Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
File: XL1s2RrWpyhrIfZQn92fUP7nXYc.mft (raw, json)
Hash identifier: OiqjjXibT8XXccgkdO7n0gjoOHuLUCzGH3/E0njsX34=
Subject key identifier: 13:7B:71:12:15:76:8B:B6:45:2D:A2:EE:48:2B:AE:5B:E9:4C:DF:F4
Authority key identifier: 5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
Certificate issuer: /CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Certificate serial: 01974A7B760A1989CCA8467A51138848DE6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
Manifest number: 14AA
Signing time: Sat 07 Jun 2025 13:01:34 +0000
Manifest this update: Sat 07 Jun 2025 13:01:34 +0000
Manifest next update: Sun 08 Jun 2025 13:01:34 +0000
Files and hashes: 1: LfsV7f6LxRRDF8DgEB39eI0JGcY.roa (hash: 57HPzdZv/cmkcVMLJmynj7OnbXGj1b4sWVjtj2VnRws=)
2: XL1s2RrWpyhrIfZQn92fUP7nXYc.crl (hash: EN+hJU5XUl35udWepHANVmOCL1aAMa2YQvRn7dIRBlc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:76:0a:19:89:cc:a8:46:7a:51:13:88:48:de:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Validity
Not Before: Jun 7 13:01:34 2025 GMT
Not After : Jun 8 13:01:34 2025 GMT
Subject: CN=137b711215768bb6452da2ee482bae5be94cdff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:74:e3:52:53:c9:77:d2:9d:99:18:bf:0a:1c:
09:8d:f4:55:59:50:fd:06:87:c4:ee:13:d6:63:d7:
90:ff:4e:1f:74:66:0b:31:86:48:05:00:a1:f5:27:
61:fe:e6:d5:1a:26:4c:f7:30:10:0f:99:f6:ea:8c:
fe:2f:d6:21:16:cc:b9:39:2e:13:79:ee:e8:d7:9a:
62:25:a4:47:f8:60:c1:b2:0e:bb:f5:64:c8:82:dc:
cb:84:ce:98:3d:a3:6d:e2:8c:9f:4f:8c:a6:fb:13:
95:ed:06:ae:21:d0:a2:a5:da:dd:23:6d:1a:f5:97:
8a:9a:29:8c:2e:37:d9:01:29:ab:9e:b1:e0:48:63:
be:47:2d:08:8f:ed:a6:0c:0b:45:5d:59:9b:fb:06:
f8:93:f5:2a:a2:e1:62:38:bd:3d:da:58:95:f6:c3:
ed:e2:b0:a0:e7:6a:bf:ac:d4:40:33:ac:95:93:1c:
0d:c9:1c:a3:29:46:ba:d9:54:9c:d5:95:ba:fb:5b:
e4:05:d0:a3:9b:72:49:e5:ae:0b:ea:3b:1c:83:16:
b8:dc:e3:63:3b:67:24:ed:27:54:83:3e:a3:1f:ef:
41:ca:19:f9:8a:3e:c9:b3:26:a1:16:db:74:65:cc:
8e:74:ff:c2:81:1a:45:6e:4f:15:69:7c:a2:9f:72:
d9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:7B:71:12:15:76:8B:B6:45:2D:A2:EE:48:2B:AE:5B:E9:4C:DF:F4
X509v3 Authority Key Identifier:
keyid:5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:43:f0:e5:41:94:75:43:2a:86:22:46:fe:3c:72:5d:e4:ed:
32:49:12:3c:40:dd:90:f3:50:82:bd:fe:15:78:92:75:01:26:
5b:8b:05:20:3d:7d:c3:91:78:61:d3:bd:7b:b0:7a:42:7f:53:
00:6f:f6:ce:4e:b8:96:10:81:28:35:5a:63:7a:94:1d:ee:56:
6d:1a:24:d1:e2:58:eb:5d:10:06:fe:89:b5:b3:3c:e4:e3:9e:
80:72:a0:d7:44:90:a6:a2:c9:47:3d:ac:a4:55:d0:5c:6d:e3:
95:b6:c1:78:35:6a:48:fb:ed:94:fe:49:8d:0a:e1:0d:2d:52:
9a:6d:51:39:af:e6:9d:ac:5b:71:22:95:0f:9a:0d:55:81:2f:
0c:eb:29:7f:d7:fd:9c:a3:9f:06:0a:09:18:52:9d:f6:bf:e3:
5f:12:38:d9:68:e1:db:ec:5b:c1:d7:5a:54:9e:7e:a3:2e:13:
7c:c3:01:99:fe:38:e6:df:17:86:80:77:cb:5e:4e:a8:ea:b3:
88:56:61:3b:f1:b5:d9:bc:ff:f4:46:f9:85:63:52:2f:4e:f7:
60:65:0e:4c:ad:75:98:23:2f:9f:73:22:98:39:d7:dc:9c:93:
c0:f6:e2:47:09:ee:16:2d:48:c6:e0:93:25:e3:df:e9:8f:f9:
59:9e:b9:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:54:51 2025 by rpki-client