Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
File: XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft (raw, json)
Hash identifier: Rop02gaF5ge3r8qDuJ1pKVr+dkWTnVsuJ1VVQFimxbk=
Subject key identifier: 56:DE:78:3E:5B:E0:18:B8:18:F0:3A:9E:20:B2:CD:19:8A:5F:97:7E
Authority key identifier: 5E:BB:65:36:7D:82:42:B0:15:9A:25:39:CB:5A:02:33:54:2E:F9:63
Certificate issuer: /CN=5ebb65367d8242b0159a2539cb5a0233542ef963
Certificate serial: 0197493188524F3D39D029555E2F04B339F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
Manifest number: 0651
Signing time: Sat 07 Jun 2025 07:01:12 +0000
Manifest this update: Sat 07 Jun 2025 07:01:12 +0000
Manifest next update: Sun 08 Jun 2025 07:01:12 +0000
Files and hashes: 1: XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl (hash: UDvPqJnFEQ+gNNXGDRi7cEuRuwUKRCzK9QziJOK6CjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:88:52:4f:3d:39:d0:29:55:5e:2f:04:b3:39:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebb65367d8242b0159a2539cb5a0233542ef963
Validity
Not Before: Jun 7 07:01:12 2025 GMT
Not After : Jun 8 07:01:12 2025 GMT
Subject: CN=56de783e5be018b818f03a9e20b2cd198a5f977e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:03:35:23:ab:41:99:6d:00:a8:0c:62:c8:53:
65:b4:3c:5d:f9:f7:8a:d3:c8:60:e8:d7:f9:d8:e9:
8c:5f:0c:d9:fd:ab:c1:06:7c:2c:50:bb:ff:ef:27:
39:44:24:7e:36:d9:0c:1b:4b:9f:ba:4e:0d:c2:d7:
8b:ad:1a:5f:45:70:d1:e0:b9:6c:59:6f:91:64:7e:
fb:d0:07:ec:8a:72:d1:32:99:82:05:68:81:31:3d:
72:5c:c3:91:08:8b:33:7a:bf:ea:52:b3:3e:9c:f8:
3c:41:74:f4:9d:23:5a:01:c1:75:bc:cc:58:ef:60:
2d:4b:75:1e:46:85:bf:45:92:2b:8b:03:48:37:c2:
93:f1:9a:20:c2:d3:44:b8:ed:bf:1d:48:15:a9:a0:
dd:dc:6d:d5:5c:6f:71:70:f1:2d:68:a6:f8:b5:54:
bf:67:d5:54:c5:b7:83:e9:ec:25:27:c6:9d:aa:62:
ba:97:ea:9c:d8:e3:30:93:a9:8b:0e:c6:a2:71:87:
4a:69:78:37:c2:72:81:78:93:0a:89:d5:49:d5:fb:
d1:40:bc:17:cd:c2:16:82:4c:40:4c:44:fc:4a:0b:
42:24:52:ea:e1:11:df:ad:2f:5a:85:55:f0:9a:1c:
93:51:1f:36:d2:28:3f:0b:3b:14:6d:4d:42:05:d6:
5b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:DE:78:3E:5B:E0:18:B8:18:F0:3A:9E:20:B2:CD:19:8A:5F:97:7E
X509v3 Authority Key Identifier:
keyid:5E:BB:65:36:7D:82:42:B0:15:9A:25:39:CB:5A:02:33:54:2E:F9:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:a0:37:d3:7e:e9:1c:f9:1b:89:6b:76:e3:f0:41:76:ce:10:
4f:99:a5:16:6c:18:46:83:c8:45:a0:b1:e0:d7:1a:78:63:19:
36:39:8d:cb:ac:35:95:a8:d0:bf:86:1e:39:fb:b6:45:21:bd:
39:5b:4c:7b:68:d2:eb:85:e9:f0:aa:f0:cc:b5:67:bf:81:44:
7c:0a:fd:40:00:b8:60:1b:a5:a0:90:22:dc:c7:f8:ab:bd:0b:
ef:55:39:fa:da:ed:85:40:eb:3f:86:39:9a:eb:27:02:8a:d9:
9a:c7:d4:87:e1:e6:79:d3:99:18:d6:20:c0:cc:84:23:0c:d4:
bb:a3:fa:85:da:61:4e:4b:ce:f2:0b:6f:fe:69:44:88:c6:f8:
ca:6e:a5:89:20:00:06:a5:90:c8:10:43:66:13:b3:6b:39:a3:
a8:ea:17:84:1f:6b:fd:7f:9e:a2:d2:25:9f:d1:57:5e:a7:38:
1b:19:4a:32:21:73:33:36:f3:18:cd:60:31:ca:8e:d3:1c:7d:
4f:d7:23:d5:bc:07:75:7f:dd:56:5a:42:2e:79:9c:4d:f3:a6:
a8:80:b1:6f:dc:fa:0c:c7:ef:3c:4a:74:a6:a1:dd:5a:c9:a6:
39:84:5e:9c:66:0b:e6:ad:f1:da:bd:28:5d:22:2f:79:b0:35:
4f:f0:0b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:49:39 2025 by rpki-client