Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
File: Xojs8KFK0YVzWdLOW9BCuflsfN0.mft (raw, json)
Hash identifier: BEvsmlSRHcEB39hzgn3osVuSYk0B3bTvEg6J/CEbjXo=
Subject key identifier: 3E:54:B0:94:E1:4E:50:F5:9A:CC:D7:E8:9A:30:B7:E5:3D:F5:9C:58
Authority key identifier: 5E:88:EC:F0:A1:4A:D1:85:73:59:D2:CE:5B:D0:42:B9:F9:6C:7C:DD
Certificate issuer: /CN=5e88ecf0a14ad1857359d2ce5bd042b9f96c7cdd
Certificate serial: 0196D3D12FECC7507BD13D73066C02EBCBD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
Manifest number: 06BE
Signing time: Thu 15 May 2025 12:00:23 +0000
Manifest this update: Thu 15 May 2025 12:00:23 +0000
Manifest next update: Fri 16 May 2025 12:00:23 +0000
Files and hashes: 1: Xojs8KFK0YVzWdLOW9BCuflsfN0.crl (hash: eCeaWFSEnroqXtW631ITbnOM8scciYUPb4ZJRjB4YtY=)
2: oNaxj3U73YsxY2SMYd62wSvMB4E.roa (hash: +NOpZAlgmwl+h9fy4R1kVxAQ1d7pxMvgMiKewHh1e4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 12:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d3:d1:2f:ec:c7:50:7b:d1:3d:73:06:6c:02:eb:cb:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e88ecf0a14ad1857359d2ce5bd042b9f96c7cdd
Validity
Not Before: May 15 12:00:23 2025 GMT
Not After : May 16 12:00:23 2025 GMT
Subject: CN=3e54b094e14e50f59accd7e89a30b7e53df59c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1a:f3:4d:23:6e:88:b6:96:b2:0d:75:ef:e0:
fa:b3:d8:92:2c:68:33:90:6b:0f:a3:6a:9b:a4:68:
a5:d7:90:0d:71:82:77:5e:4c:2d:57:91:1b:80:9b:
a7:f1:0c:c1:ef:54:5d:59:c9:fd:8b:35:a1:17:05:
a9:86:40:7f:e0:e4:d0:9d:aa:ac:32:d4:07:38:68:
4a:32:a6:6e:1f:9e:54:cb:c8:f2:e2:1e:a4:b6:a2:
cc:93:2f:e4:96:bb:49:15:8f:29:74:ed:a2:8a:c6:
22:79:64:4d:8a:b7:f7:5d:33:01:c6:e2:a7:aa:64:
19:f1:0d:e2:11:be:89:9a:6d:46:c3:40:34:ab:60:
22:06:ff:6a:40:7c:d9:f1:15:93:2b:33:2f:10:25:
49:27:9e:11:70:05:f4:8e:b6:9f:dc:82:ae:0a:49:
77:28:b8:05:9f:54:d1:92:1d:d4:ea:78:df:ef:84:
ec:49:5d:0d:8e:d0:b4:da:35:d6:95:d0:6a:58:86:
d5:f4:9a:02:1a:4d:d9:ed:f4:df:2f:46:19:8b:81:
f3:d0:4c:25:b0:60:2e:2f:46:23:ba:da:88:f4:54:
ca:c8:4d:f9:29:5f:81:16:18:78:2a:67:db:ec:22:
b7:fc:85:c9:ad:53:b0:eb:7e:22:48:08:ff:6b:a1:
a3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:54:B0:94:E1:4E:50:F5:9A:CC:D7:E8:9A:30:B7:E5:3D:F5:9C:58
X509v3 Authority Key Identifier:
keyid:5E:88:EC:F0:A1:4A:D1:85:73:59:D2:CE:5B:D0:42:B9:F9:6C:7C:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:76:ee:5b:58:c2:94:17:a6:8a:04:19:06:ee:dd:2d:d6:a9:
c3:16:3f:94:00:0f:52:93:ff:83:57:72:d2:06:af:3e:bb:54:
ff:1d:0d:f6:92:e8:91:4a:b2:a6:53:7b:8a:87:e1:d1:bb:a2:
e5:b2:9e:cc:6f:4a:e8:6d:85:f1:48:81:30:33:7b:2b:e7:d4:
d0:d4:55:bb:ce:0b:40:bc:30:30:aa:4f:64:38:c1:89:99:9e:
9d:81:f2:60:52:9e:71:a0:3b:fe:ab:de:1a:e8:cf:cc:04:dd:
4d:20:39:e1:76:6f:03:91:9b:fc:cc:9f:19:88:e9:ba:6b:69:
e0:db:80:78:85:cd:dd:65:83:16:7f:e6:77:78:83:98:1b:9b:
51:4c:a9:52:59:35:a0:08:84:51:d9:de:ab:75:1b:6c:81:d7:
f1:79:c6:05:c7:3f:19:56:46:64:88:16:ff:5c:ec:c1:67:f1:
21:97:3f:b5:de:de:cd:a7:2c:80:75:bc:df:b2:1d:8a:b4:af:
b2:b7:6c:09:5d:3f:38:00:db:53:47:5f:b3:6f:92:0e:1c:a6:
60:3e:b9:ca:e6:98:7e:69:ef:f1:2b:e2:ba:1a:78:fc:d0:26:
ab:ef:3e:67:7f:ff:ff:75:aa:1f:2e:46:7b:e3:10:1d:28:a0:
38:e0:85:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 17:08:16 2025 by rpki-client