Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
File: XHbv8miEvwBiB9cis7AaRNK1YZk.mft (raw, json)
Hash identifier: pHlpFhlOMcGJVDXlKqFW8/8oUg6LGFkeBMyGjrnqQIU=
Subject key identifier: 68:D6:C0:3C:75:CC:C1:FD:DF:FC:D9:10:C9:DA:73:6A:E4:68:26:29
Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199
Certificate serial: 0197469E6E47A3303BDE7B270BB1079E415E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
Manifest number: 0DB2
Signing time: Fri 06 Jun 2025 19:01:17 +0000
Manifest this update: Fri 06 Jun 2025 19:01:17 +0000
Manifest next update: Sat 07 Jun 2025 19:01:17 +0000
Files and hashes: 1: XHbv8miEvwBiB9cis7AaRNK1YZk.crl (hash: pDndzoZQ3jUsANIRH5n/RBmAcdj4ArdI15NlfOEInws=)
2: aeqC4EE0KUZ0Hdgey5muRSCYEvc.roa (hash: aH7XcxnHv3qEq7LQXqlBVrjotePFAy5nc/77ZI52Ock=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:6e:47:a3:30:3b:de:7b:27:0b:b1:07:9e:41:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199
Validity
Not Before: Jun 6 19:01:17 2025 GMT
Not After : Jun 7 19:01:17 2025 GMT
Subject: CN=68d6c03c75ccc1fddffcd910c9da736ae4682629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:54:65:a0:15:2e:45:61:3f:39:f0:09:a1:99:
86:83:bc:2d:b4:87:8d:b5:b8:7a:5d:0c:50:d7:8d:
ab:19:31:3c:c2:01:90:91:98:cf:19:9e:81:a0:ac:
60:7f:86:bc:91:17:bb:f1:3b:e8:79:ed:65:51:8f:
0c:ef:60:45:c8:48:69:4d:37:e8:77:0e:64:e7:33:
11:a5:14:2d:4e:cc:11:a0:cc:98:ca:72:0b:4a:24:
1b:db:f8:f6:9c:93:2a:95:c4:26:57:20:fc:41:0c:
8f:ff:a7:68:d8:60:0b:22:8f:85:fd:c9:2b:91:82:
f3:ce:e2:20:12:09:7d:e4:77:b7:8f:4f:ff:63:49:
b6:91:3a:3d:f2:50:b9:34:8d:f3:f1:1b:b8:a7:7f:
87:55:3a:b0:50:fc:14:c7:8e:a0:c1:f1:0f:03:0f:
96:46:73:79:07:1c:fe:8f:3f:7a:e1:ef:75:08:a2:
cb:cc:f7:ce:20:e4:2c:15:db:5c:20:79:42:be:17:
31:8c:1b:05:5b:f3:25:73:36:b0:03:70:13:18:76:
c8:fa:48:93:f2:58:77:95:e2:70:90:58:81:d3:f1:
49:b7:78:98:75:c9:26:4c:ed:85:59:cd:fe:c0:c5:
e1:be:23:db:75:6c:4d:eb:60:05:36:ac:76:4c:96:
23:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D6:C0:3C:75:CC:C1:FD:DF:FC:D9:10:C9:DA:73:6A:E4:68:26:29
X509v3 Authority Key Identifier:
keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:7a:80:a9:77:07:9b:01:bc:83:47:16:bf:73:f0:73:37:92:
6a:00:70:ea:56:36:d0:17:1b:c8:7f:eb:78:58:7e:11:39:6d:
ae:7c:c0:55:38:b3:05:eb:ee:2c:34:c5:8f:9b:7a:44:58:33:
53:9d:80:c6:b6:af:9a:e5:0a:a8:38:c3:db:b2:89:60:aa:1d:
af:62:2a:9d:87:37:b3:68:67:cc:73:b4:d6:ca:fd:38:70:43:
6c:95:4c:1f:67:2c:15:5a:d7:97:1e:33:f6:f9:2f:26:20:ad:
7d:36:97:2b:d6:e7:90:0e:a1:88:bd:93:ea:66:0f:c1:e7:0b:
ab:3f:1f:5a:ef:6e:b2:1c:9b:29:b5:fe:58:db:f2:53:f7:46:
c8:1e:1a:7b:2a:de:a7:4e:f7:24:5e:3c:6c:2e:97:87:37:eb:
b6:79:c5:fa:6c:22:89:d8:9d:01:7c:ac:50:fd:ba:96:37:24:
15:0d:c6:e1:22:b9:06:f3:41:02:7e:90:65:20:37:b7:50:17:
4b:be:6a:07:f6:6d:94:d4:e8:f7:ff:7a:84:9f:c7:25:7b:77:
e8:d7:94:9d:22:21:3b:6f:6d:0d:8c:01:a5:e9:6d:72:f6:bc:
93:9e:c0:27:fb:4d:95:8f:04:7c:45:f2:c9:70:10:e3:f9:94:
d8:f0:09:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:21:13 2025 by rpki-client