Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
File: XigJUGU6fsWMUzhdALOB77tGWCQ.mft (raw, json)
Hash identifier: z8D34PBPqDzNsCoq1Pt8EyGBHrejBVv9ohelu6Cs33o=
Subject key identifier: EB:F2:CE:3B:70:65:22:F9:32:7C:41:80:22:A7:63:16:DA:C2:E6:DF
Authority key identifier: 5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24
Certificate issuer: /CN=5e280950653a7ec58c53385d00b381efbb465824
Certificate serial: 0196B891515C5014B8936AB50A60BCB124F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
Manifest number: 04F2
Signing time: Sat 10 May 2025 05:00:53 +0000
Manifest this update: Sat 10 May 2025 05:00:53 +0000
Manifest next update: Sun 11 May 2025 05:00:53 +0000
Files and hashes: 1: TbP72HU__x5-xpUX6PI_i9iyDaM.roa (hash: FLkmCrV+1GGkGMAjoDFB0RSF/lM4teoeIsYHwGZQivI=)
2: U5LzRtt7TqgwcmDyAykCjfC_tyg.roa (hash: MnSBkpXKCh2/fnPZQ+yyW+as55btZcpHuSExX+Fr9KQ=)
3: XigJUGU6fsWMUzhdALOB77tGWCQ.crl (hash: OvTe9PNA3h5lHcgNnwqT4LwjmSWqLiARq1ydMVDxaGE=)
4: XsQzypEDi3dbORi7Sjru6BV7874.roa (hash: kUYaLmJEoY+QPfzf/QKKUFqO5UN/o9EcoVpI3bOIxPI=)
5: ihdmZnPFfRQouiDEX9hoP7FnJXY.roa (hash: vMOPJDVg/5XoKEVMMHXuz77Sx41YI4RzrWjRsAiZbwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:91:51:5c:50:14:b8:93:6a:b5:0a:60:bc:b1:24:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e280950653a7ec58c53385d00b381efbb465824
Validity
Not Before: May 10 05:00:53 2025 GMT
Not After : May 11 05:00:53 2025 GMT
Subject: CN=ebf2ce3b706522f9327c418022a76316dac2e6df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9d:71:75:f9:13:5a:aa:c1:b6:79:1f:83:c1:
35:c2:38:8a:3a:1c:ef:e9:76:37:ae:17:c0:b0:d6:
31:76:6c:18:36:ba:92:6c:c4:96:6a:b3:79:56:a1:
dc:c3:32:1b:fb:45:22:1f:82:e4:42:db:27:8c:95:
c3:48:32:8d:87:db:5c:91:74:a4:d4:27:58:02:8e:
1e:12:2b:e5:f4:20:2d:02:b2:ac:ec:5a:37:c3:4b:
c0:4a:f9:66:76:a9:7b:b1:2f:0c:e0:12:2d:92:b7:
62:34:a4:a9:90:c1:dd:0c:77:26:cc:aa:eb:8b:27:
22:00:18:4e:53:67:ec:60:b9:75:87:f3:2b:5d:95:
4b:55:b8:ad:a8:ef:90:a5:41:41:75:75:e2:c0:12:
40:09:e5:4a:ba:d6:47:eb:d1:34:59:56:02:d4:19:
12:b3:dc:20:3f:5c:8d:e6:b2:a6:37:30:27:7a:d5:
cd:ab:d2:d4:66:a9:3e:3c:4f:c8:f7:b1:0e:e9:42:
f9:4f:bd:70:9e:9f:29:56:4e:8d:62:7c:1f:8d:bb:
82:99:c1:dd:b9:ef:08:4e:f4:fe:cf:1d:8d:51:89:
63:88:c8:a3:5e:84:6f:47:b9:9f:c0:62:7e:ef:d5:
ad:1d:1a:d3:6a:4e:02:cc:a7:82:d7:7a:07:c6:6e:
af:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F2:CE:3B:70:65:22:F9:32:7C:41:80:22:A7:63:16:DA:C2:E6:DF
X509v3 Authority Key Identifier:
keyid:5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:a0:94:e5:92:4d:3b:fe:5a:f6:a9:dc:80:9e:88:a0:18:53:
21:9b:4f:ed:bd:fa:17:2a:dc:ad:e7:02:62:b9:7e:22:cd:a6:
24:fb:18:de:46:28:9d:3f:6a:25:c1:93:39:8a:dd:7b:7a:33:
1c:20:6f:f4:78:24:cf:55:73:aa:02:5c:32:a9:14:7b:f4:44:
d8:8f:11:6f:7b:04:9a:6e:8f:66:32:3d:4e:d3:9f:dd:4e:59:
00:73:71:c0:24:3c:cf:67:ab:97:15:68:f5:d1:d8:7c:d8:47:
22:ca:dc:6a:56:a2:37:1c:cf:76:ea:05:36:40:82:a9:2d:07:
9e:f6:eb:1d:b0:c3:69:a8:f1:10:22:37:52:1d:c7:ac:9a:e6:
ac:12:e9:86:35:b4:6b:78:54:37:f0:5b:fb:33:ab:72:c6:9b:
8b:0a:94:67:8d:04:6e:0b:1c:bb:fc:49:df:f3:81:8d:a9:18:
3d:87:f9:56:6b:f0:45:60:22:64:06:78:e2:0c:4b:a6:65:4f:
a2:7e:a4:47:ab:f5:09:3d:3e:95:95:bb:b6:1e:72:ea:82:6c:
4b:61:62:b6:67:59:26:1e:45:c3:8f:78:ab:15:e9:0d:9a:e1:
22:b3:47:e7:5e:aa:1c:59:53:a1:59:1e:26:a0:b3:24:54:fd:
5f:8f:ad:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 08:38:39 2025 by rpki-client