Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
File: XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft (raw, json)
Hash identifier: lEMB0hHYDdiM4kOqUC4chVX4rBx1QABFUQHEE5g8pcQ=
Subject key identifier: 28:60:0C:BA:38:79:B0:BF:7D:C3:BA:E4:BE:30:85:E3:AD:ED:06:22
Authority key identifier: 5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
Certificate issuer: /CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Certificate serial: 019751586B5A485F37DA636CFB589D48B5C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
Manifest number: 03B0
Signing time: Sun 08 Jun 2025 21:00:38 +0000
Manifest this update: Sun 08 Jun 2025 21:00:38 +0000
Manifest next update: Mon 09 Jun 2025 21:00:38 +0000
Files and hashes: 1: FFFlJ1ntZuYfKnoxbFz369bHbCY.roa (hash: OzHlJ3L/Uq51e4UIV4xO7NIltGOZNXtcjik1Syg/eD0=)
2: XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl (hash: MPh4EhcR1iAmnJBrcYO3UMsD96nBAAeNH5DZUk7Xrns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:58:6b:5a:48:5f:37:da:63:6c:fb:58:9d:48:b5:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Validity
Not Before: Jun 8 21:00:38 2025 GMT
Not After : Jun 9 21:00:38 2025 GMT
Subject: CN=28600cba3879b0bf7dc3bae4be3085e3aded0622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6e:75:8e:25:36:06:b8:15:ca:be:bc:86:cd:
ef:85:3a:46:3e:41:16:62:34:29:70:26:15:46:45:
16:e3:6b:a7:36:73:b8:40:ac:e3:e4:48:5d:53:2c:
c4:2a:8a:d0:6f:43:5d:46:20:17:71:8b:74:73:23:
50:ed:e4:c3:04:f5:f7:6e:95:f0:7a:30:b1:1b:1b:
19:74:32:88:af:50:98:f5:3f:3f:1d:dc:63:a0:df:
96:de:cd:f3:8d:1a:5c:b3:b7:9b:a1:65:1f:6f:58:
95:6c:2e:73:ba:16:43:ec:ba:06:30:01:8d:3b:9b:
cb:a1:70:c4:71:17:60:67:91:f3:f0:5b:71:cf:e8:
c1:85:4d:22:89:ff:dc:9b:90:b4:0f:cc:14:68:6e:
52:b1:bf:63:eb:e9:44:cc:8d:d4:c2:64:1f:8c:0a:
53:81:4d:eb:f2:6c:b0:e9:d5:53:cf:d6:e5:23:22:
55:70:5d:82:0d:85:ee:0d:25:c2:26:a1:09:05:3a:
8e:1f:45:27:21:61:81:4f:c6:3c:d7:cf:19:57:0d:
80:1f:98:55:a4:7e:ab:9a:72:ec:82:7a:81:4e:6c:
78:03:e6:d7:c4:67:94:df:95:ba:23:40:57:e8:7d:
6c:f7:a8:cb:3f:e6:de:d7:36:81:65:ea:58:bf:91:
88:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:60:0C:BA:38:79:B0:BF:7D:C3:BA:E4:BE:30:85:E3:AD:ED:06:22
X509v3 Authority Key Identifier:
keyid:5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:3d:a1:cf:c8:ec:72:a4:7e:55:2c:28:a9:3a:d7:2e:41:c8:
8f:f3:fc:c6:0c:49:a3:c1:0a:45:fd:bf:f3:fe:ca:1e:3b:bf:
ae:b3:7b:a9:4b:9f:68:0e:9c:59:d6:10:f0:f0:16:71:b0:bd:
70:3d:62:1c:80:74:2f:74:99:6a:bb:76:55:9d:7c:64:b4:32:
c0:24:0a:4d:8d:26:84:9b:f3:dc:42:17:1a:f5:a2:fe:bf:e0:
ae:0d:25:13:d5:4b:87:ba:2b:8f:64:9c:d5:92:47:52:48:a2:
a7:d3:5a:4b:15:1a:67:65:3d:cc:af:e8:1e:21:0b:27:db:3c:
f1:86:24:4b:eb:5f:5b:e7:36:7c:57:b5:1d:0b:34:50:28:15:
84:5d:35:da:86:8b:f0:74:ba:a8:86:e3:03:19:ec:70:1e:86:
9c:15:87:a4:93:25:d0:28:96:44:5c:83:41:2e:2a:6e:a2:16:
5f:e9:b9:e8:8c:7f:a2:a6:d5:47:50:0e:83:e3:6e:fc:d6:06:
2a:56:6d:cd:db:4e:82:5e:42:65:c8:23:df:81:05:8d:47:6a:
40:d6:0c:87:cf:74:a8:69:02:34:ec:3b:71:98:da:e9:85:69:
8a:76:5e:b5:a8:e8:a6:34:95:f3:90:50:8c:98:b7:c4:8b:9f:
6c:00:07:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:30:49 2025 by rpki-client