Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json)
Hash identifier: LhAb/CFBu2B6uh6B77drUIYyfAYL/ybIJ4H0FVAswD4=
Subject key identifier: 0E:FC:CA:93:63:13:C0:F7:24:EE:B4:04:FB:60:9D:1D:8B:15:1D:A7
Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Certificate serial: 01974A0C9BC303A85D318EACA86E69486E6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
Manifest number: 0AB9
Signing time: Sat 07 Jun 2025 11:00:29 +0000
Manifest this update: Sat 07 Jun 2025 11:00:29 +0000
Manifest next update: Sun 08 Jun 2025 11:00:29 +0000
Files and hashes: 1: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: eTUeJg4VNScfeFAmDC4zeNks4xOv7km2T1U2N5CuGSQ=)
2: _GYD1AJUDNposAkJpRDfG9xq6dk.roa (hash: afY5Qh0XccEeUiEofkFyRBQd+JnAG3mTgUzmW0se7YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:9b:c3:03:a8:5d:31:8e:ac:a8:6e:69:48:6e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Validity
Not Before: Jun 7 11:00:29 2025 GMT
Not After : Jun 8 11:00:29 2025 GMT
Subject: CN=0efcca936313c0f724eeb404fb609d1d8b151da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:80:72:45:60:86:3f:5b:14:94:45:92:86:eb:
f6:df:ec:00:63:29:ab:58:17:73:ae:4c:04:97:9f:
30:04:08:2e:ec:59:e9:4e:8b:bb:f6:0b:dc:9f:e6:
eb:ce:a0:b0:9a:06:f4:b2:8c:1d:d0:11:0b:76:1a:
83:05:9f:82:b2:78:06:7f:86:a4:e2:b0:83:08:96:
a0:92:5d:22:31:36:cc:ef:07:90:94:b3:2b:ff:d0:
90:3c:e2:cd:21:09:88:63:71:e6:1b:2c:d2:a9:17:
1b:40:1e:3d:51:8c:eb:08:a2:ec:3e:db:ef:f0:e6:
8d:ab:ef:71:b6:47:4a:f4:c0:02:dd:59:34:81:87:
38:3f:e5:c1:d7:11:d7:41:47:1b:e0:b8:8c:fb:b6:
d1:f2:da:e9:07:0e:71:f8:37:6c:92:92:09:c5:20:
6b:30:24:6c:ef:56:79:cd:01:74:b1:c6:59:54:8b:
a9:f9:bd:b7:06:30:88:ac:9a:ad:8e:a4:6a:95:4a:
71:a4:57:d2:6b:16:2a:a8:87:c1:6f:37:c5:17:f6:
9c:e3:6e:54:5a:7e:34:db:bf:59:79:8c:11:5c:f7:
ed:f1:29:d1:58:a8:f6:fc:fb:5b:b9:b3:05:d7:93:
e5:72:73:12:b3:e6:7b:40:ca:4a:a1:44:37:e8:93:
ee:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FC:CA:93:63:13:C0:F7:24:EE:B4:04:FB:60:9D:1D:8B:15:1D:A7
X509v3 Authority Key Identifier:
keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:42:a9:09:b8:ea:e6:66:8d:78:ee:a4:28:77:67:18:c6:83:
15:6e:82:55:32:cf:14:32:3f:8c:39:32:ad:77:7d:8f:77:b2:
85:46:1b:d8:fd:67:44:0c:44:98:b7:bf:48:69:a6:bc:63:d0:
3c:cc:a6:4e:86:5b:75:14:9d:52:c4:fa:95:2a:9c:1b:74:16:
ef:a8:85:7e:91:e4:09:57:ad:af:10:1a:e7:36:a4:75:23:42:
87:9f:43:16:14:53:fc:55:1f:9d:17:40:89:95:31:ca:b5:c8:
f1:90:e5:dc:65:8c:15:87:9c:30:2c:73:10:e5:4e:dd:f3:6e:
fe:c2:cc:26:eb:ea:aa:69:dd:24:46:84:9e:77:56:50:9a:81:
69:ef:30:bd:3a:82:34:d7:dd:02:bb:bb:21:7b:d9:c7:e1:f6:
60:6d:61:69:ff:f6:42:5a:1a:ca:53:9d:55:d6:27:97:68:94:
01:54:e0:4b:39:db:b2:63:69:b4:27:76:b0:04:cf:7d:b1:4e:
3d:9a:60:74:e3:8c:50:46:27:b6:c9:f2:f4:ce:ed:ad:2b:8c:
8e:d3:71:1e:71:a9:69:db:8d:81:0b:aa:a5:14:bc:ad:cf:27:
ab:0d:b7:56:ed:6d:ed:8c:9c:36:0e:7d:6e:5c:b9:ab:00:ee:
f2:a2:af:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:54:18 2025 by rpki-client