Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.mft
File: XN8wGsAVJtCM3sJCzFoUAUH7FT0.mft (raw, json)
Hash identifier: n2dkU9I6FwkUrzsSUMax1f4Hyd4bpmCEuA/guyx6Bbg=
Subject key identifier: 04:C2:D1:15:57:E9:5E:EF:CC:BE:9C:90:3A:EC:3E:0E:70:18:9A:0B
Authority key identifier: 5C:DF:30:1A:C0:15:26:D0:8C:DE:C2:42:CC:5A:14:01:41:FB:15:3D
Certificate issuer: /CN=5cdf301ac01526d08cdec242cc5a140141fb153d
Certificate serial: 0196CC8591A5D67ED11E4070BA7D43FC9E21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XN8wGsAVJtCM3sJCzFoUAUH7FT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.mft
Manifest number: 0160
Signing time: Wed 14 May 2025 02:00:27 +0000
Manifest this update: Wed 14 May 2025 02:00:27 +0000
Manifest next update: Thu 15 May 2025 02:00:27 +0000
Files and hashes: 1: XN8wGsAVJtCM3sJCzFoUAUH7FT0.crl (hash: rahYrg1xdMPbjE0zEP6CPEH3amcexSaF3D2hnaPtI6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XN8wGsAVJtCM3sJCzFoUAUH7FT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cc:85:91:a5:d6:7e:d1:1e:40:70:ba:7d:43:fc:9e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cdf301ac01526d08cdec242cc5a140141fb153d
Validity
Not Before: May 14 02:00:27 2025 GMT
Not After : May 15 02:00:27 2025 GMT
Subject: CN=04c2d11557e95eefccbe9c903aec3e0e70189a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4e:0b:b6:1d:da:a8:4e:50:c3:ad:0b:3f:6b:
64:d8:6e:f8:3e:7a:0f:c2:e8:d1:bb:6f:9d:58:78:
cf:cb:64:83:09:b6:d0:cb:eb:47:94:dd:55:dc:76:
3d:e6:9c:33:e5:1c:19:f2:64:d6:79:14:1e:45:b2:
14:39:8b:a3:67:d0:d9:19:b2:d3:1a:18:83:78:7f:
f0:8e:86:33:09:46:b9:c6:53:47:c7:41:52:42:f4:
5a:d3:f6:75:cd:ff:fa:f0:24:92:70:dd:56:1b:54:
df:50:ac:4e:75:17:40:43:d1:40:58:2e:7e:60:a3:
67:7a:0b:92:22:f0:9e:89:57:a4:b5:73:dc:9b:80:
dc:04:47:63:d0:b8:95:84:bf:8c:b6:d7:33:24:89:
5f:89:14:fe:a3:fc:d9:f2:fb:6e:7a:cd:5e:d1:60:
8c:b8:fc:2a:a7:28:bc:e6:5c:3f:51:05:ef:81:ec:
42:f1:dd:9c:b8:8b:69:45:c2:e2:d2:28:c5:4f:3b:
66:75:b5:c7:31:19:99:f0:da:84:2e:1c:68:1d:8b:
d6:af:df:00:ab:d1:26:cd:c8:c8:ff:29:e1:77:aa:
c5:cf:58:53:f5:2f:92:3e:5e:4a:ff:39:e9:2e:3d:
96:3f:cd:ba:aa:bc:ae:e0:01:a1:fc:b4:d2:a1:72:
2c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:C2:D1:15:57:E9:5E:EF:CC:BE:9C:90:3A:EC:3E:0E:70:18:9A:0B
X509v3 Authority Key Identifier:
keyid:5C:DF:30:1A:C0:15:26:D0:8C:DE:C2:42:CC:5A:14:01:41:FB:15:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XN8wGsAVJtCM3sJCzFoUAUH7FT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:de:d1:64:e5:ab:7b:8b:f2:e4:74:f4:6b:fe:f9:d0:64:31:
28:c2:ff:d5:1e:85:12:fc:c2:02:3d:0a:75:83:d8:3e:73:e6:
21:b0:c6:cc:29:95:30:63:c5:df:70:4b:92:be:70:be:86:b3:
9b:40:7c:89:46:08:88:00:cf:5d:71:42:bd:14:66:c0:0c:de:
22:98:bb:44:5a:eb:23:84:84:78:8a:e5:83:df:57:52:d5:9d:
eb:a0:d2:50:cf:dd:26:fe:d3:d3:a3:d0:bc:50:09:e6:42:e4:
72:45:b1:5f:f0:87:ee:5a:88:70:67:82:1f:69:46:e3:94:f0:
c8:e8:c1:5c:b1:3b:d0:ce:e4:44:e1:39:3d:5b:1a:36:b8:ac:
1a:b5:3d:01:9c:3e:1d:16:69:46:00:03:89:07:e4:27:5b:e7:
4c:3d:cf:1a:ee:7c:b7:08:9e:73:0f:3e:dc:16:0e:57:46:52:
6e:09:5d:c6:c8:99:b5:7b:13:ab:27:85:56:2a:0c:00:c0:aa:
1d:17:f1:56:45:e7:06:a8:c4:50:2d:d1:45:82:d2:13:0a:5b:
f6:45:9d:76:14:10:f7:be:fe:ab:9b:1f:89:73:be:08:88:1a:
52:5c:9b:a5:7f:6f:6c:14:38:09:07:0d:f0:d8:e9:0c:26:99:
20:3f:d5:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 09:25:55 2025 by rpki-client