Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft
File: XHOCiOHdRuIcmgORGXJEtHjQqyY.mft (raw, json)
Hash identifier: rBQ4InIqr/gYADOkyRd4e7g2th3HSBi+Q+vtajhxHak=
Subject key identifier: A1:EC:DD:B0:06:38:F5:DF:68:09:4F:8C:AA:D9:A0:69:93:41:05:FF
Authority key identifier: 5C:73:82:88:E1:DD:46:E2:1C:9A:03:91:19:72:44:B4:78:D0:AB:26
Certificate issuer: /CN=5c738288e1dd46e21c9a0391197244b478d0ab26
Certificate serial: 0197504621F5FF469BC98BD47936EE7DE10C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHOCiOHdRuIcmgORGXJEtHjQqyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft
Manifest number: 157C
Signing time: Sun 08 Jun 2025 16:01:02 +0000
Manifest this update: Sun 08 Jun 2025 16:01:02 +0000
Manifest next update: Mon 09 Jun 2025 16:01:02 +0000
Files and hashes: 1: XHOCiOHdRuIcmgORGXJEtHjQqyY.crl (hash: xIRdYQ9PyC2jQmHTqDT0nAx+JqYJpmCRK+Ku18C1bdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHOCiOHdRuIcmgORGXJEtHjQqyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 16:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:21:f5:ff:46:9b:c9:8b:d4:79:36:ee:7d:e1:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c738288e1dd46e21c9a0391197244b478d0ab26
Validity
Not Before: Jun 8 16:01:02 2025 GMT
Not After : Jun 9 16:01:02 2025 GMT
Subject: CN=a1ecddb00638f5df68094f8caad9a069934105ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9c:33:ac:21:d1:58:04:c6:e7:d2:77:80:8c:
89:28:5b:2b:06:b1:50:41:a5:8f:27:c8:07:cd:87:
8c:ac:e7:23:ad:4b:79:a0:4a:cc:1a:d4:d1:74:d7:
cd:33:ca:dc:40:cd:fc:7f:6e:9a:f0:1f:12:60:ba:
0e:48:ec:33:0a:93:1d:2f:96:2d:f2:4f:f0:87:f0:
2a:26:d5:c4:2c:bc:c5:13:eb:a6:bd:30:6c:29:0c:
79:f4:2b:ba:2c:24:5c:55:22:e2:c5:71:54:b4:2b:
ca:e0:2e:d7:1d:76:5e:1a:38:c9:dc:ca:b8:a9:9a:
23:69:49:88:3b:80:a3:44:91:b7:14:72:3e:d6:e6:
54:af:5a:e2:e7:3a:ea:81:15:b7:5f:26:d3:7a:29:
0e:5e:31:bb:5c:7f:96:7f:8f:0b:c6:d5:fc:de:0f:
3f:d7:e3:05:24:78:72:f9:0e:74:f1:95:6f:0f:c7:
20:78:44:7b:13:4c:6d:a2:51:22:93:ba:11:21:5b:
3d:5c:e6:ce:79:50:b8:12:b5:ff:91:5f:b6:db:0b:
2c:d6:b3:a9:80:ed:c8:4b:c1:10:3f:08:27:ca:e3:
4c:6d:88:d1:37:ad:68:fe:d0:0e:39:42:5d:29:6f:
9f:4a:bb:cc:88:93:9a:ad:e4:7f:b4:7e:d4:aa:62:
6c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:EC:DD:B0:06:38:F5:DF:68:09:4F:8C:AA:D9:A0:69:93:41:05:FF
X509v3 Authority Key Identifier:
keyid:5C:73:82:88:E1:DD:46:E2:1C:9A:03:91:19:72:44:B4:78:D0:AB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHOCiOHdRuIcmgORGXJEtHjQqyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:68:95:4c:1f:df:63:eb:62:ab:24:ad:c1:96:84:4f:9d:81:
55:84:60:3d:7e:54:e3:e7:93:5d:36:48:44:45:b7:40:a5:76:
0d:f8:34:12:f8:a2:dc:a7:30:6b:b3:63:a5:c4:43:02:87:48:
06:96:35:ec:a9:b6:a5:63:0d:ee:a7:de:69:08:a3:d7:ce:74:
8c:d8:8f:4e:01:05:59:9d:d2:66:0e:20:d2:89:ba:b7:5c:20:
54:68:44:f6:73:45:0e:71:7f:b7:42:58:fc:92:09:30:29:f9:
21:9b:64:a7:46:8a:04:34:69:91:56:29:6f:33:84:a9:55:ec:
8d:90:c5:af:9e:df:6b:5a:e7:01:cc:12:ef:5e:2f:2b:a7:a7:
39:5d:3d:83:13:0e:f5:18:f7:9e:60:56:31:c1:19:87:f2:70:
de:f8:f8:d0:77:0d:aa:7f:89:54:38:58:8c:94:8d:61:b2:4a:
60:10:87:8c:43:6b:2e:00:f6:42:c9:a7:8c:19:75:8c:c1:d5:
e0:74:49:56:c6:de:a3:69:2d:21:08:82:a4:04:3d:4a:da:be:
62:b0:02:b6:f1:b1:88:68:64:23:fe:2a:d7:5e:94:07:d0:94:
ee:f7:bc:1d:59:5b:75:40:d7:6e:e4:6a:8c:aa:33:73:cd:5c:
a5:ca:29:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:17:15 2025 by rpki-client