Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
File: XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft (raw, json)
Hash identifier: bWN652ARw0PRPztQT/LlGaXGAT6gi9wBdKC4V0y7ASo=
Subject key identifier: CB:41:7D:5F:A8:BD:2B:67:20:4B:34:40:AA:D7:01:22:0E:FC:F8:96
Authority key identifier: 5E:55:AF:DE:34:21:1B:CE:E6:A7:FD:99:24:88:A2:49:27:B4:69:47
Certificate issuer: /CN=5e55afde34211bcee6a7fd992488a24927b46947
Certificate serial: 019747B0A4322D8450FB73CF9BF1D36804AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
Manifest number: 01C5
Signing time: Sat 07 Jun 2025 00:00:48 +0000
Manifest this update: Sat 07 Jun 2025 00:00:48 +0000
Manifest next update: Sun 08 Jun 2025 00:00:48 +0000
Files and hashes: 1: XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl (hash: vtRaJww0UFYjMZjRhB3kc6nHBUWDeFkVX920Xhr+X6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:a4:32:2d:84:50:fb:73:cf:9b:f1:d3:68:04:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e55afde34211bcee6a7fd992488a24927b46947
Validity
Not Before: Jun 7 00:00:48 2025 GMT
Not After : Jun 8 00:00:48 2025 GMT
Subject: CN=cb417d5fa8bd2b67204b3440aad701220efcf896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b2:cf:e5:d8:87:eb:14:07:6a:2d:02:14:16:
45:fb:26:38:f7:f5:02:49:0f:d6:ac:6d:6c:95:6c:
fa:a9:80:64:ff:1a:93:fd:de:d4:8e:a7:60:dc:0c:
11:13:83:5d:d9:82:e4:6a:20:5d:8a:96:ae:ea:d9:
52:74:7d:0a:2a:d7:b0:16:01:8f:5a:7d:27:cf:c4:
74:b6:a7:78:98:c3:f7:3f:81:23:36:b0:59:b8:21:
a5:75:21:f3:0c:25:53:d5:19:77:d6:70:ad:23:b8:
cc:49:18:81:0d:9d:00:f2:80:18:f8:4e:0b:9e:64:
e5:97:4e:51:c8:30:ea:ba:fd:82:d4:94:14:bc:26:
9d:63:96:8c:ca:8a:db:b3:d0:bc:d0:32:6d:26:c1:
6c:c3:24:c6:1e:01:af:aa:5e:b8:ca:f3:80:ea:bb:
ef:fc:0e:8d:37:ac:e4:19:37:41:67:88:10:a4:50:
8e:17:be:8c:27:54:c2:38:83:71:d8:ae:b5:80:28:
6b:33:ed:bb:e2:30:86:c4:7d:74:f1:4d:b8:cb:ba:
36:8e:5f:9d:a3:ec:37:aa:82:03:7f:84:a4:a5:21:
24:66:1e:6d:4e:78:91:a2:15:b7:14:cc:f7:1e:a7:
aa:e0:54:48:ba:94:81:0c:67:f6:6a:a1:2a:55:1c:
8f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:41:7D:5F:A8:BD:2B:67:20:4B:34:40:AA:D7:01:22:0E:FC:F8:96
X509v3 Authority Key Identifier:
keyid:5E:55:AF:DE:34:21:1B:CE:E6:A7:FD:99:24:88:A2:49:27:B4:69:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:84:e1:98:81:cc:9a:ad:04:aa:91:30:c6:ec:f1:b2:92:d8:
74:85:e0:c4:2a:3e:08:52:56:3d:42:a9:02:d8:70:b7:50:a6:
ff:29:d3:64:a1:17:2d:36:bf:16:55:7c:74:e1:10:2f:f3:55:
85:ab:87:91:92:19:f0:fd:8e:aa:e6:bc:2e:e6:49:cd:63:e3:
80:68:7f:2c:5e:51:83:0d:60:61:d8:28:d8:92:91:6e:8c:dc:
5e:a5:b7:ed:d4:c4:bb:39:bb:74:1c:0a:94:05:9d:0d:41:d6:
ba:48:71:7e:7b:a9:d3:e2:3f:14:bb:61:05:53:b7:2c:04:9e:
cb:39:3a:77:d5:24:7f:e0:9a:11:f5:b8:42:d4:e4:56:8e:ee:
6f:9b:dc:8d:8e:eb:98:18:8a:5c:d2:63:b1:c1:31:ce:48:db:
21:d6:a4:6c:71:64:b4:4b:05:e6:f6:f8:9e:2d:31:df:69:18:
7e:5f:a1:93:88:0f:48:b2:9e:f9:90:1a:7d:3d:15:c3:b9:9b:
81:02:12:b1:cc:ee:1a:b7:54:b0:e8:94:5a:4a:c7:e4:90:ba:
12:c3:91:5d:63:03:93:99:5f:d4:0b:c7:10:12:76:77:67:55:
6c:f0:fc:5a:62:00:ce:af:53:d1:6e:ba:ee:74:cf:89:29:a1:
01:29:4c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:12:50 2025 by rpki-client