Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.mft
File: xAqOocjcM7gpD-vTTkU4vZWXROg.mft (raw, json)
Hash identifier: vV5O8LoBNalIrNa9paep+1l3jxCCbcY3OKpa0MIHxDI=
Subject key identifier: 3F:05:60:C6:3C:6D:E6:CA:F4:55:7E:45:47:8C:7D:70:7E:1F:76:C7
Authority key identifier: C4:0A:8E:A1:C8:DC:33:B8:29:0F:EB:D3:4E:45:38:BD:95:97:44:E8
Certificate issuer: /CN=c40a8ea1c8dc33b8290febd34e4538bd959744e8
Certificate serial: 0196BFDCAA80E5D38E13CC9961E0ECE93E44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xAqOocjcM7gpD-vTTkU4vZWXROg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.mft
Manifest number: 14C5
Signing time: Sun 11 May 2025 15:00:31 +0000
Manifest this update: Sun 11 May 2025 15:00:31 +0000
Manifest next update: Mon 12 May 2025 15:00:31 +0000
Files and hashes: 1: xAqOocjcM7gpD-vTTkU4vZWXROg.crl (hash: dYKIhpIRTpzjLxwrmBkZMEsUqZeLvoovMHfCldZD1gA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.mft
rsync://rpki.ripe.net/repository/DEFAULT/xAqOocjcM7gpD-vTTkU4vZWXROg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 15:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:dc:aa:80:e5:d3:8e:13:cc:99:61:e0:ec:e9:3e:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c40a8ea1c8dc33b8290febd34e4538bd959744e8
Validity
Not Before: May 11 15:00:31 2025 GMT
Not After : May 12 15:00:31 2025 GMT
Subject: CN=3f0560c63c6de6caf4557e45478c7d707e1f76c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:e5:a5:b9:e5:f2:37:d8:88:e9:f0:17:5d:81:
85:53:e0:f9:3d:06:cf:13:77:fc:91:99:b3:08:0e:
23:dd:cb:7e:11:b0:04:8b:dc:99:e9:d1:32:23:10:
c6:66:c5:64:b7:b4:d7:59:4d:b6:73:92:6e:fc:d9:
06:00:9d:dc:4c:f8:13:94:a9:71:b7:d2:b8:56:55:
85:30:d7:6f:73:7b:10:97:b3:ae:4b:d5:0f:cc:4f:
55:93:8a:36:84:2d:00:06:fa:3b:ea:0d:51:ce:7a:
43:4b:20:f5:d2:cf:b4:94:5d:61:26:6d:04:84:0b:
0c:c0:a7:d5:84:77:3a:75:5f:3f:e5:57:42:c6:fe:
98:7e:1e:57:32:1d:66:60:5b:76:84:31:3a:78:4b:
5b:0a:83:47:f7:ff:10:89:21:e5:65:9f:65:91:77:
6e:85:7c:35:6a:c6:ac:96:9d:64:8a:00:bf:8a:dd:
c7:00:f3:af:e4:96:f2:fe:98:19:22:1b:c3:ab:1b:
4f:f9:a0:1a:f9:73:12:f3:91:2b:e9:f4:74:da:76:
53:b1:bf:f1:93:c5:ff:2d:06:07:2e:c7:e8:23:b6:
b0:3a:9a:1f:f9:0d:00:9f:44:bf:e6:5d:b8:93:c1:
6e:f2:f0:98:09:c6:38:80:42:ba:ce:64:02:68:51:
a4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:05:60:C6:3C:6D:E6:CA:F4:55:7E:45:47:8C:7D:70:7E:1F:76:C7
X509v3 Authority Key Identifier:
keyid:C4:0A:8E:A1:C8:DC:33:B8:29:0F:EB:D3:4E:45:38:BD:95:97:44:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xAqOocjcM7gpD-vTTkU4vZWXROg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e98bf7-c5c8-4561-97e8-e13160ac3e23/1/xAqOocjcM7gpD-vTTkU4vZWXROg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:ab:a1:ac:6e:63:07:18:9f:35:6d:55:82:92:79:5d:3c:dd:
9c:09:38:fc:31:99:0a:bd:3c:87:ba:35:5e:88:8b:5b:03:6c:
fe:e6:45:e2:ea:94:59:9f:9e:33:ed:05:41:41:23:46:36:5c:
5b:e1:94:aa:db:50:f3:34:ec:3f:c4:f3:2f:ab:27:85:bd:88:
6e:66:f5:f6:80:3f:05:89:94:ad:c0:50:f9:f0:31:2e:70:8a:
76:c9:c6:7e:76:4f:fa:3f:17:18:c5:10:85:a4:41:58:13:32:
21:dd:10:c0:76:00:67:71:ea:a5:bb:af:76:37:c1:13:dd:e6:
26:8e:27:09:80:fe:a3:c4:82:d3:27:35:44:5a:ed:06:42:b7:
37:ca:04:00:51:7b:c5:27:3b:77:6b:3a:41:06:98:67:37:2a:
1f:c8:b6:c4:1b:5a:57:21:09:4d:f2:7a:cd:3c:99:ab:74:34:
b3:94:d7:22:4d:fa:ef:a2:c8:40:f7:d9:e6:11:24:4d:70:af:
bc:1a:af:34:42:b4:22:90:40:b3:b1:85:34:ae:cb:31:5c:c6:
66:c1:74:b9:a8:96:63:fc:5a:d4:42:da:bf:28:2b:07:e5:4c:
25:fc:6f:b7:d8:8f:5d:70:b5:86:54:ec:00:3c:25:a6:98:31:
9e:eb:24:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 23:23:31 2025 by rpki-client