Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json)
Hash identifier: pRO2lSxqSv5kgLrLkiuk9swMPJjIlhSDOuNnp9On1ds=
Subject key identifier: DC:31:5E:1D:79:57:B1:91:65:42:6B:A5:57:58:71:5F:41:27:24:6F
Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Certificate serial: 019847090A463ACFD3DD3D54DD3DEDD036B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
Manifest number: 0B3C
Signing time: Sat 26 Jul 2025 14:00:31 +0000
Manifest this update: Sat 26 Jul 2025 14:00:31 +0000
Manifest next update: Sun 27 Jul 2025 14:00:31 +0000
Files and hashes: 1: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: BtoeYRT/AOoGZdIomsdCwSyLNWAxN7fbWcWp72XGvGw=)
2: _GYD1AJUDNposAkJpRDfG9xq6dk.roa (hash: afY5Qh0XccEeUiEofkFyRBQd+JnAG3mTgUzmW0se7YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 14:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:09:0a:46:3a:cf:d3:dd:3d:54:dd:3d:ed:d0:36:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Validity
Not Before: Jul 26 14:00:31 2025 GMT
Not After : Jul 27 14:00:31 2025 GMT
Subject: CN=dc315e1d7957b19165426ba55758715f4127246f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:95:d8:1f:e1:df:51:87:e0:be:9f:fd:d3:42:
9f:09:8b:a6:f8:fb:86:9c:80:f0:ea:37:1f:55:77:
e1:3c:75:ca:a3:2d:25:46:55:70:e7:0f:ce:b2:22:
81:f1:63:c6:81:74:65:6b:2d:83:a8:3c:7a:54:04:
c3:50:03:f8:11:ae:cf:5b:d3:0f:19:af:74:78:5e:
ae:77:71:f0:41:fd:d4:56:20:36:44:71:04:ff:f5:
5d:47:5f:11:04:23:dc:47:44:0b:eb:59:3b:08:0a:
08:af:5e:64:bd:2d:c1:86:c4:a4:f4:17:8b:a2:24:
b4:35:de:a3:60:c6:ae:85:14:82:2c:c7:b5:20:c8:
c4:56:56:d8:9b:df:6a:32:08:eb:54:0e:66:e7:13:
93:cb:cf:65:be:9f:35:e2:0b:25:2c:bf:a3:93:ef:
a2:f5:92:bb:87:4e:50:40:10:53:09:17:f5:a5:4b:
ab:8c:5e:87:49:f1:02:85:7c:51:db:f1:64:98:3a:
58:f0:ea:63:84:d3:e3:39:69:61:24:95:4c:9e:fb:
bf:9c:18:fb:0d:db:15:7a:4d:83:b1:17:f6:b8:3b:
71:4b:5e:36:04:3b:08:8f:10:f8:49:74:65:76:9d:
57:a5:99:54:41:e7:b1:65:0f:ff:9b:64:9e:0e:11:
1b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:31:5E:1D:79:57:B1:91:65:42:6B:A5:57:58:71:5F:41:27:24:6F
X509v3 Authority Key Identifier:
keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:24:b8:fd:92:b7:c6:b7:80:51:b4:b2:eb:ca:d0:1c:40:fe:
f6:a5:d3:8a:a4:ac:1a:ed:e0:61:ba:9a:51:d4:49:ec:65:5c:
62:af:5d:62:9e:4a:39:53:81:45:32:ae:37:4e:df:84:72:c4:
99:26:99:3f:52:62:0b:ea:d5:2c:07:9f:68:6e:6f:66:61:2c:
d3:13:18:ea:9b:f0:59:2b:5a:92:fb:0a:94:68:81:0a:df:d8:
98:e8:04:02:df:6e:57:2c:b1:da:12:f1:65:4b:13:8d:f0:6a:
65:18:2e:36:68:21:30:08:ba:f3:dc:d8:e2:a8:0a:76:13:d5:
1a:5b:4f:3a:04:52:d2:6c:0f:c5:be:f2:7f:d7:8d:38:23:41:
84:04:5f:31:9d:9e:3c:39:24:f3:b6:5d:e8:25:4e:f2:cd:d4:
c0:d7:e2:87:1e:9f:2c:6a:73:77:94:2d:a2:3a:a8:fd:a8:fa:
dc:33:f6:cc:8a:41:f4:24:e8:47:4a:8a:ca:53:54:64:5f:91:
8b:d1:0d:91:86:5f:6c:d4:7b:8a:bd:c0:d8:2c:49:71:5b:cd:
d5:b4:9e:61:2a:7d:18:46:87:69:7f:dc:9b:86:be:ee:0d:41:
67:02:13:54:59:0e:89:7f:d4:e9:ac:47:34:4d:c0:63:a6:c0:
35:10:66:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 23:20:45 2025 by rpki-client