Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
File: xmCFijitXhG3sYk5KIO8g-trNh0.mft (raw, json)
Hash identifier: kvBnX1dWkRclSmTjh6qEawoPzNN79HVYqVeNMAd6LTg=
Subject key identifier: F5:63:34:5B:79:C4:82:68:18:88:DB:A0:98:94:BA:33:5C:3A:C1:E1
Authority key identifier: C6:60:85:8A:38:AD:5E:11:B7:B1:89:39:28:83:BC:83:EB:6B:36:1D
Certificate issuer: /CN=c660858a38ad5e11b7b189392883bc83eb6b361d
Certificate serial: 01974A7A9522B51B177BEE9123794FFF1424
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 13:00:36 +0000
Manifest this update: Sat 07 Jun 2025 13:00:36 +0000
Manifest next update: Sun 08 Jun 2025 13:00:36 +0000
Files and hashes: 1: xmCFijitXhG3sYk5KIO8g-trNh0.crl (hash: g56gJ/qiQxVGIpOgKFSye2ZHQAmtA96Og6R8TYDdqOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:95:22:b5:1b:17:7b:ee:91:23:79:4f:ff:14:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c660858a38ad5e11b7b189392883bc83eb6b361d
Validity
Not Before: Jun 7 13:00:36 2025 GMT
Not After : Jun 8 13:00:36 2025 GMT
Subject: CN=f563345b79c482681888dba09894ba335c3ac1e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:53:82:0b:b1:93:62:ee:10:52:e9:85:6d:23:
76:66:6d:e8:8a:03:84:0a:4e:20:07:e4:89:25:d3:
64:43:e3:fc:ed:20:70:5b:b3:63:1d:ef:05:43:24:
30:81:dc:d9:a2:d9:63:ab:48:7c:b3:60:0b:3b:d6:
26:e4:ea:b0:e7:0c:77:d6:d5:26:0c:3e:02:b5:e9:
5b:a2:d7:d2:88:db:00:9f:80:19:57:c1:4f:ad:48:
49:68:e6:42:5a:c5:6f:36:cd:0e:1f:54:14:b5:0e:
9c:0d:b7:1e:60:a7:65:6d:1a:1f:99:0d:d9:27:98:
af:0a:9b:d2:d4:2c:7e:6d:7f:f9:aa:58:b6:2f:43:
5d:27:b9:8f:3b:40:67:c7:00:c9:e9:46:81:37:1a:
85:7e:9c:2e:56:f0:76:17:c5:30:1e:c5:81:7e:66:
e0:8e:78:ad:4f:29:55:2a:63:c3:fe:6a:de:91:2c:
7d:41:e0:ea:09:cb:c7:10:03:73:bf:06:ff:40:16:
41:86:fb:8f:3f:d3:5b:e8:6a:2f:4f:d6:35:7a:6e:
32:2b:86:93:80:1a:11:96:ef:2b:78:ed:7b:bd:3b:
2a:74:27:3a:d8:24:76:e6:92:0a:95:c5:12:40:c3:
5a:0e:1e:19:dc:13:c1:7b:78:df:df:ff:d0:92:b8:
55:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:63:34:5B:79:C4:82:68:18:88:DB:A0:98:94:BA:33:5C:3A:C1:E1
X509v3 Authority Key Identifier:
keyid:C6:60:85:8A:38:AD:5E:11:B7:B1:89:39:28:83:BC:83:EB:6B:36:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:39:86:6f:90:f7:91:12:74:54:33:7b:29:69:02:e4:86:ef:
8e:86:9a:6d:ef:d6:27:58:da:24:d5:bd:40:a4:85:f4:b8:53:
de:d5:d5:f1:12:04:a6:19:b5:3f:ec:0c:ea:8d:e5:14:c2:ae:
1e:83:cd:fc:e2:6a:23:7f:7e:b0:a3:23:d0:87:28:48:72:0c:
99:04:e5:8d:a2:89:49:5b:f8:20:ca:64:6f:bf:a4:31:03:e6:
79:0c:83:8e:05:2c:1f:5b:89:dd:a7:a6:22:b8:6a:41:48:2d:
fa:a6:f6:b1:80:a4:f8:a9:b6:b2:00:fe:55:6d:8f:c2:fc:eb:
68:91:a0:4c:86:63:12:a5:14:5f:64:44:3e:7d:a6:60:a5:00:
f3:70:46:f0:60:06:7c:ab:f8:a7:15:40:62:4b:00:c4:55:20:
58:6a:d3:2f:9d:16:0c:bb:07:20:bc:a8:9a:32:52:6c:41:02:
f1:4b:fb:b8:bc:63:a3:db:ce:18:9f:de:65:51:b6:bb:11:c4:
ab:a7:ac:68:3b:29:2f:2c:73:61:84:46:7e:3f:95:df:2e:61:
4a:cf:3f:82:a0:61:17:c7:4b:5b:73:85:b1:c5:c1:d3:94:3a:
f0:ae:14:4f:c0:99:31:3c:ee:8d:2c:2b:0f:89:3d:4f:ab:e9:
44:e1:fe:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:00:48 2025 by rpki-client