Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
File: XbomMhShFwVRmA7pFxn42Ixia14.mft (raw, json)
Hash identifier: S/fr5ZKYyB9N4PRPc7i5zG1F2nICba7DcaZoS+7fA6Y=
Subject key identifier: 07:A6:B3:5F:25:5D:03:EC:CF:B6:A2:BC:49:F0:30:B5:CE:3F:1A:E8
Authority key identifier: 5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
Certificate issuer: /CN=5dba263214a1170551980ee91719f8d88c626b5e
Certificate serial: 0198D73B30A3B672AFF011A363BA498E001D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
Manifest number: 11B5
Signing time: Sat 23 Aug 2025 14:00:37 +0000
Manifest this update: Sat 23 Aug 2025 14:00:37 +0000
Manifest next update: Sun 24 Aug 2025 14:00:37 +0000
Files and hashes: 1: XbomMhShFwVRmA7pFxn42Ixia14.crl (hash: YWKY5hN7mu174yTg+BrYOedCN1dTjwoEUIvMBz4C8H0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:30:a3:b6:72:af:f0:11:a3:63:ba:49:8e:00:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dba263214a1170551980ee91719f8d88c626b5e
Validity
Not Before: Aug 23 14:00:37 2025 GMT
Not After : Aug 24 14:00:37 2025 GMT
Subject: CN=07a6b35f255d03eccfb6a2bc49f030b5ce3f1ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:dd:a6:0c:76:a4:90:3e:7c:30:a4:92:29:d8:
8a:c3:39:03:81:21:19:d2:34:f1:93:99:f5:f1:f4:
8e:c5:1f:af:11:f6:f7:fa:a0:73:5f:76:98:e5:16:
82:68:6f:e5:f6:7f:25:c1:5f:2c:99:97:3f:d1:a2:
ac:e6:1f:58:88:a4:7a:5d:f2:d6:0f:14:7f:13:15:
f0:a6:92:6a:71:ce:9a:ee:f6:d2:eb:dc:be:77:2d:
66:b1:7f:9f:91:da:dd:db:e2:54:aa:33:5b:22:49:
57:f8:5d:67:26:b9:bd:de:83:be:25:bc:c7:2a:1c:
35:86:1a:69:95:07:b9:08:7a:b1:e2:1e:21:36:ed:
e5:34:17:a3:fc:1e:ab:24:f8:1f:b6:3f:4b:db:37:
6f:b1:90:85:a9:2d:8e:e7:af:2e:44:9f:ef:15:d9:
46:61:b3:e5:59:dc:0b:89:27:0e:e5:2d:60:d4:c5:
f7:ff:4d:85:73:88:33:c6:48:34:0d:cc:55:b9:d2:
11:cb:08:b5:4c:a9:87:9c:1f:96:df:f4:f3:b3:99:
d6:c1:5a:5e:4e:36:79:04:c8:47:43:53:25:ec:e4:
ab:47:79:4d:87:93:0a:22:28:c1:98:0a:d7:dd:56:
7b:48:16:9a:10:d3:16:26:cc:3a:88:30:86:ef:44:
dd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A6:B3:5F:25:5D:03:EC:CF:B6:A2:BC:49:F0:30:B5:CE:3F:1A:E8
X509v3 Authority Key Identifier:
keyid:5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:2e:7c:e9:b2:f5:92:33:90:db:9b:e2:39:6d:23:56:42:04:
0f:47:5c:79:9c:70:ea:1f:cb:ab:71:50:19:a0:42:49:20:c6:
2c:d6:09:08:08:82:12:b6:d3:06:07:79:6a:e2:66:87:5f:28:
82:8d:87:aa:2f:d7:1c:84:16:74:46:7b:19:31:e8:1f:e7:fd:
c8:ab:a7:cc:a4:d8:40:4f:b3:0a:5e:3d:55:1c:2a:6b:e5:a2:
cd:7b:35:e8:7b:f8:a4:60:4d:d5:56:1c:cb:dd:33:25:b5:1b:
df:55:01:c4:75:39:9a:db:50:e2:0d:41:4d:ba:df:15:67:f8:
38:ab:06:dc:cf:5c:16:20:83:5f:8a:ce:99:24:d4:37:84:69:
10:1a:0b:a5:41:b2:f7:c7:4f:12:f7:92:c1:59:48:73:18:92:
ff:2e:43:c0:40:02:fd:57:da:b9:4c:97:68:7e:69:93:63:66:
c6:c5:50:c7:e0:2f:c9:06:7d:19:ac:bc:d0:84:92:ea:bf:3f:
e4:dd:a0:30:e5:5a:a0:ec:07:d4:fe:61:35:cb:aa:fa:89:2f:
dc:4d:4e:68:b0:62:75:81:b9:ba:82:f6:3e:b9:1e:eb:19:61:
f9:9b:38:3b:27:e9:9e:13:6b:c8:2e:f1:4f:b0:c5:a3:d5:d2:
97:6f:5b:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:09:13 2025 by rpki-client