Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
File: XbomMhShFwVRmA7pFxn42Ixia14.mft (raw, json)
Hash identifier: P1XrsEWuh+NA5YafCyHv/9rhuZFvDJP6Q8ZALv3UXS4=
Subject key identifier: AD:89:81:2A:D9:67:AA:11:83:02:D4:CF:0E:F8:64:E0:D4:D5:61:99
Authority key identifier: 5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
Certificate issuer: /CN=5dba263214a1170551980ee91719f8d88c626b5e
Certificate serial: 0197BB596C904EF503E7B921D3CD52463B5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
Manifest number: 1122
Signing time: Sun 29 Jun 2025 11:01:29 +0000
Manifest this update: Sun 29 Jun 2025 11:01:29 +0000
Manifest next update: Mon 30 Jun 2025 11:01:29 +0000
Files and hashes: 1: XbomMhShFwVRmA7pFxn42Ixia14.crl (hash: ojmBg4EtCs5C5nc5M7Y2jtue0KTpSehDBbn47YhvWOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:59:6c:90:4e:f5:03:e7:b9:21:d3:cd:52:46:3b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dba263214a1170551980ee91719f8d88c626b5e
Validity
Not Before: Jun 29 11:01:29 2025 GMT
Not After : Jun 30 11:01:29 2025 GMT
Subject: CN=ad89812ad967aa118302d4cf0ef864e0d4d56199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:01:4f:26:35:17:4f:a0:d7:bb:ed:18:6c:03:
80:a3:b9:ba:b5:3c:16:0d:f7:f9:16:46:d1:32:b0:
5a:77:77:a9:ca:82:e7:37:46:49:e0:32:df:d9:f7:
58:b0:6c:de:3b:e7:fd:fd:3c:c2:91:73:88:01:5c:
36:c7:49:fc:45:32:7b:76:c6:7b:a1:70:f9:27:2b:
8a:d9:82:85:b1:fa:bd:7c:13:f5:37:a3:05:c0:2d:
98:b1:fc:6a:50:44:da:36:85:96:38:a5:8a:80:1a:
aa:46:41:dc:8c:0d:13:b3:6c:a3:e4:83:91:3a:6d:
2d:3c:23:70:2c:f6:0e:95:53:dc:5e:6b:31:e6:fc:
1b:0f:bf:5e:35:ed:66:06:be:49:ce:f2:a1:a8:b8:
89:b1:eb:9e:0a:5c:bc:67:d8:25:c9:7b:a1:37:69:
90:e3:24:30:9a:1d:7b:7f:a9:38:5b:88:91:4d:48:
7a:cd:58:6b:e3:45:7c:ef:94:0f:7a:d7:b9:08:92:
98:a7:2f:ba:71:7f:0b:6a:0c:22:6b:2f:77:58:32:
ba:1f:6c:c7:6e:17:65:9c:78:bc:4f:77:31:69:59:
6a:53:15:fe:11:31:66:a2:91:69:5d:56:48:f5:4e:
bf:c4:42:0a:8a:6a:75:dd:b6:49:13:8b:73:a7:30:
37:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:89:81:2A:D9:67:AA:11:83:02:D4:CF:0E:F8:64:E0:D4:D5:61:99
X509v3 Authority Key Identifier:
keyid:5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:dc:7a:68:56:2c:df:76:69:f6:16:96:8d:58:d4:c5:d7:e7:
a4:45:97:4d:99:e4:8b:6a:24:5d:30:23:dc:66:f1:0d:04:fa:
1e:c3:be:d5:e2:3e:98:c8:ef:33:10:b6:12:93:9b:cf:a8:72:
aa:ec:ce:6c:70:11:7c:05:02:70:91:bd:78:0a:98:85:7d:53:
17:98:aa:63:f0:56:80:7e:03:e9:fb:53:35:75:bd:f7:dd:c8:
69:fc:9c:10:a6:fb:b0:99:87:19:75:9a:08:87:53:37:0c:0c:
79:e5:d0:b6:3f:d9:85:2e:76:a9:3d:69:78:4e:39:00:cf:ea:
fb:2c:d1:4b:c2:8c:0d:95:c8:3b:2e:a5:57:da:1d:24:37:18:
a0:68:c0:ca:1e:ce:c4:27:96:7d:ed:1b:19:83:ae:60:c4:a6:
47:34:17:7e:46:c8:7e:78:c4:b3:68:1a:a0:95:ae:a8:f6:75:
0b:0b:43:24:d5:f4:62:44:e0:e0:37:d9:47:25:52:d4:71:89:
58:a9:19:4d:68:9d:ef:34:fa:cd:18:d0:a7:15:25:5f:dc:fb:
fe:13:d6:28:8e:52:cb:a1:f7:3b:f7:b4:38:3d:27:de:4c:da:
f3:fc:f6:52:08:f9:8c:e4:99:ee:32:fb:9d:58:b1:fb:c8:23:
bc:67:fd:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe7WWyQTvUD57kh081SRjtaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYmEyNjMyMTRhMTE3MDU1MTk4MGVlOTE3MTlmOGQ4OGM2
MjZiNWUwHhcNMjUwNjI5MTEwMTI5WhcNMjUwNjMwMTEwMTI5WjAzMTEwLwYDVQQD
EyhhZDg5ODEyYWQ5NjdhYTExODMwMmQ0Y2YwZWY4NjRlMGQ0ZDU2MTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwFPJjUXT6DXu+0YbAOAo7m6tTwW
Dff5FkbRMrBad3epyoLnN0ZJ4DLf2fdYsGzeO+f9/TzCkXOIAVw2x0n8RTJ7dsZ7
oXD5JyuK2YKFsfq9fBP1N6MFwC2YsfxqUETaNoWWOKWKgBqqRkHcjA0Ts2yj5IOR
Om0tPCNwLPYOlVPcXmsx5vwbD79eNe1mBr5JzvKhqLiJseueCly8Z9glyXuhN2mQ
4yQwmh17f6k4W4iRTUh6zVhr40V875QPete5CJKYpy+6cX8Lagwiay93WDK6H2zH
bhdlnHi8T3cxaVlqUxX+ETFmopFpXVZI9U6/xEIKimp13bZJE4tzpzA30QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK2JgSrZZ6oRgwLUzw74ZODU1WGZMB8GA1UdIwQY
MBaAFF26JjIUoRcFUZgO6RcZ+NiMYmteMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi80ZTQxNGYtMGE3Ni00ZmU5LThiN2It
MTM1YTkzOTgyOTMxLzEvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi80ZTQxNGYtMGE3Ni00ZmU5LThiN2ItMTM1YTkzOTgyOTMx
LzEvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXdx6aFYs
33Zp9haWjVjUxdfnpEWXTZnki2okXTAj3GbxDQT6HsO+1eI+mMjvMxC2EpObz6hy
quzObHARfAUCcJG9eAqYhX1TF5iqY/BWgH4D6ftTNXW9993IafycEKb7sJmHGXWa
CIdTNwwMeeXQtj/ZhS52qT1peE45AM/q+yzRS8KMDZXIOy6lV9odJDcYoGjAyh7O
xCeWfe0bGYOuYMSmRzQXfkbIfnjEs2gaoJWuqPZ1CwtDJNX0YkTg4DfZRyVS1HGJ
WKkZTWid7zT6zRjQpxUlX9z7/hPWKI5Sy6H3O/e0OD0n3kza8/z2Ugj5jOSZ7jL7
nVix+8gjvGf9Ig==
-----END CERTIFICATE-----
Generated at Sun Jun 29 14:42:55 2025 by rpki-client