Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
File: XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft (raw, json)
Hash identifier: wDf92lwuOa4aivLn4MTQZQxlBLqG9JcHRx1ppbvNyww=
Subject key identifier: 37:B5:AD:D9:9C:04:60:9F:6F:46:EA:80:AA:A0:5C:B0:FA:72:A9:5C
Authority key identifier: 5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
Certificate issuer: /CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Certificate serial: 0196B17C74F56BF69D3C439087A852AFE975
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
Manifest number: 149A
Signing time: Thu 08 May 2025 20:00:45 +0000
Manifest this update: Thu 08 May 2025 20:00:45 +0000
Manifest next update: Fri 09 May 2025 20:00:45 +0000
Files and hashes: 1: 2ywpCRCtpz6hrb_B5Z2UyYL2m-g.roa (hash: Z+2VK2G2lzN86LoPcE9VgbDrrppkQUiQOHGoi5RCAY8=)
2: XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl (hash: XczKM/kEJzqnlel1ewXUFEtWM97B0K+Sf63JD7U1y8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b1:7c:74:f5:6b:f6:9d:3c:43:90:87:a8:52:af:e9:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Validity
Not Before: May 8 20:00:45 2025 GMT
Not After : May 9 20:00:45 2025 GMT
Subject: CN=37b5add99c04609f6f46ea80aaa05cb0fa72a95c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c1:57:21:62:b4:2e:ce:0c:d3:80:24:26:48:
1f:55:d5:5e:82:67:0c:85:a9:f6:3b:36:4e:16:b3:
4a:20:2d:5a:bc:f8:e7:a2:39:e3:4d:58:e9:7c:cf:
8a:34:b2:a4:38:7b:53:86:1f:7f:31:eb:bf:c1:13:
48:1f:84:f3:3e:4f:c8:9a:9c:aa:39:1a:fb:cc:1a:
10:68:3d:29:16:9c:b1:af:89:69:e8:83:6f:04:9e:
8b:21:97:a6:4d:67:d6:47:bf:b9:a1:3c:e2:36:b4:
6c:4c:fa:2d:37:04:e3:fa:8a:28:05:e7:a2:54:60:
c1:14:5a:22:d2:31:f1:b1:f7:7f:bb:68:39:b5:ad:
4c:09:85:1a:e6:17:8a:94:71:0b:f5:59:96:db:fc:
b7:23:46:43:0d:c4:3e:64:c5:3a:e2:73:dc:00:57:
08:c5:ae:34:2d:83:4a:e1:52:3b:0d:57:9a:09:67:
02:df:75:36:9f:d0:38:05:ff:d9:a7:ac:06:37:6b:
6d:56:55:37:82:36:09:b0:e7:bb:21:5a:65:c4:5b:
81:88:ac:c3:07:b9:07:6c:74:75:b2:d9:1d:55:7f:
2a:d9:42:fd:e3:b0:df:0e:8a:0d:c2:0a:39:68:89:
6d:82:68:8f:fc:3c:5d:0a:d3:e9:77:39:26:83:15:
30:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B5:AD:D9:9C:04:60:9F:6F:46:EA:80:AA:A0:5C:B0:FA:72:A9:5C
X509v3 Authority Key Identifier:
keyid:5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:62:2c:7a:19:06:a7:12:e4:99:96:ee:ea:a2:e9:61:61:87:
9e:e5:99:3b:6e:cd:e6:fa:ef:88:6a:a2:f5:e4:f1:c2:8a:88:
b2:16:57:25:f4:b7:94:e0:a5:9b:e7:99:98:47:3d:52:79:ac:
c3:23:dc:b4:81:14:bd:ec:2a:1d:fc:45:43:8e:3a:5f:da:22:
d2:06:d5:95:ce:c7:33:47:20:98:9b:3e:47:97:5f:7f:2a:53:
ac:f9:4b:79:5d:e4:bf:c6:77:a7:15:67:a5:ed:b0:b3:65:8c:
1e:ee:87:19:25:bd:ca:56:7f:86:38:aa:88:25:c6:72:0b:99:
ae:f8:ae:81:ab:c5:55:91:4f:90:10:80:47:6b:64:0e:bf:89:
e9:de:93:d7:7b:7e:0a:15:91:ba:8c:d6:35:39:6a:58:64:af:
3e:ba:ba:90:2f:44:f5:9a:a5:5a:a5:73:2e:7f:b5:ca:e0:7b:
31:91:29:a4:ca:f6:19:61:4f:9f:d7:49:39:e4:9a:1e:5b:90:
fe:6c:dd:24:26:52:27:dc:7b:cf:01:ae:c8:20:c2:7a:97:24:
31:ab:66:1c:ae:6e:db:03:db:a5:c7:8d:4c:14:82:2b:26:a9:
8d:5a:7a:c6:7b:4f:76:68:3b:fb:5c:93:f9:af:7e:1a:d6:6e:
ab:8e:83:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 02:42:21 2025 by rpki-client