Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
File: XPMa_DbLaVUAf-l-1KXjGF0icbo.mft (raw, json)
Hash identifier: RZiQAn2FXOfA3xVr1mJmjx6mgzNqHl2wVeB2oRn1xTs=
Subject key identifier: D7:1E:72:31:43:48:86:42:77:ED:43:EC:53:86:EC:1E:C3:B8:9E:9E
Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Certificate serial: 0197499F3EFC66BEA911147445D62734A9FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
Manifest number: 158C
Signing time: Sat 07 Jun 2025 09:01:02 +0000
Manifest this update: Sat 07 Jun 2025 09:01:02 +0000
Manifest next update: Sun 08 Jun 2025 09:01:02 +0000
Files and hashes: 1: 0LO0qT2-0L6mWDwJ3dVrGvaEEOA.roa (hash: m3gjbEV2ZPpf1SrIWWEpb/lM9m2SeM9EF+s0bK96n04=)
2: CXLJsfdv2mQYEw_nRCBRyHgGrls.roa (hash: gIlLTUkZL/5+bXwsRESHghLIgWvhwbD5U5vB0n4lI0k=)
3: GZyq4JhiMN6IbDxHDi387ilVO3Q.roa (hash: RAmDxoFTdOQGRBWibMySEyO1+N/egEhlrBt73Hj0G1U=)
4: XPMa_DbLaVUAf-l-1KXjGF0icbo.crl (hash: 8B0EI8s1cR0908O8h7kJw5B60fh9GxyZd6ilawi0Y6A=)
5: XsnL58BowN54P94Hq8ZFELardLk.roa (hash: HNbFuOKPa1T82T8LpW7Qm3FZ0tR+dmMImgYgvtx3m4g=)
6: Zz42OKsTm8e7N4-UL7iAE7WQUo8.roa (hash: 5tp1DE1mgaUL43CN7zGdBuvgS2VFLrFuAK++O/dGYog=)
7: eGwOE8lbraIFP9l-UBBCUyjN8_w.roa (hash: E3bGB9caMn035nPuIHCWLooaKqDnHxrQ+ZG/yfDBfXc=)
8: obqfL4R2IKMApxxeeUPFE0sW9OQ.roa (hash: 7Ovq+/kB1PpmG+7SGcAWS7Jl70fuixev1vRb1jw0DXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:3e:fc:66:be:a9:11:14:74:45:d6:27:34:a9:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Validity
Not Before: Jun 7 09:01:02 2025 GMT
Not After : Jun 8 09:01:02 2025 GMT
Subject: CN=d71e72314348864277ed43ec5386ec1ec3b89e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:37:c4:39:76:65:e6:38:1c:d7:a6:ad:21:36:
93:7f:16:01:98:c5:26:86:31:c1:07:fe:3b:7a:be:
ba:25:6d:ae:b0:3f:59:06:70:05:4a:0d:cb:0a:69:
73:c4:a6:77:f6:d4:0a:a3:eb:58:f5:ca:45:40:97:
c0:05:52:50:15:a7:8f:1d:fa:fe:41:41:3a:98:e2:
e0:f9:cd:b3:5a:1c:93:b0:94:15:c2:19:6d:38:7f:
a1:72:37:38:1e:53:2b:12:c9:f9:aa:92:b3:59:ad:
fc:2d:2d:0d:96:6d:96:64:2d:28:6f:aa:f8:c2:9b:
eb:86:30:cc:f8:3f:27:28:13:16:21:78:ca:24:d2:
d6:04:c9:57:fe:b5:41:29:91:f4:1f:85:9b:62:9c:
7c:fa:a9:33:56:b4:03:6e:b6:6a:0d:16:85:57:1a:
5a:7d:89:1c:9a:ee:89:ac:e6:bc:7d:b7:ff:71:7a:
2c:d5:cc:85:dd:59:e7:40:17:43:c9:27:6f:4a:30:
88:4a:2f:6b:07:d2:cc:55:17:2d:e2:bf:83:a4:e0:
0e:dd:45:8a:e9:65:13:d0:02:b2:41:23:bf:b0:bd:
21:0d:f3:9f:e7:ad:2c:49:ee:81:b6:05:96:8c:52:
8d:e8:c0:e6:f0:04:a3:41:67:1c:77:fe:99:f1:5f:
5c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1E:72:31:43:48:86:42:77:ED:43:EC:53:86:EC:1E:C3:B8:9E:9E
X509v3 Authority Key Identifier:
keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:bd:a9:98:55:db:db:ed:59:80:27:48:f2:c8:93:ac:9c:3a:
ff:44:47:bd:e9:eb:10:82:5f:14:b5:8d:ca:fe:e8:41:68:95:
b9:ee:1e:de:91:86:89:29:15:39:fe:21:a5:26:3f:9f:4e:20:
99:71:a5:7b:87:f5:56:2f:0d:ba:b7:85:12:80:1d:9a:c8:f9:
8b:db:98:99:af:8f:00:ab:cf:81:45:48:f9:20:92:72:df:10:
ae:45:63:77:2b:7c:e9:c3:1b:f5:8c:f0:a4:34:b9:58:0d:33:
77:3e:67:73:5a:32:81:e3:64:4c:9d:67:a5:1a:d2:4d:0c:88:
33:3a:3d:c2:6c:52:80:fb:49:f7:b7:a6:c1:9f:49:3d:e4:29:
c1:90:ec:24:ad:59:4b:3a:44:fa:f3:3e:ea:30:83:e1:5d:ce:
29:c0:92:09:35:57:f9:7d:d5:8a:19:00:c8:fc:a8:59:4d:8a:
60:2a:f2:7b:5c:37:fb:30:a4:db:30:de:a6:93:de:c2:8a:42:
13:1d:00:9e:1d:bc:fb:02:1e:3f:94:36:8e:99:de:31:97:f1:
4e:d1:00:0a:7d:0d:14:c8:c9:f9:bf:03:ad:10:4d:72:77:07:
78:e8:ab:13:88:b0:83:e4:a1:e3:ed:8b:4f:ff:3f:1d:16:11:
aa:bf:6e:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:36:55 2025 by rpki-client