Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
File: XcYkXKggiZ1-tBQDAsIQQbXbygY.mft (raw, json)
Hash identifier: ov+1SDkvUx7nA5Ea2ehjIC53pGB4/v2pjT2pTp9OOIg=
Subject key identifier: E6:7C:25:38:7B:34:D6:C7:C3:A7:5B:98:74:47:3D:1F:7E:6B:6C:61
Authority key identifier: 5D:C6:24:5C:A8:20:89:9D:7E:B4:14:03:02:C2:10:41:B5:DB:CA:06
Certificate issuer: /CN=5dc6245ca820899d7eb4140302c21041b5dbca06
Certificate serial: 01976C61CA1368A4638A99FD73ED4AEF192D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
Manifest number: 0579
Signing time: Sat 14 Jun 2025 03:00:37 +0000
Manifest this update: Sat 14 Jun 2025 03:00:37 +0000
Manifest next update: Sun 15 Jun 2025 03:00:37 +0000
Files and hashes: 1: XcYkXKggiZ1-tBQDAsIQQbXbygY.crl (hash: Qnv+Ochei2DB6aVIV2otjoQXmHFO1vmhm5Sj6WwA+KQ=)
2: p3q-BDwRqsq597BmScWC04Uizbg.roa (hash: vEfpkI+83ThIFnHcYAP8l+1vWWpuU+kEjWNLTSj4mUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:ca:13:68:a4:63:8a:99:fd:73:ed:4a:ef:19:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc6245ca820899d7eb4140302c21041b5dbca06
Validity
Not Before: Jun 14 03:00:37 2025 GMT
Not After : Jun 15 03:00:37 2025 GMT
Subject: CN=e67c25387b34d6c7c3a75b9874473d1f7e6b6c61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b1:1a:9a:4b:0b:93:b9:54:8d:f9:4c:1c:08:
6e:0a:54:9b:20:8e:75:96:b0:18:a1:3f:49:72:93:
3e:0d:86:da:b9:69:43:da:f0:e4:e7:36:af:aa:e3:
67:6e:ba:19:9c:84:24:2f:77:9e:53:61:20:5c:61:
7a:50:aa:ff:a9:46:02:fd:6b:0d:23:f5:46:74:99:
a9:6f:87:7d:78:a4:90:3c:b5:ff:c9:a5:a6:58:a6:
b4:36:3e:34:23:0c:47:71:33:af:b2:c4:dc:2b:ac:
18:c8:e8:ad:7c:41:83:a3:22:a6:c9:76:ed:e0:d7:
b6:76:32:cc:04:37:33:19:b9:9a:f2:42:d6:73:4f:
97:b4:2e:3f:86:40:aa:f4:33:c8:5e:e3:dd:15:7d:
9d:a4:a5:50:d4:a0:65:94:42:3f:fc:40:6a:78:36:
47:24:92:54:46:09:a2:94:f9:a8:cd:61:e6:d9:8a:
a3:8d:3d:24:af:06:1c:57:3d:7d:71:91:ff:58:f5:
e6:87:74:09:c4:06:7e:73:b6:62:0c:60:d0:ee:50:
47:07:17:de:d6:d2:21:56:22:3e:17:11:e3:66:bd:
99:5f:02:a8:ba:63:da:57:8f:18:32:85:30:29:c4:
ee:06:02:1f:43:d6:60:af:22:71:93:a9:9c:7a:4f:
e8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:7C:25:38:7B:34:D6:C7:C3:A7:5B:98:74:47:3D:1F:7E:6B:6C:61
X509v3 Authority Key Identifier:
keyid:5D:C6:24:5C:A8:20:89:9D:7E:B4:14:03:02:C2:10:41:B5:DB:CA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:47:99:3e:76:9b:ad:f7:5d:6b:cc:1e:1e:80:80:c4:e9:61:
62:b9:1d:ab:36:d8:2d:d8:26:72:63:31:fc:0a:2c:2d:2b:d2:
73:fc:5e:6c:4e:7f:4c:0b:16:c4:9c:ee:fc:25:cf:ba:46:76:
d3:31:64:c8:fc:f4:cf:f1:c1:6e:04:11:48:c6:36:75:8a:5b:
14:43:7e:8d:cd:ac:2e:b4:5a:cc:4a:36:81:a4:52:b8:71:c1:
a3:cb:4f:fd:6d:04:6c:06:a7:6a:83:f6:5c:ce:6b:1d:da:55:
e8:e1:fd:ee:30:1f:df:0a:7f:d1:96:9b:9d:77:b8:82:78:8d:
a7:f2:47:7c:cc:95:1a:77:b7:9a:c8:8e:5e:28:29:c1:fc:bb:
a4:62:29:e7:1d:33:c2:cf:31:0d:d0:a0:72:0f:f9:0c:f0:80:
79:f6:f2:f5:33:91:e2:19:68:a8:1c:e7:d5:0a:59:44:4b:87:
68:e3:5a:10:88:15:8e:6e:bd:81:fc:e0:52:a9:d6:48:94:9e:
da:88:d7:de:ef:93:a9:3c:2b:b0:f3:24:37:17:50:2b:04:c2:
35:58:25:9e:14:88:bf:18:49:1b:cd:99:7b:9f:8f:9a:2f:db:
4b:62:08:dc:17:ce:eb:43:77:85:7f:ec:18:c4:76:bd:66:3b:
73:93:bc:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 05:16:02 2025 by rpki-client