Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.mft
File: XaOPfD7K0p7FBkS3AGi5KhvkcHQ.mft (raw, json)
Hash identifier: BA6FiG0Q75/PCIiLv/2oXYCIovvKbHKFdseOP9eDa7o=
Subject key identifier: 7E:71:6E:5D:A9:FE:04:F5:70:9A:A9:7D:1D:22:F1:44:8C:A3:F8:7E
Authority key identifier: 5D:A3:8F:7C:3E:CA:D2:9E:C5:06:44:B7:00:68:B9:2A:1B:E4:70:74
Certificate issuer: /CN=5da38f7c3ecad29ec50644b70068b92a1be47074
Certificate serial: 0196C3B9E400230F95716072A966269FAD84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.mft
Manifest number: 046C
Signing time: Mon 12 May 2025 09:01:01 +0000
Manifest this update: Mon 12 May 2025 09:01:01 +0000
Manifest next update: Tue 13 May 2025 09:01:01 +0000
Files and hashes: 1: SzmhUfWJuFhyT5TGLouRAgBLoIM.roa (hash: Qov0MeRXvHn6kZBTJQaoc48+Yw0xT2B5xVOV+b6Nifs=)
2: XaOPfD7K0p7FBkS3AGi5KhvkcHQ.crl (hash: XGXVpNDPunblzRNks3D9TFZSOXVceV5/T5kcySGJZMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:e4:00:23:0f:95:71:60:72:a9:66:26:9f:ad:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da38f7c3ecad29ec50644b70068b92a1be47074
Validity
Not Before: May 12 09:01:01 2025 GMT
Not After : May 13 09:01:01 2025 GMT
Subject: CN=7e716e5da9fe04f5709aa97d1d22f1448ca3f87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:cb:c7:39:0e:6f:52:e3:5a:bb:f2:eb:06:81:
bb:61:a6:1e:ca:8a:92:ee:c3:fd:b4:41:6f:17:74:
f4:92:19:b6:39:a0:8c:fb:5f:33:df:8d:ba:83:3c:
ee:8e:68:3d:e7:64:fd:c2:af:c1:66:a1:e8:56:58:
73:b1:71:97:ec:e1:cb:4b:24:a0:09:ed:39:9a:74:
3c:eb:9d:61:19:e0:63:7d:e1:19:17:7e:1f:b3:96:
e8:ba:75:20:9a:d7:cc:28:24:ee:8d:b1:bf:88:91:
05:28:9f:10:ae:c9:83:f2:51:03:db:87:ba:93:f1:
a0:51:cf:de:14:29:40:3b:7f:49:8b:0a:90:35:6e:
2b:e8:dc:9b:d9:63:ff:33:e8:43:aa:56:e0:88:6d:
68:92:12:b7:92:58:e4:0a:4b:cc:42:11:2d:c1:e5:
b7:7e:d6:eb:ef:e7:20:70:6a:6c:1f:d0:a5:2b:bb:
d1:9b:84:b5:2d:c8:43:cf:0b:ec:6d:93:c2:91:57:
47:f8:91:e3:a6:7e:67:1e:74:3b:a1:91:6d:f1:8c:
d3:56:7f:62:78:df:6c:3a:8c:17:2a:6f:1c:35:f5:
c6:f8:dd:dd:00:79:81:76:ee:7d:3e:b3:8e:bf:b6:
09:00:8f:92:15:3e:fb:76:a0:55:dc:87:5b:3d:01:
04:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:71:6E:5D:A9:FE:04:F5:70:9A:A9:7D:1D:22:F1:44:8C:A3:F8:7E
X509v3 Authority Key Identifier:
keyid:5D:A3:8F:7C:3E:CA:D2:9E:C5:06:44:B7:00:68:B9:2A:1B:E4:70:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:0e:ed:c6:c8:66:42:c1:63:5e:1e:01:95:14:76:95:63:11:
1e:b1:5f:03:ca:77:e1:ff:f5:dd:ea:6e:8c:f1:c2:4c:bc:d8:
e7:23:21:eb:94:c3:bd:66:43:ff:cc:09:6c:2a:7e:46:26:40:
87:12:db:c5:74:11:b7:87:f5:70:01:70:e6:db:89:f2:e1:ad:
a4:fa:d2:a2:48:86:32:67:2f:cd:3a:a0:0f:cc:3e:c2:f3:55:
29:a6:38:1f:fc:36:d5:8e:28:c1:1b:84:f2:07:b1:37:3b:b9:
42:28:e2:9f:d3:ca:08:6e:a7:26:74:eb:59:96:54:7a:f7:32:
9d:7d:6a:9b:b0:d7:78:ff:fa:fb:3e:4a:f2:17:44:34:e2:00:
aa:29:7f:38:35:49:7f:5b:b7:7f:08:c6:14:a9:9c:9e:2a:fe:
42:0f:b4:1c:df:35:e7:bb:a9:68:93:4d:c9:b2:d4:06:76:e8:
21:2b:cd:92:d6:4c:e2:c1:7a:4b:f8:d0:d4:e3:a2:db:a0:8d:
77:89:e3:4a:ac:33:8a:f1:c0:48:67:6f:88:02:dd:54:ae:e0:
b0:a9:4c:12:61:39:be:59:6e:d3:f7:3b:3d:7d:e4:e0:de:42:
cb:2b:4a:dc:45:3f:df:34:bc:de:12:71:94:84:39:10:4b:39:
f9:5b:59:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 13:17:22 2025 by rpki-client