Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft
File: XK56oVlNiZKbERo3Hw_ybyAvWOI.mft (raw, json)
Hash identifier: hqw/HbKt+5zVgaBSpzyKF3DBe2y04cQQBT9jF52MUWw=
Subject key identifier: 9D:7E:C0:45:0D:17:D7:04:58:0D:F6:AA:38:3D:8C:62:05:36:05:1A
Authority key identifier: 5C:AE:7A:A1:59:4D:89:92:9B:11:1A:37:1F:0F:F2:6F:20:2F:58:E2
Certificate issuer: /CN=5cae7aa1594d89929b111a371f0ff26f202f58e2
Certificate serial: 01974AB15E265415FF49EB5FACD598458008
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft
Manifest number: 146E
Signing time: Sat 07 Jun 2025 14:00:27 +0000
Manifest this update: Sat 07 Jun 2025 14:00:27 +0000
Manifest next update: Sun 08 Jun 2025 14:00:27 +0000
Files and hashes: 1: HdC41_gg5ZlJREFwcD8B_s_Bra8.roa (hash: GXMzejpdmlRhTsyiOMLzEkSoVbxi2Wz+Z222Mkk/eAI=)
2: XK56oVlNiZKbERo3Hw_ybyAvWOI.crl (hash: RX/o1Baf0TFSQjJuV2Fpm4TxEqhM6TiDWdu0yNvBmX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:5e:26:54:15:ff:49:eb:5f:ac:d5:98:45:80:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cae7aa1594d89929b111a371f0ff26f202f58e2
Validity
Not Before: Jun 7 14:00:27 2025 GMT
Not After : Jun 8 14:00:27 2025 GMT
Subject: CN=9d7ec0450d17d704580df6aa383d8c620536051a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ef:43:d1:ab:e8:e9:af:e3:d8:a6:46:72:91:
19:6a:b1:94:a4:7b:15:19:56:9c:56:34:3c:14:f0:
f2:11:3f:ed:9d:42:46:bb:f4:44:38:b1:58:67:fa:
2e:cd:87:0f:a1:7d:3c:7d:de:57:e7:c8:d8:ab:43:
f1:88:29:b5:af:c6:0b:dc:11:59:2a:0b:e1:39:b5:
00:b9:98:53:f4:4b:e7:cf:79:eb:3c:25:ce:d5:20:
17:5e:db:37:42:23:29:04:5e:14:5b:85:9e:f3:8e:
ce:77:10:7d:35:12:ab:97:cc:fe:03:14:4d:ec:55:
28:24:91:66:c7:be:c0:8a:42:22:33:8b:7d:8e:28:
54:2f:50:94:72:3b:72:ab:10:9e:61:e2:01:95:8b:
f9:d7:c6:a0:d5:c9:ae:58:9c:49:60:73:a4:70:1a:
9f:cd:f9:dc:f8:e4:28:2a:38:d9:3b:80:34:8e:3f:
fd:c4:fc:3e:2b:e2:ce:72:af:8a:48:b7:33:eb:4d:
1f:31:28:74:be:06:db:9b:5c:99:fe:f5:f4:cf:8a:
7d:32:97:8e:ae:17:a1:cb:5b:4e:10:f6:2d:5a:de:
bb:2c:97:30:6a:06:35:fd:16:e2:b5:58:b1:20:5a:
18:f3:56:ff:84:10:56:91:60:8a:92:3c:21:ab:e2:
51:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7E:C0:45:0D:17:D7:04:58:0D:F6:AA:38:3D:8C:62:05:36:05:1A
X509v3 Authority Key Identifier:
keyid:5C:AE:7A:A1:59:4D:89:92:9B:11:1A:37:1F:0F:F2:6F:20:2F:58:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:00:27:17:96:76:d2:4e:78:03:91:77:2c:93:a9:f4:0b:8d:
df:d0:51:35:2f:bf:69:d8:66:63:2d:c5:c1:5d:7a:72:eb:73:
ca:b5:5a:e4:f8:96:4f:aa:c1:a1:b0:14:3c:1d:49:94:aa:7c:
9a:3f:49:56:e9:4a:3a:8b:70:04:7e:df:7b:48:f7:9a:bf:b2:
93:83:eb:f3:dd:bf:98:ce:ab:80:41:68:e9:76:68:b0:38:5d:
a2:37:6e:d3:63:0d:79:18:bd:49:6b:04:80:95:8f:93:b6:ea:
12:5b:67:1e:38:b0:63:90:cc:d5:c1:69:c0:ca:7a:5d:3b:be:
55:32:1d:a1:c6:08:06:7e:c9:f7:67:bb:58:1e:be:9e:1a:67:
87:f4:83:90:f9:0b:b0:d8:ab:5d:71:2e:64:6b:c2:3c:c6:8a:
14:74:ae:91:85:a3:e3:29:00:72:00:63:8a:e0:d1:81:ba:70:
80:4f:31:83:c1:d3:1c:69:5c:80:31:e2:84:de:0a:b0:23:9f:
e1:22:3d:7e:95:09:b0:96:9d:68:c8:90:08:e5:cc:92:11:ea:
9f:38:c2:3d:32:0c:f8:1d:46:67:15:97:7a:42:e5:5e:18:e0:
48:a5:5d:39:16:be:23:3b:60:d3:1e:07:ef:7c:74:6c:40:1b:
6e:41:6d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:51:43 2025 by rpki-client