Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft
File: X2c9L2Ia4xQHABdIu95jisvYYFA.mft (raw, json)
Hash identifier: 6yDUSGiVk5Pj/pUs5VoUP3/AzX1tChjo+Mc9y/mlb+I=
Subject key identifier: 5E:17:EC:7F:5C:FB:4A:02:24:66:47:9D:9E:B6:72:D4:1B:10:DA:6D
Authority key identifier: 5F:67:3D:2F:62:1A:E3:14:07:00:17:48:BB:DE:63:8A:CB:D8:60:50
Certificate issuer: /CN=5f673d2f621ae31407001748bbde638acbd86050
Certificate serial: 0197488CB9252F562578C28A4BA85740F8EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2c9L2Ia4xQHABdIu95jisvYYFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft
Manifest number: 05F1
Signing time: Sat 07 Jun 2025 04:01:11 +0000
Manifest this update: Sat 07 Jun 2025 04:01:11 +0000
Manifest next update: Sun 08 Jun 2025 04:01:11 +0000
Files and hashes: 1: HqDRIksWN36QXauqYoD2knIGjbc.roa (hash: 05DMa/ontaHtCWdbIzNxIFAgYET2ZoK4nwid3joHlm8=)
2: X2c9L2Ia4xQHABdIu95jisvYYFA.crl (hash: K9Xvm/WsiSdwQPN5EsHa0/0oUFTQuDFxEq/Nfea88Nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/X2c9L2Ia4xQHABdIu95jisvYYFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:b9:25:2f:56:25:78:c2:8a:4b:a8:57:40:f8:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f673d2f621ae31407001748bbde638acbd86050
Validity
Not Before: Jun 7 04:01:11 2025 GMT
Not After : Jun 8 04:01:11 2025 GMT
Subject: CN=5e17ec7f5cfb4a022466479d9eb672d41b10da6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5e:02:98:b6:e1:df:9c:9c:b8:38:4b:a7:c8:
e5:55:ff:81:96:a0:31:19:fe:b7:33:ce:66:d1:56:
f9:38:e2:fb:0b:23:2f:1b:2f:d9:f1:d6:38:24:7f:
d2:93:98:d4:87:a4:ad:07:a7:af:b0:b3:a1:3c:7a:
71:fa:38:04:2e:3d:c0:3b:b6:62:20:42:15:ae:55:
18:ea:6d:33:ff:bb:0d:a1:f2:9d:11:32:c5:08:e1:
cd:a9:54:11:fb:68:e5:05:7a:38:ba:a6:a7:81:c5:
f4:32:ff:3d:e4:1a:22:7b:67:9d:b2:02:cd:19:42:
9c:2f:3f:02:2a:06:1f:c7:6c:97:ae:83:72:d6:25:
1a:f5:98:e0:03:20:2b:4f:f1:61:45:dd:89:73:ff:
e6:72:ea:10:ac:2c:78:f3:16:d7:01:25:04:1d:44:
95:5a:a8:35:fb:c1:94:6f:1b:2e:76:78:02:95:25:
75:58:fb:19:a0:d5:1a:54:b5:11:f3:80:32:99:d2:
fc:f0:8a:bc:e1:6d:55:3b:af:c0:17:69:bc:ce:c1:
36:6c:1d:7b:fc:25:f7:d7:0a:c4:65:48:36:b0:4e:
f7:30:2c:1a:df:6b:40:2d:10:12:c6:cf:03:b0:b4:
ae:20:87:1e:7f:c4:a1:af:5d:32:fa:25:11:2d:ce:
d5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:17:EC:7F:5C:FB:4A:02:24:66:47:9D:9E:B6:72:D4:1B:10:DA:6D
X509v3 Authority Key Identifier:
keyid:5F:67:3D:2F:62:1A:E3:14:07:00:17:48:BB:DE:63:8A:CB:D8:60:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2c9L2Ia4xQHABdIu95jisvYYFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/652780-3ea1-415e-839e-844729137ee5/1/X2c9L2Ia4xQHABdIu95jisvYYFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:1b:46:46:5d:c5:2e:05:9c:65:b6:a7:bb:6c:8c:de:05:0f:
5d:40:92:84:21:c3:d1:3a:91:b0:94:f5:d2:c1:6c:72:10:b7:
0b:b4:84:bb:c9:87:a8:e4:d0:b9:9b:20:53:e1:39:09:df:79:
ee:38:97:bd:9f:16:18:32:41:71:5a:eb:5d:df:d1:40:6e:b1:
1f:be:c1:f1:45:b5:90:78:9e:2e:cb:38:2d:11:a2:7e:a9:fd:
fb:b2:7a:da:3d:a6:01:90:4f:01:63:ab:91:2b:b2:31:e7:a4:
cd:8d:62:e2:04:2c:c1:77:4c:31:12:8f:2e:e1:43:ce:f6:58:
0a:da:bb:3f:1f:f8:7f:21:7a:5c:cd:57:a6:08:80:fc:4c:94:
b9:f8:6a:87:90:4f:57:c7:81:43:50:d3:26:76:df:cd:ef:cc:
4a:92:c1:95:df:7c:d5:6c:69:da:b2:b6:f1:54:e1:51:d6:ab:
0a:aa:95:12:37:52:c3:a8:7e:ab:ba:3f:16:59:de:27:37:b7:
24:17:41:61:31:a7:6c:6d:a1:13:2c:03:99:b8:0b:9d:4c:da:
3e:f1:e5:14:06:27:be:63:c3:9c:6a:b3:50:a9:d8:d8:6c:f4:
e0:c3:1f:d1:6a:aa:d9:e0:9c:48:5d:fb:1e:85:c7:9e:2a:18:
07:19:9f:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:52:10 2025 by rpki-client