Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
File: XYJmcuaPPaXbUO2ButuNM73M0ro.mft (raw, json)
Hash identifier: V/+ljOeJOFeVc4CMLBYg6DpDE6ksd+jDooRkKjqyZIk=
Subject key identifier: 38:F6:0F:03:61:E8:4B:03:D8:68:4F:2B:F3:C3:AA:83:62:B2:19:7E
Authority key identifier: 5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
Certificate issuer: /CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Certificate serial: 019745C25F9E03182FC9C791C34A886F140F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
Manifest number: 11B6
Signing time: Fri 06 Jun 2025 15:00:55 +0000
Manifest this update: Fri 06 Jun 2025 15:00:55 +0000
Manifest next update: Sat 07 Jun 2025 15:00:55 +0000
Files and hashes: 1: XYJmcuaPPaXbUO2ButuNM73M0ro.crl (hash: CZpan8wVLjOBQ0XCydAgmLdUfomedKbKEf5J3wRTBQs=)
2: uOaT4j9EVJiz8EIOTgjvWTshz84.roa (hash: 6VQK7lQU8B+WO6nBknTZwm7r/sjint5WViRnRUFwHxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:5f:9e:03:18:2f:c9:c7:91:c3:4a:88:6f:14:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Validity
Not Before: Jun 6 15:00:55 2025 GMT
Not After : Jun 7 15:00:55 2025 GMT
Subject: CN=38f60f0361e84b03d8684f2bf3c3aa8362b2197e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:f1:76:12:00:8e:f8:a6:e9:e9:f2:36:89:
fb:a3:30:14:01:92:a9:39:16:1b:b5:45:34:2f:46:
f4:b1:b5:b0:3c:92:c9:70:60:ec:40:5f:f5:53:e6:
5c:ae:28:57:ff:ba:af:af:d0:fb:a1:b9:37:18:e5:
4d:01:ca:d2:55:40:9d:f0:02:d5:70:bf:91:ce:d8:
e6:a2:77:3a:17:df:eb:3b:0d:06:1d:ed:6c:36:1a:
db:a7:c1:3d:8e:84:57:1b:c6:ae:fd:8c:a1:b9:3a:
41:a5:ca:f9:3d:fd:cf:c8:5c:9a:c2:14:9e:79:76:
1c:1b:99:a1:5d:ce:0b:83:9c:4f:09:52:c1:5c:a3:
0b:fd:8c:91:6f:02:d0:98:3f:f0:5e:6b:21:12:78:
80:1d:2e:3a:b5:aa:62:77:90:e5:aa:f8:89:e3:d0:
75:4e:8e:f2:3f:4c:97:7e:0b:2b:36:82:c0:91:3a:
b1:af:f6:3f:ea:08:3e:77:74:c6:4a:c5:44:96:64:
3c:17:01:fc:c9:30:54:e3:fd:9d:bf:99:03:36:f1:
24:5a:b1:2d:4b:e1:6a:5d:b6:f1:29:24:49:2f:8e:
e0:cc:dd:f4:cb:03:e4:4d:08:51:4d:e6:02:f5:78:
e9:2e:2c:f7:10:af:e0:50:2a:1f:d9:b1:b2:1a:f5:
2d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F6:0F:03:61:E8:4B:03:D8:68:4F:2B:F3:C3:AA:83:62:B2:19:7E
X509v3 Authority Key Identifier:
keyid:5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:b2:a7:1f:89:6d:a8:dc:b4:9d:b9:49:57:1c:0e:9e:1f:75:
55:3f:81:53:8e:b6:bd:3f:bf:af:09:8d:67:c2:77:47:b8:7d:
1e:d8:74:c7:26:82:52:8a:c7:ae:a2:95:a6:6c:0b:aa:27:fd:
c1:f3:05:b8:6e:b9:e6:e4:90:e0:e2:3b:c0:f4:1d:c7:42:0a:
68:e5:ed:65:c5:8e:26:61:9d:9e:71:85:e5:86:3f:33:9a:d0:
3e:ac:f6:35:14:21:08:11:dd:a8:2c:6e:17:70:e8:52:17:e0:
e0:1f:9d:8c:1e:2b:c0:f7:f2:96:ef:dd:27:fb:ec:13:4f:f6:
91:42:d3:19:63:1c:6e:a6:98:a5:5b:25:88:ea:a2:f0:ce:74:
de:aa:e5:31:7b:f4:8f:bf:81:97:51:37:b5:c6:ee:27:74:15:
c1:f2:05:20:38:cd:08:7a:6d:75:31:38:e8:84:ce:e8:6e:68:
99:81:65:70:f1:0c:82:4c:ef:a9:1d:5d:69:20:0e:b0:03:d9:
a2:59:95:ff:f3:2e:e1:bf:86:60:da:ec:cc:a7:44:59:ff:12:
c5:4e:a9:bb:09:32:18:fa:5f:1d:8d:69:4e:be:14:81:93:20:
ba:76:f2:13:94:94:7d:3a:e4:6a:d6:c2:d7:55:23:25:11:d6:
18:fb:7a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:25:32 2025 by rpki-client