Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: AJGJiamiXXGi0QZFFq8GGdSLWON2Gk5I7EjWs+xQTRc=
Subject key identifier: C9:89:39:B9:28:BD:6D:3D:53:E4:E8:31:C3:18:DC:FD:52:DF:12:FE
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 01975158D07CB4FD698A87468161A44094F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 0F7B
Signing time: Sun 08 Jun 2025 21:01:04 +0000
Manifest this update: Sun 08 Jun 2025 21:01:04 +0000
Manifest next update: Mon 09 Jun 2025 21:01:04 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: GIQWbN7xxEb2PFowRaxe7OZ7ikAEnPTMeNl/BJrfZjg=)
2: yQMt2r0-C951BN6h68fRFJDbCC8.roa (hash: tYqh+1wBm4KwmsyhvHbFDKO/UGyJb2eTnTj9n8iYekw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:58:d0:7c:b4:fd:69:8a:87:46:81:61:a4:40:94:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Jun 8 21:01:04 2025 GMT
Not After : Jun 9 21:01:04 2025 GMT
Subject: CN=c98939b928bd6d3d53e4e831c318dcfd52df12fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ef:c2:11:5d:d8:21:9b:67:d6:f6:4e:5c:f9:
6d:b9:96:d6:c1:84:fe:64:0d:16:60:00:ce:a7:dd:
5e:ca:cb:de:75:96:d2:07:a9:25:40:eb:7b:44:27:
39:1c:25:07:2f:d6:c2:a5:78:a0:92:86:fa:2e:1c:
3d:aa:48:64:76:54:7a:1f:25:43:25:f2:87:ee:6b:
e8:31:42:44:91:6d:aa:f6:0b:a4:9c:69:b2:78:69:
bb:65:6a:1d:6e:7a:23:b5:6a:65:08:e4:0c:8e:ed:
2a:eb:4f:60:cf:91:e5:ca:ba:6f:78:66:b1:d3:ae:
43:f4:cc:b0:2f:ac:b8:10:b6:ff:50:c0:46:24:ca:
e4:b0:a0:c2:01:42:61:07:18:5e:f9:8c:a0:c4:f0:
2b:62:44:85:88:19:af:81:a7:d9:b1:a9:4c:15:0f:
8b:61:1e:48:5f:07:01:62:b8:2a:87:e5:3c:34:e6:
38:db:ea:3a:1a:36:dd:50:1d:dd:e5:45:9b:93:66:
6e:79:22:a5:9b:0b:0e:8f:9d:59:5b:4d:b9:16:55:
97:c1:ea:bd:b5:54:cc:c0:a2:bf:35:54:ce:ab:99:
86:60:5a:19:aa:43:d5:74:b3:ae:a7:98:68:93:6a:
82:56:b7:62:89:52:cb:ae:67:09:1d:ab:1f:18:49:
c7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:89:39:B9:28:BD:6D:3D:53:E4:E8:31:C3:18:DC:FD:52:DF:12:FE
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:27:83:91:60:c9:a4:b9:bd:34:08:c6:b2:ad:eb:a6:93:f0:
c5:95:b6:4c:1e:e0:ff:65:eb:57:b1:ff:a4:93:b4:03:e7:fb:
1e:b3:f4:91:b5:4c:b4:31:5f:10:72:32:fd:8e:22:ee:ae:b0:
c1:50:a4:6f:4a:ba:37:98:14:ad:b9:3e:ff:1e:d3:eb:36:15:
be:dd:74:e0:5d:4c:e8:e0:16:99:d4:18:5d:e7:7a:fb:97:0a:
70:44:28:67:63:3f:77:45:17:21:d1:e2:dc:17:3b:50:43:77:
75:ca:99:2e:f2:54:89:d8:a4:6f:c9:9f:3c:55:5b:bc:79:08:
e1:e0:ae:4b:47:a0:5d:83:00:c3:40:d5:44:4d:02:19:fb:b5:
7d:68:8c:ee:20:2f:f3:2b:55:6c:d5:01:b1:01:ed:12:e6:5f:
2a:4a:e9:f7:78:d0:2e:8a:68:06:a2:ac:7b:cc:fe:b5:c9:a1:
76:58:be:ae:27:d4:46:bd:37:28:b8:1f:bf:da:64:14:65:91:
da:51:54:6e:04:95:a5:b7:9a:bb:9c:d2:e1:47:40:af:86:ca:
40:fd:93:82:5e:dc:ee:d5:40:72:a5:66:3d:60:5a:01:b7:e3:
98:30:99:33:00:3e:8d:3d:6d:08:05:4c:42:23:91:53:19:1c:
8b:00:c7:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 06:01:59 2025 by rpki-client