Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
File: xfFStqDQBGJ9KF2Hmqg-WEYast8.mft (raw, json)
Hash identifier: rPv9tEF5IqlwAKBWN//fWSm9WXG5kyLfMltybqKGTOQ=
Subject key identifier: 34:EC:D1:55:38:6B:F1:9F:BB:75:7E:33:2B:8E:3F:6E:04:7B:06:38
Authority key identifier: C5:F1:52:B6:A0:D0:04:62:7D:28:5D:87:9A:A8:3E:58:46:1A:B2:DF
Certificate issuer: /CN=c5f152b6a0d004627d285d879aa83e58461ab2df
Certificate serial: 019750468C85E10033EE8CC09E53F26BA852
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
Manifest number: 11A0
Signing time: Sun 08 Jun 2025 16:01:30 +0000
Manifest this update: Sun 08 Jun 2025 16:01:30 +0000
Manifest next update: Mon 09 Jun 2025 16:01:30 +0000
Files and hashes: 1: xfFStqDQBGJ9KF2Hmqg-WEYast8.crl (hash: q79WoioUGbozzbUUBFVMjZs+zOvI3R/h1pIEb6UAxHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 16:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:8c:85:e1:00:33:ee:8c:c0:9e:53:f2:6b:a8:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5f152b6a0d004627d285d879aa83e58461ab2df
Validity
Not Before: Jun 8 16:01:30 2025 GMT
Not After : Jun 9 16:01:30 2025 GMT
Subject: CN=34ecd155386bf19fbb757e332b8e3f6e047b0638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:83:98:ed:e3:fb:cb:23:69:d1:5f:45:6c:f6:
8c:07:da:16:8c:9a:d7:a4:1f:b9:12:41:4b:6b:9a:
2b:2e:07:c3:c3:a5:01:fd:93:a9:69:28:bb:57:1e:
93:ba:ba:27:e2:40:43:de:51:88:29:ef:fc:7b:ec:
62:e6:aa:25:c9:cf:b8:63:88:d1:2b:79:43:61:ac:
dd:fc:7a:23:d0:fc:a5:51:e4:2d:53:0e:da:8a:ac:
5b:94:10:da:e5:2a:79:ee:50:94:b4:3c:c4:b3:1a:
d4:d8:28:ff:53:16:7c:ee:f4:24:12:8f:85:48:22:
03:03:84:83:ea:88:69:e1:8f:72:82:9c:46:00:5c:
a5:cc:68:6f:29:f3:89:3e:dd:6f:22:cc:2e:5d:d9:
b2:a4:be:f0:af:cb:27:dd:6d:af:c9:c3:c2:d5:f4:
34:92:f3:43:da:04:8a:7a:d8:25:5d:17:29:8a:13:
14:3c:65:cd:6d:2b:2c:36:bf:fa:8f:83:4f:87:1b:
db:80:74:33:48:3d:60:8e:3b:a5:4c:35:2f:93:7f:
74:91:75:73:b8:d4:ff:86:4d:4a:7d:b6:b0:a2:f7:
f4:cf:4b:56:fa:a1:b2:76:3e:23:14:22:7f:37:12:
b8:72:77:99:ed:ae:ab:1d:3c:ab:c1:17:ab:e9:8d:
56:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:EC:D1:55:38:6B:F1:9F:BB:75:7E:33:2B:8E:3F:6E:04:7B:06:38
X509v3 Authority Key Identifier:
keyid:C5:F1:52:B6:A0:D0:04:62:7D:28:5D:87:9A:A8:3E:58:46:1A:B2:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:d6:09:51:53:c6:8d:a9:a8:ce:a0:2e:9c:de:50:3b:e1:a4:
4a:df:c0:30:fa:8b:26:3d:85:ed:d0:ed:bd:f1:b6:e7:17:8e:
3b:83:e8:33:b7:87:4a:1d:87:83:7c:8d:6b:75:ff:8c:26:c2:
29:fe:b4:97:89:5f:2f:43:1d:26:a7:5b:5d:d7:c7:a8:ec:82:
38:bc:c4:be:a0:3d:5b:bc:f9:34:a6:d3:e8:fb:4a:7b:19:25:
4d:94:43:bd:60:60:c3:62:46:b7:d5:2e:01:b7:64:ca:78:16:
89:3f:69:4c:23:e5:a6:05:3d:bd:76:25:9d:c9:45:a8:ba:b5:
d3:04:98:d7:6f:28:ce:d3:6e:5d:5e:8c:70:b9:23:2a:ae:55:
34:b5:1c:01:8d:cf:cc:c0:73:54:2e:1b:fd:10:c1:7b:db:5c:
3c:80:61:63:54:15:5e:a8:fe:b2:11:5d:a6:10:d0:2d:74:0d:
bd:a7:8d:57:3e:79:9b:cd:8f:45:72:81:e6:38:b0:c0:48:a2:
eb:6e:4f:27:c3:8e:11:27:33:1a:db:1f:4c:fe:12:7b:c2:46:
94:4a:82:ab:40:76:32:6a:9f:11:8c:db:42:28:c8:97:ae:e0:
db:0f:39:80:c7:26:e3:cd:e9:1e:bd:bd:88:d0:14:27:fe:4e:
36:f3:83:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:23:54 2025 by rpki-client