH+bFUjfZvYvpM4LMlkK3MwcJws3jic008=
Subject key identifier: C8:E1:2E:56:27:F7:C7:D6:09:B6:3C:6D:FB:E6:F6:C0:4A:A7:2B:AA
Authority key identifier: C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
Certificate issuer: /CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Certificate serial: 0196D02B248E48CBEC20BA8E201C7EEC6DE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
Manifest number: 0A83
Signing time: Wed 14 May 2025 19:00:10 +0000
Manifest this update: Wed 14 May 2025 19:00:10 +0000
Manifest next update: Thu 15 May 2025 19:00:10 +0000
Files and hashes: 1: O7JK_R6ip6iR244uyf3DBgROHco.roa (hash: GKH7o0xxF7nZfmB+4s7mUapBQQrsXrRHoDwbM7Hh8hA=)
2: xKMWKFZYILOlo-HPyHdz4oP7lcE.crl (hash: eZO1FiQPrcVUsON0p33T5QfvgWFw4wB1SNb2PrwYLVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 17:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d0:2b:24:8e:48:cb:ec:20:ba:8e:20:1c:7e:ec:6d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Validity
Not Before: May 14 19:00:10 2025 GMT
Not After : May 15 19:00:10 2025 GMT
Subject: CN=c8e12e5627f7c7d609b63c6dfbe6f6c04aa72baa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:91:04:4a:28:f5:78:b7:a3:74:2b:6f:09:77:
26:1c:93:1a:d9:e9:93:2c:6a:b4:6e:1b:56:71:81:
4a:3b:45:2b:de:09:37:26:b5:fa:72:0d:07:69:4d:
4f:cd:f4:44:64:62:62:67:62:df:17:73:3d:0d:11:
0a:5c:ed:74:7b:64:42:8d:80:f8:ce:6f:3f:5b:12:
d3:3f:03:9d:2c:dc:8a:f4:fb:ff:96:4e:21:13:65:
de:b5:34:e0:60:0e:f1:8c:49:94:3a:b5:2e:64:87:
36:44:e8:66:3c:15:54:bb:d1:07:eb:17:f2:e3:55:
a4:70:fe:9d:13:c7:f3:e6:6f:5e:5b:b7:34:b7:1f:
b1:4b:f2:63:1e:02:0e:89:d9:15:7d:75:de:36:cb:
5e:d5:2b:74:64:ba:cc:0c:d1:3a:6d:43:7d:b6:96:
b3:46:b9:e9:7d:5c:b2:56:f0:1b:c5:49:7c:cd:0c:
a8:ff:c3:36:d1:4e:b2:d1:6a:7b:69:8f:59:b2:04:
91:8d:11:f9:41:e1:8f:7f:64:8f:52:22:b4:ef:8f:
cc:cc:79:4b:63:b9:a5:19:7a:89:7e:20:49:77:93:
28:d1:76:7a:ae:bf:eb:20:ac:c1:a5:4a:62:8d:79:
25:5d:f4:0d:21:71:26:61:55:79:c5:1c:f1:8a:91:
35:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E1:2E:56:27:F7:C7:D6:09:B6:3C:6D:FB:E6:F6:C0:4A:A7:2B:AA
X509v3 Authority Key Identifier:
keyid:C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:1b:ae:bc:30:e0:fb:71:ee:e0:77:eb:d6:c7:91:3e:b9:ea:
74:9c:66:1c:32:fc:fb:59:03:d2:01:18:de:5d:fb:83:47:0f:
2b:14:c6:65:72:59:5c:d3:03:8b:9e:3b:7c:73:3c:94:4f:2c:
8e:7b:c5:c1:50:e7:b9:41:e4:e6:a8:d4:83:58:8c:27:d0:18:
82:89:59:1a:5e:f2:f4:1f:55:b3:91:c9:ea:55:52:1b:1d:82:
cb:fd:50:2e:63:e9:37:58:05:b5:93:2e:06:d6:d9:e1:0d:67:
90:24:12:e0:0e:57:e8:72:de:ae:80:fc:80:04:d9:bf:3f:f5:
68:59:2d:fa:a4:e6:be:09:76:3d:da:70:ac:fc:42:a5:b4:f2:
5f:76:c1:19:da:db:1d:96:19:d3:be:99:48:68:b2:0f:77:12:
b6:cb:ed:d7:c9:d8:83:35:f8:18:10:6d:44:78:38:9d:36:ba:
01:5b:34:58:ac:d0:59:28:21:ad:6c:3c:18:1e:55:c5:c7:fa:
3f:26:61:83:89:56:a1:b0:db:dc:f5:90:b8:b8:b9:f5:51:c6:
b7:34:74:bd:aa:98:d0:77:d3:e3:23:e2:f6:d6:7d:52:03:cd:
01:e1:7d:c7:09:a0:68:df:18:3a:e2:4c:d6:66:7f:95:c0:88:
62:fd:e0:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 02:39:40 2025 by rpki-client