Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
File: xmJhwznF7fjYxIPwjka4SAqAXvE.mft (raw, json)
Hash identifier: jxmYQaiF5gN+MQiSUEjpavkLajbBvzi3nHfvw82Mc8s=
Subject key identifier: 3B:E9:10:3B:95:05:2D:E6:5E:1E:B5:84:6C:EC:4B:26:1D:EE:38:E5
Authority key identifier: C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
Certificate issuer: /CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Certificate serial: 0196B9A3F6497F0B786BF04F76E3B36D6556
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
Manifest number: 146E
Signing time: Sat 10 May 2025 10:00:52 +0000
Manifest this update: Sat 10 May 2025 10:00:52 +0000
Manifest next update: Sun 11 May 2025 10:00:52 +0000
Files and hashes: 1: n0PQVaq6lp0buyh71HmvCGJy3cY.roa (hash: QL9cb+VrnWZDKfgvQ3BKYLRd9xHYcd+B/V/qEKLIfgU=)
2: xmJhwznF7fjYxIPwjka4SAqAXvE.crl (hash: jqlS8TpihYrJDZshthvIHq99oz83bTtFCRxsAM9TgUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a3:f6:49:7f:0b:78:6b:f0:4f:76:e3:b3:6d:65:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Validity
Not Before: May 10 10:00:52 2025 GMT
Not After : May 11 10:00:52 2025 GMT
Subject: CN=3be9103b95052de65e1eb5846cec4b261dee38e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4d:32:40:d8:23:cc:3f:ab:a7:9e:67:20:84:
0a:b0:3c:a6:b1:aa:3c:2b:d5:87:73:8c:ac:de:dd:
19:7c:d9:c7:92:1b:c5:de:41:18:fd:23:23:b6:fe:
cd:fb:f4:61:37:1e:31:05:b8:e1:8c:7c:1f:c4:a1:
74:b3:1f:74:9f:81:1e:43:54:da:c8:aa:9f:99:6f:
a5:96:92:bf:5e:7e:b4:ce:6b:49:c2:49:ce:79:a2:
1e:da:2d:26:e6:0b:97:c5:b7:33:e0:89:77:43:ec:
ce:a4:bf:8d:d3:0d:83:ed:f2:3e:0b:d2:d5:42:15:
3a:3c:f6:c4:3f:29:d3:17:87:55:bd:a8:29:a3:14:
a8:96:c7:38:e9:3e:6f:42:c3:91:e3:28:60:27:74:
03:4e:20:29:c1:53:44:b2:da:d7:e4:75:fe:97:62:
0e:b4:4d:9f:76:99:13:91:c2:cd:2b:15:6d:d7:65:
d8:c5:7a:84:50:5f:90:0b:c5:4c:db:29:d4:fb:16:
21:4d:9d:f8:7e:ab:7c:ea:95:0c:29:0b:cd:74:30:
46:58:af:e5:53:e9:ae:f0:0a:58:d2:e0:69:c4:b8:
24:d2:e2:0c:13:ca:53:06:82:c9:d8:2f:70:0a:3b:
6f:58:07:3c:b6:22:18:9d:b1:97:93:8c:2f:f9:a0:
c6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E9:10:3B:95:05:2D:E6:5E:1E:B5:84:6C:EC:4B:26:1D:EE:38:E5
X509v3 Authority Key Identifier:
keyid:C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:9e:83:0c:2e:98:0b:6a:e6:36:db:0d:eb:4b:1c:17:5e:5d:
d1:f5:d7:e8:b0:cc:d9:16:33:60:72:69:25:03:bf:2d:f1:94:
ae:66:12:ff:29:00:ca:4b:79:bd:14:0c:68:d6:0b:ff:22:54:
a1:5f:04:b9:aa:d1:34:30:dd:20:53:74:1a:1f:a4:74:f3:0d:
99:c2:5e:4c:0b:80:a0:23:3d:53:b6:df:82:7f:32:64:14:21:
fc:77:68:95:c4:8d:fb:41:6f:4d:3a:a2:41:43:b3:16:c5:57:
ec:e4:68:0a:c6:a0:87:02:e7:cd:b2:e6:ac:22:2f:53:33:49:
e9:25:17:80:ad:b2:c4:d6:e6:c8:ae:24:8b:0e:22:5f:5f:73:
9a:48:02:fc:b2:4b:7e:bd:7c:d5:84:5e:c0:51:03:84:d1:60:
e4:a7:9f:c8:fa:da:8c:5f:21:c1:33:da:e7:09:ed:55:3e:4f:
1b:2d:38:ae:39:a6:d5:8b:a1:d7:e6:d5:f0:f3:1d:be:cd:bc:
a7:20:58:83:28:34:3b:f4:f8:f4:bd:59:ae:80:c4:6e:57:b2:
1d:4a:7e:44:19:fb:59:80:c4:8e:51:5f:ae:c0:86:6c:be:27:
73:ac:a2:77:04:ae:d3:da:be:41:4b:71:99:ac:96:f2:06:0e:
8d:7d:61:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:55:11 2025 by rpki-client