Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
File: XbomMhShFwVRmA7pFxn42Ixia14.mft (raw, json)
Hash identifier: gKzSiL/C73q9CxMyA+AquS4ntHgHccmfjb9kPw3TzTo=
Subject key identifier: 52:82:B5:0F:0C:9B:8D:04:32:B3:98:B6:CA:85:B9:63:1E:B4:C6:17
Authority key identifier: 5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
Certificate issuer: /CN=5dba263214a1170551980ee91719f8d88c626b5e
Certificate serial: 0196542536EF7F965B926D3C1552175967A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
Manifest number: 1068
Signing time: Sun 20 Apr 2025 17:00:47 +0000
Manifest this update: Sun 20 Apr 2025 17:00:47 +0000
Manifest next update: Mon 21 Apr 2025 17:00:47 +0000
Files and hashes: 1: XbomMhShFwVRmA7pFxn42Ixia14.crl (hash: Dj2CBdG9N3sbS9Yxj1uRDR3rO0bjHFxGAxT6iBD5/K0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:25:36:ef:7f:96:5b:92:6d:3c:15:52:17:59:67:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dba263214a1170551980ee91719f8d88c626b5e
Validity
Not Before: Apr 20 17:00:47 2025 GMT
Not After : Apr 21 17:00:47 2025 GMT
Subject: CN=5282b50f0c9b8d0432b398b6ca85b9631eb4c617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:42:f7:f9:48:ff:61:91:b6:29:42:a8:4e:f0:
64:c9:93:dc:1d:64:92:a4:21:86:82:1b:7f:00:d9:
75:fc:3b:0a:96:30:3c:d8:7e:d4:db:e3:25:9f:53:
d7:11:30:9e:27:ea:1e:67:73:00:1c:c6:8c:18:62:
9c:0c:46:b6:3e:6a:32:1d:45:8a:5b:02:2c:94:65:
e1:6f:47:93:6d:72:6d:62:58:15:0a:28:ea:52:89:
49:b7:c5:b1:5c:9f:98:d7:9c:93:c1:7b:61:a8:5b:
aa:57:0c:f2:3c:f3:da:ab:23:ce:82:cf:6e:0a:45:
6f:20:3b:6c:6f:33:ad:d0:46:a5:7f:71:c6:83:1b:
c9:1e:15:5e:49:46:f5:f4:e3:7e:00:fe:84:f3:77:
35:9d:06:90:04:bd:33:71:57:ae:55:21:38:3b:a2:
eb:26:f9:9c:1b:a4:05:71:24:2d:45:65:31:7d:d4:
39:3f:5d:7d:ed:1f:e4:be:9e:36:2a:54:1b:ff:42:
ef:9b:ad:b2:74:64:4c:7c:4a:22:7c:b1:b5:42:81:
d8:75:84:d1:91:f3:b1:72:c0:7d:55:a4:ed:d5:73:
27:6a:16:8d:ea:1d:4e:f3:17:eb:ff:ce:ba:88:98:
05:c9:a3:56:78:8b:fb:6b:2a:ac:cb:ab:43:38:0a:
9a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:82:B5:0F:0C:9B:8D:04:32:B3:98:B6:CA:85:B9:63:1E:B4:C6:17
X509v3 Authority Key Identifier:
keyid:5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:65:b9:be:db:30:45:4b:33:95:54:4e:0c:be:ce:5e:23:37:
e2:a4:ff:f2:23:fd:6f:8c:88:37:2d:25:69:d2:d0:b9:c7:fd:
56:ef:f2:7a:5b:66:d6:66:e9:49:99:25:01:07:25:11:82:4b:
20:1f:2b:11:df:8c:c0:d9:7f:b2:d9:25:1e:1b:7f:94:01:43:
78:2a:38:73:84:6a:3a:1f:2d:b5:15:98:ad:56:3f:64:46:53:
85:72:83:27:d0:5a:45:d9:ea:25:f8:19:11:5d:d5:be:8d:3a:
6b:53:a5:5b:2d:61:41:7e:c2:cc:63:44:cb:da:18:70:71:a5:
c8:c4:ca:71:44:c5:f2:56:29:0e:2d:ce:ea:15:2d:b1:52:1c:
ae:e5:42:3d:a8:fc:44:7f:f0:62:0a:7d:07:63:20:92:c5:05:
ca:1e:b6:04:3b:d0:17:22:e9:32:61:fd:c6:f5:a1:38:1b:f9:
4b:b6:b8:8f:f0:4b:c4:42:6e:12:7d:45:a5:29:20:d5:e8:4e:
4e:ba:ae:28:8d:59:13:ee:4d:fb:cd:a6:87:6c:c9:8d:eb:6b:
21:34:bd:08:89:7e:75:80:76:4b:4f:f3:bc:36:53:cd:ed:cf:
70:78:19:04:66:ab:fc:3b:dd:86:27:1f:43:ab:9c:21:15:6c:
b8:62:d3:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUJTbvf5Zbkm08FVIXWWepMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYmEyNjMyMTRhMTE3MDU1MTk4MGVlOTE3MTlmOGQ4OGM2
MjZiNWUwHhcNMjUwNDIwMTcwMDQ3WhcNMjUwNDIxMTcwMDQ3WjAzMTEwLwYDVQQD
Eyg1MjgyYjUwZjBjOWI4ZDA0MzJiMzk4YjZjYTg1Yjk2MzFlYjRjNjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUL3+Uj/YZG2KUKoTvBkyZPcHWSS
pCGGght/ANl1/DsKljA82H7U2+Mln1PXETCeJ+oeZ3MAHMaMGGKcDEa2PmoyHUWK
WwIslGXhb0eTbXJtYlgVCijqUolJt8WxXJ+Y15yTwXthqFuqVwzyPPPaqyPOgs9u
CkVvIDtsbzOt0Ealf3HGgxvJHhVeSUb19ON+AP6E83c1nQaQBL0zcVeuVSE4O6Lr
JvmcG6QFcSQtRWUxfdQ5P1197R/kvp42KlQb/0Lvm62ydGRMfEoifLG1QoHYdYTR
kfOxcsB9VaTt1XMnahaN6h1O8xfr/866iJgFyaNWeIv7ayqsy6tDOAqaawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFKCtQ8Mm40EMrOYtsqFuWMetMYXMB8GA1UdIwQY
MBaAFF26JjIUoRcFUZgO6RcZ+NiMYmteMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi80ZTQxNGYtMGE3Ni00ZmU5LThiN2It
MTM1YTkzOTgyOTMxLzEvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi80ZTQxNGYtMGE3Ni00ZmU5LThiN2ItMTM1YTkzOTgyOTMx
LzEvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD2W5vtsw
RUszlVRODL7OXiM34qT/8iP9b4yINy0ladLQucf9Vu/yeltm1mbpSZklAQclEYJL
IB8rEd+MwNl/stklHht/lAFDeCo4c4RqOh8ttRWYrVY/ZEZThXKDJ9BaRdnqJfgZ
EV3Vvo06a1OlWy1hQX7CzGNEy9oYcHGlyMTKcUTF8lYpDi3O6hUtsVIcruVCPaj8
RH/wYgp9B2MgksUFyh62BDvQFyLpMmH9xvWhOBv5S7a4j/BLxEJuEn1FpSkg1ehO
TrquKI1ZE+5N+82mh2zJjetrITS9CIl+dYB2S0/zvDZTze3PcHgZBGar/Dvdhicf
Q6ucIRVsuGLTwg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:39:46 2025 by rpki-client