Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
File: X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft (raw, json)
Hash identifier: do2o8u0aSm/J7+GRqlf88ZNWaGBOiGkcUSHhDPWCJqg=
Subject key identifier: 71:F7:02:C8:E5:2F:9F:E1:59:BA:D6:36:26:97:3C:EC:F5:09:01:23
Authority key identifier: 5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67
Certificate issuer: /CN=5fdd1e8c2394d18e876c2d57016e7ed89805a667
Certificate serial: 0196A3C0D0682C45633C4F066414155FEB1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
Manifest number: 0CE5
Signing time: Tue 06 May 2025 04:00:44 +0000
Manifest this update: Tue 06 May 2025 04:00:44 +0000
Manifest next update: Wed 07 May 2025 04:00:44 +0000
Files and hashes: 1: X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl (hash: nImVQzRrdw1kmLxw5ys+1IBeUTSUIkq2z3xmPC20Tvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:c0:d0:68:2c:45:63:3c:4f:06:64:14:15:5f:eb:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fdd1e8c2394d18e876c2d57016e7ed89805a667
Validity
Not Before: May 6 04:00:44 2025 GMT
Not After : May 7 04:00:44 2025 GMT
Subject: CN=71f702c8e52f9fe159bad63626973cecf5090123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:5d:dc:28:43:ad:3f:f0:34:35:72:93:3c:3f:
25:f3:37:f1:de:73:2c:cc:aa:43:82:7f:c3:58:f9:
2f:45:e7:fd:8f:38:f4:65:d9:0a:fe:4f:d7:93:9f:
8b:42:8e:90:22:3a:fc:65:53:d4:0b:e8:32:5e:69:
8f:e7:ad:2a:56:ec:18:4a:11:5a:54:e4:76:41:af:
4f:1b:b0:32:c2:78:be:91:16:e3:98:df:28:93:ea:
40:21:df:be:be:bc:20:1d:68:e6:53:73:da:ca:90:
01:fa:64:92:2e:fd:2c:93:b7:e9:4e:45:4d:a7:e6:
15:68:d3:bc:82:1b:85:27:5b:a5:9e:10:af:e0:a8:
9c:88:11:47:b2:f3:15:32:64:9a:8d:7e:99:e1:3f:
cb:65:57:c0:f6:62:91:f9:69:54:d8:b9:c5:5a:d8:
1a:be:87:b8:52:89:b6:49:cd:c0:99:2b:44:9f:bb:
6f:34:35:4e:60:19:28:f4:c2:ff:84:ae:33:10:a0:
c0:39:ed:23:c8:14:ef:77:b0:00:71:b5:f6:cf:3a:
a1:a1:77:0b:e0:cc:5d:d9:21:64:3f:69:83:18:61:
26:1a:ff:e6:1e:82:94:53:a9:dc:3a:6a:34:1e:a3:
3c:52:d8:0f:4c:29:22:5d:28:09:6a:5d:5a:bf:d9:
a3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F7:02:C8:E5:2F:9F:E1:59:BA:D6:36:26:97:3C:EC:F5:09:01:23
X509v3 Authority Key Identifier:
keyid:5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:55:a3:9c:50:0a:d1:e9:d5:55:87:dc:a7:18:20:58:4a:98:
8c:71:d6:d0:91:8a:4d:d7:bb:f5:86:c5:6d:b5:4e:3f:b9:47:
4c:b3:c7:7b:d1:55:dd:2b:9b:1f:5f:b2:af:44:f4:9e:99:56:
de:12:56:37:c2:d2:8d:b2:51:ef:61:27:ef:47:b0:52:05:f1:
68:94:43:4f:90:7f:6a:c3:fc:49:3d:a0:26:33:e5:43:e1:b0:
a1:64:ac:37:5e:fa:f2:b2:ed:20:4a:03:98:e1:31:97:dd:c6:
90:9a:1a:da:bf:d9:d0:fe:84:a7:3b:75:2b:2b:36:cd:1a:85:
04:ca:4e:07:54:5d:03:0e:67:a4:6d:b6:62:e5:7b:5c:07:84:
7d:8b:cc:6b:c0:71:29:ca:a1:fe:f1:71:b6:f4:b2:37:0a:2f:
19:d8:0e:1e:aa:5f:62:44:56:15:00:50:ce:0d:b4:8b:09:94:
d7:4f:ee:85:b6:78:5c:63:9c:93:ad:51:fa:83:81:9d:5e:7f:
09:03:21:4c:75:4e:23:99:e7:e4:0c:78:7a:55:4f:de:0f:58:
f0:43:e4:da:03:ca:af:63:89:f6:8b:ac:e4:fb:a0:1c:73:2b:
82:6c:f0:9e:fa:7a:57:8c:ad:1f:c1:c9:a0:5d:12:23:8b:62:
94:25:f6:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 13:50:44 2025 by rpki-client