Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
File: _XjxP_qS8HTr5VfSotKa0Noz5dg.mft (raw, json)
Hash identifier: craHDuId0U6IFyg+XdgQ3DT1xTq2/vS2qsWD3oTVHwI=
Subject key identifier: AA:4A:4D:B0:2F:DD:E0:29:87:C8:AB:5D:94:49:75:30:18:C8:AF:1A
Authority key identifier: FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
Certificate issuer: /CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Certificate serial: 0196C8DFA851FADDBB32CFB5FB813982D30A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
Manifest number: 0A92
Signing time: Tue 13 May 2025 09:00:22 +0000
Manifest this update: Tue 13 May 2025 09:00:22 +0000
Manifest next update: Wed 14 May 2025 09:00:22 +0000
Files and hashes: 1: IPVqTow4BPog0VgWrmL6j3UlRyc.roa (hash: yHocQSt6Dh1L30jflXp+Oc+mQ08tmbAfLa5FFYWt/64=)
2: _XjxP_qS8HTr5VfSotKa0Noz5dg.crl (hash: HVbYDy8i7JlkNhNLFAqjGMIaF8LSjAbCdEtASRbgWSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:df:a8:51:fa:dd:bb:32:cf:b5:fb:81:39:82:d3:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Validity
Not Before: May 13 09:00:22 2025 GMT
Not After : May 14 09:00:22 2025 GMT
Subject: CN=aa4a4db02fdde02987c8ab5d9449753018c8af1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0d:9e:db:78:09:4e:7c:24:0b:e7:bb:0a:a7:
5d:26:f6:bc:d0:1a:d4:58:85:b2:27:0e:97:3c:d9:
81:8c:d2:c2:24:1d:37:f2:35:cc:f0:bd:78:be:6f:
22:e8:19:fb:91:89:57:c9:b0:f2:ba:41:c2:ad:d0:
61:ac:43:f1:9d:32:a4:04:19:a3:50:25:43:72:a0:
7e:61:4f:51:e2:34:76:45:61:0d:bc:9d:3b:be:64:
f4:cd:0b:7f:57:b3:dd:ba:0b:c2:23:d6:c5:07:9e:
a4:59:86:72:34:58:43:fc:e4:14:f7:44:8d:c4:7e:
3f:8d:ea:e6:af:a8:b7:71:7e:d1:81:0d:64:df:3c:
9d:c4:f6:9d:c4:20:63:0b:2b:f9:ed:ba:4d:f6:36:
20:53:ab:dd:ed:af:02:d9:fb:6c:59:1b:36:b4:62:
75:55:a0:36:24:17:62:0b:6b:43:b9:70:2e:0d:d2:
34:3d:cd:9e:de:63:79:46:1c:78:f9:d4:07:c6:1e:
ea:6a:79:4d:63:73:98:08:a6:3a:b3:b4:d8:44:27:
5c:f9:ca:42:e2:05:e5:fe:3f:78:21:52:fa:50:c4:
ce:07:be:44:10:6a:57:72:7d:47:41:c6:0b:eb:69:
91:e9:34:18:a2:7a:a2:fa:4e:ed:b1:47:14:6c:fc:
0e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4A:4D:B0:2F:DD:E0:29:87:C8:AB:5D:94:49:75:30:18:C8:AF:1A
X509v3 Authority Key Identifier:
keyid:FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:dd:9a:98:72:46:49:a6:40:7e:55:b8:21:a4:6b:f8:75:d9:
a6:cd:c1:98:b1:24:96:17:a2:b4:25:d5:8c:d7:a8:87:55:1d:
92:a7:e5:07:10:ec:ba:be:a8:80:2c:81:8d:f5:80:97:ab:a6:
16:08:27:53:7b:a9:78:a2:6b:62:9f:59:92:07:28:99:0c:a0:
45:45:df:3d:2a:d7:86:06:52:fa:27:db:d4:80:a9:12:14:91:
48:5a:3c:54:05:4b:58:13:ea:4e:eb:8c:c8:02:6c:04:5b:b0:
6e:21:f7:f0:09:73:8b:a1:1e:5c:10:fd:c1:4e:b8:f6:85:87:
e2:32:9f:13:87:0c:4d:fd:9c:91:b5:24:d5:81:25:ed:6b:66:
01:05:f2:3f:4b:2c:90:30:1a:ac:24:28:d7:2d:d2:c9:87:0b:
e0:38:4d:45:76:65:ea:59:4f:24:43:b9:ea:29:7a:0b:77:aa:
23:ba:6b:0e:33:77:98:2c:27:7d:d8:e5:48:a3:39:e5:92:5d:
f3:1c:62:fe:5a:bf:e8:20:6f:31:e6:6c:c9:dd:f8:6a:82:94:
a0:fe:85:08:e8:be:32:05:f9:95:e7:b4:a5:76:49:c0:0d:2d:
c5:a3:d3:dd:45:6b:bc:b8:7c:54:9c:5a:f4:d4:a3:ff:f4:27:
a2:b9:b8:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 12:02:08 2025 by rpki-client