Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: ISO6+vjIl82+AnF8bz7RVkz1U6EXiiCbWz8HfxvxSvI=
Subject key identifier: 71:40:83:31:9A:C4:D2:21:88:14:9A:27:FB:F5:16:78:54:0A:5C:5E
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 0196BF37EFC68B8CC417999991782096EFB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 06D3
Signing time: Sun 11 May 2025 12:00:36 +0000
Manifest this update: Sun 11 May 2025 12:00:36 +0000
Manifest next update: Mon 12 May 2025 12:00:36 +0000
Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: EMzYVjOxstMzG6VMre3zSuNGGv4ffXntRdISUG8RHgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 12:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:37:ef:c6:8b:8c:c4:17:99:99:91:78:20:96:ef:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: May 11 12:00:36 2025 GMT
Not After : May 12 12:00:36 2025 GMT
Subject: CN=714083319ac4d22188149a27fbf51678540a5c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8b:fb:e0:14:d4:ff:d5:a7:cf:41:13:df:df:
d9:4d:08:71:e0:0f:5a:ad:91:d8:02:99:ff:9d:c7:
2a:92:2d:ce:e6:ee:eb:3f:62:74:30:7c:0e:9f:b2:
3b:45:6a:37:3e:0a:0f:0f:f5:e3:30:08:98:bf:65:
c8:5d:74:36:6c:8a:6c:99:9f:31:ca:1d:d6:e8:48:
74:8a:88:49:d2:48:94:2e:c8:0c:53:ee:b1:9c:4e:
af:ff:53:86:04:3b:e0:97:ea:df:6a:f7:75:8a:1f:
a8:1f:e9:88:d6:53:72:1b:19:b2:ff:4c:7a:80:db:
15:93:4f:00:18:b9:48:54:cc:c1:37:c8:4f:7b:a5:
59:f7:8c:61:bb:58:40:a8:be:a0:8b:6d:50:eb:9c:
12:4a:18:d4:16:41:10:87:af:b4:c6:6c:31:eb:85:
bd:16:bb:12:c3:d9:59:a2:5e:66:59:51:c2:95:6f:
03:b0:ac:81:05:93:32:0f:af:18:00:c7:77:1c:b0:
1e:c0:4f:fd:bf:4b:a0:a0:7f:d3:24:c2:70:d3:69:
42:e2:58:f8:29:9e:20:e3:e3:5d:37:d5:3e:4e:51:
c2:d7:47:dc:0b:90:20:f8:30:1a:ad:a2:67:b9:2f:
86:06:24:24:5c:49:a1:bb:12:ba:df:b9:76:4f:70:
25:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:40:83:31:9A:C4:D2:21:88:14:9A:27:FB:F5:16:78:54:0A:5C:5E
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:9f:58:f7:c6:78:74:57:04:35:58:97:66:1a:2a:66:4c:35:
02:94:a4:2a:47:36:37:72:50:22:09:4f:58:81:4e:c4:5d:3f:
9f:ce:e4:31:11:68:d9:d2:eb:61:8f:43:20:d8:e0:79:14:66:
1c:87:92:ab:7c:6c:94:3b:af:ac:bc:ed:2c:70:60:4b:c8:2f:
f3:31:90:db:95:9b:b7:8b:91:37:f3:4b:dc:da:cf:9f:c8:55:
a0:44:8d:a4:21:0b:b8:83:b6:12:56:c6:1e:f4:33:fb:34:3b:
5c:c0:68:ce:03:8c:85:f9:49:f4:2e:7a:ec:18:8d:47:a3:6c:
2b:7e:c2:5e:5e:8c:75:16:a2:36:d2:39:b2:31:62:db:7b:8d:
39:e0:c7:6d:f4:fe:2d:3a:b1:2d:ba:5f:c6:39:fc:18:12:ef:
4e:dd:a5:79:1f:a4:cb:a1:4d:1e:65:25:da:91:b1:dc:e7:99:
69:c0:f9:20:67:8b:44:00:59:c2:f4:6a:2f:95:e3:a7:51:50:
c0:22:7d:4f:de:ae:89:7c:e9:cb:98:68:11:b5:d2:dd:ee:f6:
71:12:e7:9e:b2:27:6b:77:da:ba:56:bd:77:21:a4:b2:2a:08:
1f:45:53:9d:48:b8:f0:7e:0d:c8:62:23:06:02:9e:b0:01:21:
fd:58:06:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 20:33:35 2025 by rpki-client