Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
File: XlgQVXywZwvJwJM-An6b2CqxVt8.mft (raw, json)
Hash identifier: rS0Dv5p9v3vKpk94KwxCXEE8cvdg41bUo+d1b5x4ZaE=
Subject key identifier: 50:96:5C:E3:90:34:02:D4:EF:3E:BC:9F:5B:95:4E:36:56:AF:28:E9
Authority key identifier: 5E:58:10:55:7C:B0:67:0B:C9:C0:93:3E:02:7E:9B:D8:2A:B1:56:DF
Certificate issuer: /CN=5e5810557cb0670bc9c0933e027e9bd82ab156df
Certificate serial: 019753470CC6982A809761503A7FD6AD3F08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
Manifest number: 1512
Signing time: Mon 09 Jun 2025 06:00:54 +0000
Manifest this update: Mon 09 Jun 2025 06:00:54 +0000
Manifest next update: Tue 10 Jun 2025 06:00:54 +0000
Files and hashes: 1: X3STT9uNWvgpUT8B2LTGrxoI9k0.roa (hash: LPxXWYECEhYhqhJFZtgmdAjXs7SoH+TOKVHj7gJZDp0=)
2: XlgQVXywZwvJwJM-An6b2CqxVt8.crl (hash: H3nbe1I8mWGOU7pR8oknRooCRHQihU9EJ/vsS+YE1wE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:47:0c:c6:98:2a:80:97:61:50:3a:7f:d6:ad:3f:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5810557cb0670bc9c0933e027e9bd82ab156df
Validity
Not Before: Jun 9 06:00:54 2025 GMT
Not After : Jun 10 06:00:54 2025 GMT
Subject: CN=50965ce3903402d4ef3ebc9f5b954e3656af28e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:bc:20:68:3d:10:00:cc:be:d5:73:81:9b:5f:
fe:e4:f5:b4:11:4a:58:6e:08:20:0f:d1:90:18:91:
a3:25:a6:59:4f:36:2e:2c:bb:4e:2d:70:dc:3c:73:
bb:9c:58:7f:34:db:f3:e9:7d:6f:8c:63:93:3f:10:
c5:52:17:09:60:43:39:da:8b:2a:5b:cc:ea:0b:f3:
e1:b8:5c:f7:d9:b1:69:e5:11:8e:13:52:21:21:7f:
a4:b7:75:8a:26:eb:58:7c:d3:00:27:24:12:dc:fc:
d1:12:3a:05:61:66:e3:f1:48:19:6a:4d:a2:e3:35:
65:c8:55:42:74:80:42:bd:87:80:fa:ae:3e:0b:3b:
3f:54:f2:91:59:a8:7f:d6:20:d5:9b:c4:29:bf:5a:
1d:f9:37:ec:81:d0:cc:67:e3:0b:a5:1f:d8:d3:6f:
b8:55:e5:00:28:34:35:3f:b2:93:f1:de:21:97:8e:
24:61:0f:7c:9d:87:1f:cf:46:5c:91:fb:38:23:b5:
df:e8:cc:04:03:7c:cc:56:ae:8f:b3:18:5e:aa:03:
f0:4d:d0:78:0c:6a:a8:15:71:a5:8c:95:58:37:eb:
65:a4:dd:0f:7a:81:c8:f3:6d:0c:9d:34:bb:ba:1b:
25:13:7c:54:b2:11:18:76:57:f3:73:b7:65:24:30:
8b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:96:5C:E3:90:34:02:D4:EF:3E:BC:9F:5B:95:4E:36:56:AF:28:E9
X509v3 Authority Key Identifier:
keyid:5E:58:10:55:7C:B0:67:0B:C9:C0:93:3E:02:7E:9B:D8:2A:B1:56:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:f1:b5:eb:d4:25:57:0f:0c:44:52:16:8f:01:d3:e7:90:77:
a2:d8:3a:76:cb:2c:21:8c:e4:e4:02:f9:7b:4e:f1:60:df:ed:
ed:f4:00:6f:40:1d:d1:a4:97:f5:6a:d4:0c:25:e7:2d:c3:46:
51:7e:df:45:fe:63:40:61:f9:b4:38:8c:08:32:1b:ed:ea:f1:
e2:eb:45:fe:bc:f3:fe:cb:77:57:e9:4f:e1:8c:04:86:d6:64:
27:79:b8:37:06:72:a8:2f:65:c0:43:80:c8:aa:35:95:19:43:
ef:a4:dc:56:de:68:36:66:37:75:07:a8:0c:f4:24:5e:13:95:
99:31:7d:b1:e3:27:77:84:6d:ae:e4:8e:09:8a:bc:f6:a5:dd:
af:b0:e6:09:fc:69:81:bb:73:cc:1a:23:7d:c6:03:7a:bd:19:
9c:27:93:c8:d2:bf:6e:41:bd:bf:e8:26:00:57:28:13:ad:e3:
8e:a2:8a:a2:a1:8b:d1:bf:b4:69:46:30:3e:31:fe:54:14:b3:
4e:54:ee:c0:19:c0:d3:53:20:67:62:ab:ff:a9:77:9c:f5:88:
68:0a:d9:c6:bf:b8:53:28:77:82:42:af:f4:11:8b:23:7f:d5:
07:57:97:aa:4e:3a:f3:ac:2a:78:b4:74:d7:7d:fa:6c:ff:db:
fa:69:cf:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:02:34 2025 by rpki-client