Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
File: x0at2Nr-mfan14fUR5VFpkb23tg.mft (raw, json)
Hash identifier: aMhjJsQuZe0jD5LKne1UEEJaW+MLVM/HWPaqWREaPwc=
Subject key identifier: 5E:81:2C:6A:19:7D:64:65:29:DF:25:61:7A:27:73:91:0A:6B:E9:8C
Authority key identifier: C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8
Certificate issuer: /CN=c746add8dafe99f6a7d787d4479545a646f6ded8
Certificate serial: 0196CDCF4BCF62B6317C1A8C3A4D3CFFE34D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
Manifest number: 153D
Signing time: Wed 14 May 2025 08:00:36 +0000
Manifest this update: Wed 14 May 2025 08:00:36 +0000
Manifest next update: Thu 15 May 2025 08:00:36 +0000
Files and hashes: 1: 5ew0AHvlVZKk-XGMQ-7_VQCyPko.roa (hash: r01XfwbxbtnFEz4LgMmHMoPfMeBX2hjKhEb9/b2NI+4=)
2: x0at2Nr-mfan14fUR5VFpkb23tg.crl (hash: 1hpCr3YzfloXpHt2PjTovYCzgCwtoy0rQk8h5v7DH4s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cd:cf:4b:cf:62:b6:31:7c:1a:8c:3a:4d:3c:ff:e3:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c746add8dafe99f6a7d787d4479545a646f6ded8
Validity
Not Before: May 14 08:00:36 2025 GMT
Not After : May 15 08:00:36 2025 GMT
Subject: CN=5e812c6a197d646529df25617a2773910a6be98c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:70:84:eb:4a:01:3c:a8:a5:20:9e:b0:05:9a:
09:f3:e9:df:48:32:51:f3:9e:d0:9c:f2:c0:36:c9:
fa:bc:c9:cc:79:a1:63:09:4b:d3:64:ed:d4:05:fe:
9c:dd:81:dc:b2:cc:93:a3:53:c5:85:f6:50:4a:9f:
3a:51:52:e8:94:87:f2:c8:be:f2:9a:16:bd:15:f1:
d9:42:7b:ee:73:d2:f4:f3:ca:6d:51:2e:1a:36:1a:
08:7a:17:4d:67:70:56:a9:6c:72:1c:69:39:e4:bc:
67:c0:39:ba:49:dc:79:1d:67:bc:15:24:20:5f:ce:
27:d2:a3:06:a3:e1:de:e3:e7:f9:42:12:31:fe:f5:
97:dd:df:77:ab:07:bf:b1:9e:be:ea:c6:00:78:36:
4f:d9:46:9f:30:93:66:6e:83:08:34:c9:df:ba:44:
70:ad:09:e5:17:0b:96:3e:75:5b:14:e8:cc:f7:0f:
61:3f:4a:16:e3:41:96:ab:d8:9f:1b:fd:dd:13:51:
ed:1d:d1:9d:38:ee:54:08:9e:e5:47:25:96:e1:c4:
40:e0:af:ca:32:ea:c7:1e:13:f2:0c:3e:33:c1:97:
bc:43:85:15:20:e6:59:e2:7c:9e:50:c0:a5:f9:23:
bb:59:92:71:d3:32:ae:3b:05:45:c2:36:50:b5:92:
37:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:81:2C:6A:19:7D:64:65:29:DF:25:61:7A:27:73:91:0A:6B:E9:8C
X509v3 Authority Key Identifier:
keyid:C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:4b:27:df:2f:27:9a:0f:f9:51:29:1d:36:e8:a9:3b:6f:75:
34:e1:61:83:1a:f7:3b:53:d5:6c:1a:58:51:84:3c:36:94:74:
7f:d5:33:00:af:e8:74:e9:b9:2a:e2:af:d2:5a:79:06:ff:92:
4f:aa:c9:d6:c4:01:c3:ca:58:8d:c5:4f:94:30:0b:af:a1:a9:
1f:93:f9:3c:f2:1c:6a:e1:23:a9:c6:ff:bf:ce:08:07:87:c5:
68:f6:05:80:93:6d:43:b3:b7:43:d3:51:c0:4e:c5:90:c5:4c:
24:d6:29:34:1d:6a:25:00:20:af:27:88:18:04:f2:dd:42:ea:
6f:f6:79:aa:f6:09:af:1a:e2:4f:ee:c4:30:e6:de:e9:0d:e4:
73:f9:a8:e6:f6:ce:74:be:31:6e:f4:05:8e:fa:2c:b9:06:7e:
f0:9f:0c:af:20:7a:b8:ef:2f:45:70:08:d5:86:31:51:eb:ce:
75:66:ab:cc:b6:3c:c1:70:4c:a4:88:ba:59:46:0f:12:0c:d3:
45:53:1d:77:3e:81:af:9f:8a:7f:c2:89:8c:6a:11:f8:46:57:
28:eb:79:43:35:fa:74:a8:04:e3:34:cb:69:e0:e2:c8:90:33:
88:71:3e:93:38:c9:ad:03:25:82:41:71:5b:69:9b:f0:2c:be:
30:8e:51:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 12:37:04 2025 by rpki-client