Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
File: XGpfUrAC9ihsHV6yV7tehTNCooQ.mft (raw, json)
Hash identifier: 6Po53pORG//MlmcRnFOYtB/HUqui5NZvmk7ipthMo4k=
Subject key identifier: F9:6F:2B:84:96:96:B9:5F:95:BE:A1:D6:FF:7C:5C:77:B5:24:0D:BF
Authority key identifier: 5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84
Certificate issuer: /CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284
Certificate serial: 0196AE0DAC83EA0CA0229BF030DCB3CD299E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
Manifest number: 11DF
Signing time: Thu 08 May 2025 04:00:53 +0000
Manifest this update: Thu 08 May 2025 04:00:53 +0000
Manifest next update: Fri 09 May 2025 04:00:53 +0000
Files and hashes: 1: XGpfUrAC9ihsHV6yV7tehTNCooQ.crl (hash: 1Ku+plLxxwJZ4E6/WD+vdmcMV6pESv6BZ5OCxnX8JsE=)
2: tscq8RR5-J67nLuusgspLPatxCY.roa (hash: mhooYjP72FJexVsRBpMnu3/8vTwdVxQOmpcDiGXdBjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 04:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:0d:ac:83:ea:0c:a0:22:9b:f0:30:dc:b3:cd:29:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284
Validity
Not Before: May 8 04:00:53 2025 GMT
Not After : May 9 04:00:53 2025 GMT
Subject: CN=f96f2b849696b95f95bea1d6ff7c5c77b5240dbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d8:ed:f5:b9:9f:9b:e7:11:63:1e:b1:88:cf:
e0:89:cb:c1:00:d4:ca:42:bc:04:25:ee:73:8a:23:
ad:fd:7d:76:95:8c:7d:2e:57:69:19:6d:af:f3:cb:
47:83:24:db:fa:ac:05:bc:bf:e1:67:08:3e:2a:42:
c8:b0:68:85:56:87:cd:db:f2:d2:29:f0:46:08:a2:
26:9f:e6:3e:d8:09:f7:2e:b5:4a:ae:5c:ba:9d:35:
6c:0d:d2:43:80:1b:f9:df:e7:11:e3:7a:7f:ac:6a:
9d:34:54:a5:8d:05:fa:8e:69:39:42:ac:c4:b0:73:
a5:b8:a4:cd:87:41:0c:bc:a1:8a:b8:db:d2:34:69:
dc:84:6f:9f:13:62:1b:ce:84:03:ac:6d:32:4d:e7:
3c:02:31:e1:46:8d:2d:bf:a7:86:c0:ff:a5:3d:d9:
53:4a:cc:b3:2a:37:8c:98:33:71:6f:e1:aa:f9:69:
0f:26:e5:94:11:4a:92:4d:60:ea:11:b5:d9:9a:86:
3e:55:d6:cf:04:60:05:e0:c6:cc:11:99:c4:e6:53:
c2:24:9a:7d:fe:16:ac:40:4e:8e:2a:b7:b6:a7:6a:
84:8c:e4:9f:a7:d2:e2:94:86:1b:f4:3a:73:0f:67:
26:14:3e:8a:0b:de:10:39:08:8d:6b:23:78:d9:c6:
34:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6F:2B:84:96:96:B9:5F:95:BE:A1:D6:FF:7C:5C:77:B5:24:0D:BF
X509v3 Authority Key Identifier:
keyid:5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:86:b3:77:19:43:13:35:71:48:75:b6:2b:19:0e:d5:d8:e6:
9c:16:79:06:8e:2c:bf:28:4a:22:e0:19:96:0c:26:f2:31:88:
e4:9c:3d:39:8b:1c:2a:5a:0c:50:9e:0b:6b:6d:0e:a1:8d:7e:
8d:f6:e7:a3:33:31:1a:5d:2f:d1:ca:70:3d:ba:05:cc:fd:81:
aa:74:ed:18:83:c0:77:a3:40:4b:c9:06:33:39:0e:7d:bc:b2:
ff:f9:90:3b:c7:f6:37:c8:96:f7:f9:48:b9:60:34:7d:02:7e:
29:04:3b:44:6b:00:93:df:e4:7e:2c:85:df:2a:57:1b:a7:ef:
fd:11:48:d7:90:5a:e9:b8:33:72:1b:26:09:1a:2b:4d:b2:30:
2a:59:e7:5e:ad:74:a7:2d:ca:28:6f:a2:34:b8:cd:31:6e:f5:
7f:f6:c9:c4:7e:30:59:c0:d6:60:e3:ef:c3:5f:90:ee:54:d7:
30:45:6a:5f:fa:57:70:bc:cd:4f:e1:a5:b2:50:8b:fd:f7:c8:
89:71:78:9f:5e:89:7c:6b:9f:76:0c:82:9a:bf:2f:6a:b1:27:
16:90:65:25:4a:89:00:30:ce:b8:7c:a9:18:da:68:0b:9a:17:
0c:53:ec:13:22:46:cc:d2:f5:e5:05:8c:45:c9:11:e6:6a:16:
ab:3d:5d:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 11:38:52 2025 by rpki-client