Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
File: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft (raw, json)
Hash identifier: xUFR+Waiybwkd2tjjvUYV485d6Bb33M9ikvuffmAzAI=
Subject key identifier: 6E:28:4D:5E:08:E6:CB:25:E2:0B:36:A2:74:23:2B:2C:2A:24:FD:8B
Authority key identifier: 5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
Certificate issuer: /CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Certificate serial: 01977188C6BD9672413109CEF3356AE0A28D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
Manifest number: 1490
Signing time: Sun 15 Jun 2025 03:01:18 +0000
Manifest this update: Sun 15 Jun 2025 03:01:18 +0000
Manifest next update: Mon 16 Jun 2025 03:01:18 +0000
Files and hashes: 1: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl (hash: WSafBFXpd1MbxML6iTYEhEACp+0l78y4LWHEdebwH8A=)
2: xyAqUo1cBCxwcVbYVeKIYjCComY.roa (hash: 5YKuscwS6gvAjWMFAp+aYRLvaxsng69DrIJ3z9uUMo8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 03:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:c6:bd:96:72:41:31:09:ce:f3:35:6a:e0:a2:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Validity
Not Before: Jun 15 03:01:18 2025 GMT
Not After : Jun 16 03:01:18 2025 GMT
Subject: CN=6e284d5e08e6cb25e20b36a274232b2c2a24fd8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cd:fa:50:61:d7:1e:9c:31:f1:ba:a1:cb:60:
f9:0e:d4:5c:08:85:ef:a2:98:fc:4d:04:3a:57:34:
43:24:ef:96:94:0d:c5:82:a8:04:9b:25:bf:72:b2:
c9:c7:97:fa:9c:5f:64:11:ea:0f:28:0b:d4:4b:f0:
f6:e3:0f:92:53:0c:60:1b:b1:4a:6e:8a:29:38:84:
f3:46:16:04:89:aa:b9:53:a4:03:72:0f:2b:26:34:
58:22:e5:1f:4c:51:a3:20:f5:40:15:8d:a0:05:06:
50:19:b8:02:7e:e8:83:26:57:53:f8:29:db:9c:bf:
0f:9b:37:56:90:3f:96:4b:78:fe:5b:01:05:8a:af:
8c:92:9a:4d:1e:11:a2:b3:c1:47:33:67:93:7d:8f:
9c:f8:db:c3:0f:d7:e7:d1:8c:75:b9:14:07:b0:21:
24:c5:ab:dd:0d:09:0f:3b:1a:37:1d:5b:f6:4e:13:
3d:cd:82:42:96:d1:15:e6:c4:dc:78:79:b4:d4:b9:
77:02:e4:e3:9d:0a:05:54:df:e3:14:49:7a:56:5d:
07:cb:d3:b9:af:18:27:c3:82:f0:21:7d:6b:a9:f0:
dd:43:63:33:cb:f2:0f:b6:5a:a2:b5:36:c4:1d:4b:
16:04:bb:12:ed:cd:1f:0d:2c:c5:6d:c0:91:9f:a2:
d7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:28:4D:5E:08:E6:CB:25:E2:0B:36:A2:74:23:2B:2C:2A:24:FD:8B
X509v3 Authority Key Identifier:
keyid:5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:a9:3e:b6:32:b2:2b:e1:aa:45:0f:41:68:17:4d:18:cd:7a:
35:e5:d7:d5:e8:ef:ef:6a:00:5b:e1:1b:4c:2c:80:c7:72:00:
a9:12:9a:55:d5:25:d5:6a:6e:e4:30:b8:89:f6:ac:ef:06:f8:
d3:00:3a:72:bb:c9:e1:aa:4e:29:fe:61:2e:28:bc:2a:13:69:
91:13:49:f3:98:c4:79:84:5f:5b:21:09:a2:9a:c2:c6:cb:6d:
f8:f6:87:9a:9b:62:42:3d:d5:5a:da:cf:12:95:c8:ed:66:ce:
47:0c:80:c3:9f:b6:e0:c0:82:38:3e:69:0d:0a:b8:40:21:8e:
c3:44:64:bc:96:03:bd:bf:6f:de:e7:6c:82:56:55:55:5a:29:
70:e1:44:58:70:f6:e6:cf:aa:b1:52:75:1b:07:b2:23:74:76:
52:3d:58:be:88:e2:b0:18:a5:3e:91:5d:31:3b:95:a9:80:0e:
6e:02:16:e9:60:71:c8:d2:96:bb:0a:2a:17:35:7a:4d:95:7e:
d0:49:9f:e2:cb:87:a5:e3:22:f9:9e:d7:67:58:e5:f7:ac:7e:
8a:99:be:7c:5c:34:b3:22:c1:d6:23:6d:14:99:50:51:dc:68:
6b:37:4e:32:ae:37:5d:51:3e:99:da:a8:c0:10:16:68:8e:c5:
72:5f:d6:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 11:52:50 2025 by rpki-client