Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
File: XEwop1rJaVHcOEAKgPnvOqryqss.mft (raw, json)
Hash identifier: Sow2dre3h7EApcikOZoQbZV5blYcC4p/RdZwr4Db3z4=
Subject key identifier: 99:90:50:A1:71:61:4C:43:BC:3E:AB:53:4A:34:DA:DC:3C:96:AA:86
Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Certificate serial: 019747E7AD47FE15AF5783E8710AD44EFB34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 01:00:54 +0000
Manifest this update: Sat 07 Jun 2025 01:00:54 +0000
Manifest next update: Sun 08 Jun 2025 01:00:54 +0000
Files and hashes: 1: XEwop1rJaVHcOEAKgPnvOqryqss.crl (hash: 9rTEEdmQHNZRHp/dO49UwryftAC1daNHCNoQZlKFJO8=)
2: eIbScniidhxgoW_2gLpLbnftECI.roa (hash: 0LV2/9XqX9EVzrNxsg5Sc4fQTUKSwMZdzfQWJW36Pqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:ad:47:fe:15:af:57:83:e8:71:0a:d4:4e:fb:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Validity
Not Before: Jun 7 01:00:54 2025 GMT
Not After : Jun 8 01:00:54 2025 GMT
Subject: CN=999050a171614c43bc3eab534a34dadc3c96aa86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e5:28:78:46:d6:66:29:47:2a:ec:a8:71:0d:
4e:a9:8e:45:75:59:f7:d4:93:fd:e7:df:cb:a6:8d:
b9:68:e1:a0:d8:a0:77:a6:d1:2a:ee:3c:5c:87:f3:
71:5c:2f:0f:46:6a:52:8f:ab:da:67:cc:62:42:2a:
a6:d6:5f:09:07:60:bd:6a:c6:f1:64:c0:ef:8c:d2:
7f:9c:94:89:5c:76:0c:f6:9e:47:f1:77:06:82:a1:
ad:86:8a:be:03:9b:bf:52:01:42:43:59:84:10:0b:
a8:b8:ca:5d:37:be:9e:09:14:10:17:85:ce:89:63:
bf:ce:fe:88:e9:3a:ab:75:62:51:f5:69:22:7f:fa:
dc:39:cb:4d:af:03:fd:f1:21:e7:2d:0b:73:10:ec:
91:74:1d:07:9b:de:d1:a0:17:5f:2a:ec:86:2d:45:
3a:ab:f2:42:01:44:70:36:87:17:8f:5e:ca:7f:f2:
5d:79:4d:d3:b4:e0:d8:76:3f:c2:78:e4:fc:22:5e:
4c:38:c6:b3:84:30:11:00:7e:58:d7:27:86:a0:25:
93:b2:17:bd:4c:3a:97:f4:e1:ff:98:ca:ec:c0:98:
89:fb:5d:6a:cc:1f:74:b9:db:47:2c:9e:ac:ca:47:
4a:5a:71:96:c2:32:bc:5d:7c:da:9c:2c:06:f8:61:
78:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:90:50:A1:71:61:4C:43:BC:3E:AB:53:4A:34:DA:DC:3C:96:AA:86
X509v3 Authority Key Identifier:
keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:3e:0f:f6:26:1f:a5:73:81:01:c9:03:c9:c8:cf:11:fd:25:
62:e1:a2:92:ff:b5:ee:6b:08:aa:47:e5:9b:a1:b8:66:dd:89:
b7:2d:30:f8:4e:cc:a6:53:3b:f3:bc:2b:04:55:a0:51:42:be:
d6:d6:2b:c4:ff:3b:c0:f8:cf:45:11:30:3c:01:da:0f:f4:01:
b9:99:9e:a1:92:b0:44:ea:a4:01:93:a3:6f:14:c3:66:5e:55:
e4:82:54:b5:4a:47:22:5c:04:ab:37:ee:6b:02:63:8f:6e:d8:
78:4f:6b:ba:1f:b0:43:c9:d5:31:25:c4:af:2e:70:b1:06:f2:
e0:6d:d0:af:cf:49:98:3e:db:11:cd:10:47:a4:1e:34:d4:33:
ab:8f:d7:d6:0e:35:ae:7e:c1:c5:93:30:d0:cb:83:ce:4c:32:
4e:43:8a:a7:a2:a9:0b:ac:68:96:05:a8:ab:77:a5:c7:3b:1e:
e6:59:ad:cd:1a:9f:4f:98:94:6c:2e:dc:10:6b:33:96:01:9a:
0b:ec:bf:47:e5:89:60:7d:5d:ef:27:d3:81:5e:8e:0e:56:05:
35:7b:3b:32:f4:6d:97:46:a6:39:25:2c:3a:a4:66:df:33:a3:
52:c5:5c:95:7b:5e:70:bb:4c:64:9c:d7:6b:41:89:76:06:96:
8d:07:64:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:22:42 2025 by rpki-client