Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
File: XX2xSVjPTXheWe9cbGefjvVMHYs.mft (raw, json)
Hash identifier: lmaP1bWeutHQTPeBo6CMobtfPXB/TkpT+5xQe6p+rcM=
Subject key identifier: 23:80:38:5E:4E:4D:17:7D:A7:E3:1E:6D:AB:85:E9:9A:9F:FA:7F:38
Authority key identifier: 5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
Certificate issuer: /CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Certificate serial: 01974EC53B1358176E02E340CF3D81796148
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
Manifest number: 0567
Signing time: Sun 08 Jun 2025 09:00:37 +0000
Manifest this update: Sun 08 Jun 2025 09:00:37 +0000
Manifest next update: Mon 09 Jun 2025 09:00:37 +0000
Files and hashes: 1: XX2xSVjPTXheWe9cbGefjvVMHYs.crl (hash: h0gFvoAnv2SvJmTb2lqeep5PkmmGPqNVzkAmTM++Ae8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:3b:13:58:17:6e:02:e3:40:cf:3d:81:79:61:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Validity
Not Before: Jun 8 09:00:37 2025 GMT
Not After : Jun 9 09:00:37 2025 GMT
Subject: CN=2380385e4e4d177da7e31e6dab85e99a9ffa7f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a5:e5:30:84:11:3a:9f:33:7e:05:98:45:77:
57:6b:f4:90:36:57:52:68:d0:24:3c:08:79:36:1d:
9c:fc:fb:65:9d:44:ba:f3:96:09:5c:25:43:e5:74:
72:e2:34:6f:bc:ee:e1:f2:06:e9:d3:71:ea:fb:14:
6d:ba:5a:4a:b5:9a:43:32:d7:39:5b:8b:a2:11:3d:
94:75:79:5f:e5:b5:69:a3:26:17:3d:3e:a0:65:38:
da:65:bf:7f:4a:79:08:d5:e1:30:90:83:df:3d:ce:
e8:6c:9e:40:58:c1:83:c6:22:fb:28:06:cf:50:6e:
1f:1f:d0:05:b0:0a:f1:9a:86:75:cb:01:6f:25:d5:
7c:55:57:60:d6:8c:23:5c:0c:fc:5f:35:c3:d8:ed:
fe:c9:48:cd:b2:22:8d:4b:c3:a8:29:94:e6:14:09:
04:18:67:f1:71:ac:24:62:65:5f:68:f8:ad:ba:d2:
6d:5e:ef:3f:49:89:00:61:0a:0c:04:5b:c9:d8:32:
75:79:da:75:12:96:6b:c6:6c:50:2d:6e:32:89:01:
5c:04:cd:a2:8d:3e:d2:8b:04:af:0a:8a:63:d8:17:
7f:b3:92:2c:73:fc:96:8f:6a:ca:29:65:5f:4a:c9:
bc:66:fd:ee:e8:4a:0e:c9:c1:e5:90:e9:21:64:28:
f4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:80:38:5E:4E:4D:17:7D:A7:E3:1E:6D:AB:85:E9:9A:9F:FA:7F:38
X509v3 Authority Key Identifier:
keyid:5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:06:0c:8b:3f:2d:69:3c:3e:e0:83:75:a7:80:dc:3c:1e:f1:
d2:a9:0f:60:33:80:de:27:7b:76:d5:fd:7c:89:20:ae:c2:b1:
10:88:51:c2:d3:f7:d7:41:eb:4e:70:39:39:2f:39:b9:c6:e9:
de:8b:63:f0:25:8f:80:94:ec:78:54:61:71:c7:80:52:5c:68:
33:86:25:98:9e:ab:e1:b0:58:ab:ee:49:1c:58:19:ab:97:03:
93:02:0e:6a:df:16:b8:af:44:db:4f:88:75:09:f0:cd:86:c9:
32:27:b0:db:2f:15:3c:b4:9b:78:b8:26:d4:bd:e7:32:46:c4:
08:36:ca:24:6f:a8:76:6e:b0:ff:e6:05:bf:03:e6:50:98:bb:
bd:3c:70:37:86:51:91:3d:c5:03:1d:21:90:11:6f:33:79:82:
3d:34:d0:25:d3:e0:8d:74:69:c6:8c:a7:69:3c:68:96:30:89:
93:12:95:f3:5c:00:d7:36:56:68:df:57:50:13:7a:77:e7:56:
25:fb:43:a3:62:63:0d:85:e3:03:c7:6c:75:2a:db:e5:85:e0:
0a:a1:1a:e3:08:3b:4a:93:d6:cf:2f:8a:13:da:4e:15:71:b1:
0b:be:fb:b8:2f:1e:f0:be:9f:cb:a0:f1:49:fc:9e:61:22:a8:
4c:c2:15:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 12:42:50 2025 by rpki-client