Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
File: XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft (raw, json)
Hash identifier: MdIUcMkqKhH5O7ushEhNTj0RJtSRIPFcgFeg9EZZnBI=
Subject key identifier: 0B:C4:11:C1:8F:92:7F:59:4E:21:A7:94:2B:04:3C:BF:09:4A:0D:CB
Authority key identifier: 5E:55:AF:DE:34:21:1B:CE:E6:A7:FD:99:24:88:A2:49:27:B4:69:47
Certificate issuer: /CN=5e55afde34211bcee6a7fd992488a24927b46947
Certificate serial: 0197B9A1B8E8F711C6F418B568710FDF2FB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
Manifest number: 0200
Signing time: Sun 29 Jun 2025 03:01:12 +0000
Manifest this update: Sun 29 Jun 2025 03:01:12 +0000
Manifest next update: Mon 30 Jun 2025 03:01:12 +0000
Files and hashes: 1: XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl (hash: gHF4duFlMYR1eCOOFHz1YV8n1MufCRPh0GORE3+FOJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:b8:e8:f7:11:c6:f4:18:b5:68:71:0f:df:2f:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e55afde34211bcee6a7fd992488a24927b46947
Validity
Not Before: Jun 29 03:01:12 2025 GMT
Not After : Jun 30 03:01:12 2025 GMT
Subject: CN=0bc411c18f927f594e21a7942b043cbf094a0dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:15:02:d4:5f:f6:67:eb:f2:9f:0e:32:99:31:
24:3a:61:d1:f4:a8:5f:d5:33:c7:36:f3:dd:c0:85:
1a:91:dd:d6:fe:cd:74:60:c2:85:4d:d3:ba:d0:14:
2a:df:76:5e:05:97:16:ef:73:77:95:89:c1:cc:5e:
72:68:e5:de:a4:cc:de:f9:71:fb:57:2f:64:fd:7d:
52:59:bd:af:be:28:bf:98:72:bd:22:87:f3:93:b2:
12:30:88:ee:82:a0:7c:c0:a5:ba:e2:01:75:6d:56:
db:0f:d9:52:85:3b:83:c7:3a:aa:48:6d:0a:ee:06:
af:a2:bf:9b:f6:3c:df:82:31:48:22:af:3d:cc:c2:
b7:ce:a6:06:5f:2c:41:bb:d5:28:f6:52:51:14:e4:
4c:5a:d4:98:b5:72:f0:e6:95:2d:ff:9a:0b:11:4c:
d1:ab:73:d5:95:76:52:3b:63:e1:fb:5c:ad:c8:fb:
4d:d3:41:59:a2:99:ab:46:4c:f5:e3:8a:aa:6e:01:
53:e6:cf:0a:49:67:64:9e:0f:e2:d1:66:fd:51:6d:
a8:aa:88:a9:d2:6c:f2:9e:ed:8d:a9:5e:6f:72:29:
6c:90:4b:f9:ac:c7:c0:7d:4f:6f:91:80:c1:96:42:
a0:a8:0c:f4:8f:2d:ea:89:d6:84:cb:a4:d8:0d:21:
bb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C4:11:C1:8F:92:7F:59:4E:21:A7:94:2B:04:3C:BF:09:4A:0D:CB
X509v3 Authority Key Identifier:
keyid:5E:55:AF:DE:34:21:1B:CE:E6:A7:FD:99:24:88:A2:49:27:B4:69:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:15:86:a3:b2:29:73:37:60:30:b3:77:ad:cd:60:15:6a:b0:
4b:25:02:bb:b7:0b:a2:dd:bf:db:3c:4e:9f:a0:7d:ef:38:c5:
59:5e:61:82:6b:8d:02:fd:ca:ff:56:b8:f5:d4:05:cc:2a:63:
fc:ff:be:03:25:22:20:79:79:8d:11:59:32:23:a1:d3:30:9e:
f6:ae:ab:bf:10:88:03:1f:91:71:15:73:68:c9:14:97:f6:36:
11:ae:f4:1b:67:5a:2b:2b:87:3a:be:8f:33:66:29:ad:5f:4b:
20:20:6f:3e:11:9d:83:db:d6:36:dc:37:5d:8c:3d:cc:be:2b:
68:b5:ef:c4:0a:a6:e0:b2:f4:55:e0:70:a7:a6:7d:20:c6:4d:
a1:af:dc:ff:aa:be:6b:d5:aa:09:35:bb:fb:01:94:5a:03:29:
16:8b:6c:c4:c8:e4:19:ef:81:c1:58:fb:19:56:fb:a9:3f:cf:
b2:07:a7:a2:d3:90:6f:17:05:ef:6f:ee:ca:e1:23:97:c1:87:
3f:d5:1a:c8:76:cc:ba:4c:b1:62:af:3b:f3:24:b5:c7:17:e9:
9b:4d:9c:99:99:0b:2d:21:40:5f:9d:41:90:c3:a2:b8:48:f0:
1d:bc:d0:34:f3:98:99:64:46:9d:25:14:d6:1d:ad:a4:42:7f:
6c:96:e4:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:18:58 2025 by rpki-client