Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
File: XWlT20hASwxmoV8Npu-n-sCpNp4.mft (raw, json)
Hash identifier: l7+2TCT1ecJEFqSFPno24tYexzlfWps1LqzJfafypcs=
Subject key identifier: 04:22:2D:C7:4F:B9:14:1E:73:29:A0:5A:91:38:F9:40:9B:6A:35:09
Authority key identifier: 5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E
Certificate issuer: /CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e
Certificate serial: 0196AD9F4FE8B6DB16CC8F17C2209B8C7307
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
Manifest number: 152B
Signing time: Thu 08 May 2025 02:00:21 +0000
Manifest this update: Thu 08 May 2025 02:00:21 +0000
Manifest next update: Fri 09 May 2025 02:00:21 +0000
Files and hashes: 1: XWlT20hASwxmoV8Npu-n-sCpNp4.crl (hash: yvOO2vxyMSMOjrc2/BzUGa3G/uJ62BFH64pM3ugnaOE=)
2: hC0t1cqhdoh6iyJ3cpDGc1N-nWg.roa (hash: PxIEeNMR+krZxWibCKKwK2CkVaApOYKXyBnr/5vAmac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ad:9f:4f:e8:b6:db:16:cc:8f:17:c2:20:9b:8c:73:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e
Validity
Not Before: May 8 02:00:21 2025 GMT
Not After : May 9 02:00:21 2025 GMT
Subject: CN=04222dc74fb9141e7329a05a9138f9409b6a3509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:71:10:49:3f:1c:9e:df:ee:d2:9a:1b:88:13:
94:63:37:c9:0c:3b:03:4d:ce:30:98:f2:fd:24:fe:
8d:0f:79:db:5e:b4:6e:27:55:bd:2d:93:aa:9d:26:
41:e4:37:2b:18:a5:7b:e0:d6:ce:59:49:5a:13:b3:
e1:ca:42:1c:6c:e3:7d:31:53:60:bf:1f:c2:b3:3c:
7e:3d:c4:8c:7f:0d:9d:6a:6f:9c:93:d6:2e:6f:27:
9f:41:b7:c6:fd:da:e5:d6:57:9d:12:6e:c4:a4:2f:
bf:d7:d0:39:33:1c:19:42:dc:55:9d:77:12:56:88:
e9:a6:79:44:b4:59:fe:fa:fc:ba:36:42:f5:5b:d5:
f4:3a:fd:c8:fd:5b:b5:0b:8b:d6:50:b1:f8:ba:ea:
30:a8:cd:57:1a:33:a2:d8:c5:14:03:15:2f:ad:bb:
59:f2:01:0f:ca:d1:00:fc:7c:41:ca:b6:03:ee:63:
55:ed:95:b0:63:c6:87:23:30:b1:b7:20:bd:93:18:
73:8e:84:0d:8c:4a:6f:e9:37:ae:b3:74:a8:36:27:
97:d7:98:dc:51:0c:38:be:6b:b2:05:c9:6e:17:31:
e2:1e:ac:46:a4:47:7e:87:d3:06:78:ed:f4:b0:59:
d4:e6:60:f2:c9:b2:89:71:2b:67:e2:8c:05:96:0a:
cc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:22:2D:C7:4F:B9:14:1E:73:29:A0:5A:91:38:F9:40:9B:6A:35:09
X509v3 Authority Key Identifier:
keyid:5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:4e:66:74:10:ac:49:60:c8:18:08:c9:f2:0b:b5:f0:0c:ae:
02:d0:1b:ea:d9:33:09:d1:a4:b9:29:76:82:93:31:1f:1e:fb:
b6:ca:78:1c:46:d8:2a:ff:16:6d:97:b2:bb:f6:c5:20:a9:8b:
12:d3:8a:56:c5:9a:69:4f:53:c4:b7:3a:af:54:8c:26:17:81:
45:21:21:98:a4:f7:65:9b:cc:dd:4d:97:2b:d7:c0:86:d2:25:
a2:96:e8:0b:35:d4:ed:69:f2:c4:41:4b:37:c4:68:03:c3:e6:
51:da:75:80:ae:7d:36:28:bb:b7:cb:7c:c5:89:d7:eb:1a:9e:
b8:f0:22:4e:5c:40:b0:70:9b:f8:20:e4:ea:2b:d2:fa:83:71:
fd:ad:73:7a:60:3f:61:bd:4e:4f:e2:ca:c0:c2:d4:f7:44:a0:
5a:a8:a0:5e:9d:60:c7:39:6c:9f:a3:61:82:98:8f:cd:eb:37:
75:c7:5b:a4:08:c1:a1:de:98:61:d1:31:45:ee:bd:25:dc:9a:
b1:2e:a5:49:15:2d:7a:e5:0a:d5:4e:2a:ae:df:c1:f5:49:ba:
f5:5d:1e:96:2e:16:a5:ce:a5:7b:71:24:f6:b1:05:88:75:2b:
40:06:af:79:0d:73:d9:c4:ba:b5:53:2a:aa:46:bf:e1:f5:8c:
ac:cb:4b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 08:11:52 2025 by rpki-client