Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
File: xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft (raw, json)
Hash identifier: BvFCuschRJWMFqbw9iHVOzgmCMzRK1QyyeLSO7zVnKs=
Subject key identifier: 3A:4B:2A:7C:08:75:2D:AC:C7:46:BB:14:A5:7C:95:76:9E:99:C2:02
Authority key identifier: C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
Certificate issuer: /CN=c59c41daf0092b703bc059ba1353f071ed12199b
Certificate serial: 0196C239734219A4D160975A476982E41064
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
Manifest number: 14C9
Signing time: Mon 12 May 2025 02:01:07 +0000
Manifest this update: Mon 12 May 2025 02:01:07 +0000
Manifest next update: Tue 13 May 2025 02:01:07 +0000
Files and hashes: 1: cGueQe1h8duehogXBQfbjMf187c.roa (hash: SeygR9MEl7TBvHViQ7GiY7qErcMbLwgXcJ9lbMPWx3c=)
2: xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl (hash: Rycd6hUSV97ikdDYfugow5jMrdxug1tYBuvXyjF7iHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 02:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:39:73:42:19:a4:d1:60:97:5a:47:69:82:e4:10:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59c41daf0092b703bc059ba1353f071ed12199b
Validity
Not Before: May 12 02:01:07 2025 GMT
Not After : May 13 02:01:07 2025 GMT
Subject: CN=3a4b2a7c08752dacc746bb14a57c95769e99c202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:30:77:42:97:e0:96:5f:5e:16:5a:6d:bc:d9:
4e:6c:08:76:19:b9:fd:92:57:96:72:90:cb:fd:da:
3d:6f:7f:e2:b4:99:74:a0:6a:6e:e9:24:ec:b7:0a:
e3:7a:32:35:b9:23:9a:47:f9:29:b5:ff:60:f7:6b:
12:83:82:9e:b7:c2:62:35:b0:98:02:28:8b:89:81:
0b:f4:7e:a8:e2:56:a1:c1:e4:c6:db:00:95:0f:85:
48:9a:4c:73:1e:ce:1d:27:a6:ae:41:0a:54:ae:70:
04:39:0a:f1:5a:e4:d2:c5:c8:21:ae:6d:35:a6:04:
f4:a2:f9:63:b9:a5:60:6f:5c:6f:32:c0:d4:50:a0:
bd:1e:2a:40:86:ce:eb:06:a1:7f:73:ef:1b:a9:22:
df:3b:db:ab:21:13:99:20:9d:d5:ed:d6:d1:31:9d:
37:10:7c:87:a1:6d:7d:67:c4:0e:cb:3c:48:ee:2c:
d1:f9:d5:11:95:ac:53:bd:f3:03:c2:28:8a:64:35:
2d:f9:67:a9:0d:f5:78:bc:df:7b:e3:c5:25:16:b9:
12:6e:2a:61:07:b4:39:12:04:ea:fd:08:65:4b:4b:
96:31:07:28:83:83:e2:17:2f:58:60:06:73:71:53:
a4:e8:f5:c8:51:6f:2d:3a:d3:56:73:1b:2d:2e:54:
74:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:4B:2A:7C:08:75:2D:AC:C7:46:BB:14:A5:7C:95:76:9E:99:C2:02
X509v3 Authority Key Identifier:
keyid:C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:bf:27:c7:f3:26:6d:c2:fe:fe:ff:c0:0d:0c:6e:89:0b:59:
49:ad:3e:c9:ca:9b:9c:6d:c1:e8:9f:d8:52:bc:8b:6e:e0:17:
77:34:2f:bc:2e:64:33:4b:e6:9e:3e:49:8f:24:97:f8:c4:f3:
af:02:51:1e:d6:b5:fe:e8:b0:39:9d:dd:74:19:f5:a5:af:2e:
83:ce:b2:0d:f1:42:66:f2:74:f7:8e:e6:43:04:ef:43:c7:3e:
3a:f8:60:8f:5c:52:a3:9e:db:f9:62:74:a9:c6:a1:94:0b:ba:
32:01:98:15:07:95:2c:b0:41:9b:71:78:6d:4d:dd:86:b3:22:
6f:2e:ef:99:3e:8c:88:a4:5f:b3:ea:e0:8d:9e:e8:52:e3:eb:
2d:9f:17:e5:88:70:be:4b:d0:f6:2b:4d:22:fe:55:61:e6:83:
9e:1b:16:6f:0a:9b:70:85:35:23:06:eb:34:2f:60:d0:84:26:
5e:f9:3f:15:95:92:18:aa:15:11:05:a4:c5:0e:60:20:6c:93:
07:31:33:ca:80:83:5c:e0:00:10:44:9a:b0:6f:b5:20:6d:b3:
f0:69:51:be:b4:28:cc:3c:34:e9:ee:03:61:2a:f2:2c:8a:12:
a0:19:60:18:c4:d8:2b:4c:9a:89:d1:8a:d1:b5:fc:18:f9:b8:
da:c2:d4:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 12:53:35 2025 by rpki-client