Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
File: xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft (raw, json)
Hash identifier: cguRk7/aKF3eoF2nuDJVlIv42jdtud98pWg5W54IhoM=
Subject key identifier: 24:D0:35:0D:F8:5A:47:AE:46:E6:6B:E6:71:C2:92:18:16:85:A0:63
Authority key identifier: C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4
Certificate issuer: /CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4
Certificate serial: 0196BDEE2E18D73E2F2E57B7387D23076874
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
Manifest number: 0584
Signing time: Sun 11 May 2025 06:00:25 +0000
Manifest this update: Sun 11 May 2025 06:00:25 +0000
Manifest next update: Mon 12 May 2025 06:00:25 +0000
Files and hashes: 1: gO1QQzQ8EJSK1sz9QVMIVflw4Is.roa (hash: XHDVuSMRNZ8ZK68EQ/rZiQRsF4JaubC5jLA4NaC8LBM=)
2: xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl (hash: GbftTpHUtb6F1WmVicGvr9QtNJL3jcKx1OC4kK18ReU=)
3: z5AaUIsCUfsHWnAtqAIr_d8n8do.roa (hash: rmzyF9COLH0iNSyMo0DleMzCkcEN6+9Om4xVkdPkL6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:ee:2e:18:d7:3e:2f:2e:57:b7:38:7d:23:07:68:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4
Validity
Not Before: May 11 06:00:25 2025 GMT
Not After : May 12 06:00:25 2025 GMT
Subject: CN=24d0350df85a47ae46e66be671c292181685a063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d7:ed:60:29:3c:52:5a:e1:b3:fc:9b:75:16:
dd:95:75:cf:b7:86:b9:1e:5e:f9:d0:1d:b7:50:42:
18:e9:82:b3:d1:55:ac:6a:4f:79:18:44:de:83:73:
1b:89:ca:d9:ab:46:02:db:f9:97:0b:c1:03:c3:a3:
a9:18:e3:7a:ef:01:04:a1:d8:f0:c0:dc:48:ca:c9:
b2:61:97:6d:d2:5e:8b:5a:f7:d0:1d:0e:39:a7:08:
40:cd:dd:85:51:69:32:14:02:8d:dc:bb:ec:ec:91:
99:5c:27:c7:96:37:9e:b1:a2:c3:27:6f:d1:84:a3:
3c:2d:cf:ad:df:9b:c9:c8:04:8f:c4:e7:84:c7:da:
ee:c2:df:b8:e8:12:55:3c:68:c4:96:75:a6:ea:17:
e6:29:53:4f:a8:b4:5a:c4:8b:d4:b5:3e:dc:fa:04:
df:53:8f:2f:9e:c1:db:a5:66:45:db:fe:bc:5b:4d:
04:9a:a8:6b:c8:c2:cc:50:f9:36:f3:56:03:da:e7:
51:f8:55:17:e5:74:3d:25:00:7c:02:f6:37:ca:71:
6e:8e:dc:68:68:8e:d4:c4:bd:69:79:4e:43:0b:57:
bd:e1:82:d7:6a:b2:39:d3:1d:2b:b6:1f:68:61:7c:
e7:68:65:c5:79:25:d1:fa:a3:fd:63:a4:39:17:aa:
3a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D0:35:0D:F8:5A:47:AE:46:E6:6B:E6:71:C2:92:18:16:85:A0:63
X509v3 Authority Key Identifier:
keyid:C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:3a:5a:ba:cc:51:8c:44:b5:5a:53:9f:99:f6:a6:80:e8:65:
d9:1c:11:f5:f4:ba:92:6f:00:82:16:fa:2d:69:a5:36:9a:48:
85:5c:c7:a5:bb:e7:0b:57:c2:59:e2:5e:6b:0d:27:e8:e1:67:
ea:37:c5:10:ca:aa:8a:fd:80:43:d5:0e:77:62:a3:e0:47:0c:
e8:77:6c:e9:3b:98:1e:ed:7a:d8:d8:36:f4:08:8d:4c:ca:f7:
46:f7:5d:db:19:cb:bf:ae:9b:f9:a8:9e:af:fd:2a:cf:02:06:
e3:21:dd:d4:f7:ac:d6:84:72:88:2b:b2:57:3b:f8:72:06:a6:
9d:64:9f:04:0a:a4:f9:d0:03:81:06:55:a7:58:1e:46:4a:5f:
74:14:0d:fe:4d:14:fe:30:9a:0e:19:01:d8:dc:80:32:62:e2:
78:c0:2f:e3:1a:ba:7a:3e:92:66:f1:35:4a:4e:9a:15:d1:11:
91:37:c6:da:ea:e3:d4:0a:00:59:9e:de:aa:8f:b4:0f:51:22:
26:b1:d2:f8:7e:6e:a9:f8:a2:a6:68:02:0e:8b:ab:7b:eb:3a:
b5:ce:57:b3:4c:df:43:ed:63:e7:82:97:ad:a4:14:54:a8:88:
6e:70:a7:f6:72:25:e7:f6:29:a2:95:ab:38:c9:fb:dc:ce:b9:
e8:41:da:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 08:28:41 2025 by rpki-client