Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
File: XICE2xnxE9gbZEg5P60cEyxYT80.mft (raw, json)
Hash identifier: Hyql/HmBsaxSOQgP4M72Qp8UUSbNxYNJFFfgsJDq5rE=
Subject key identifier: 23:4E:2F:9F:84:36:3F:9E:2F:22:4B:F4:75:24:D3:10:BE:24:17:02
Authority key identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
Certificate issuer: /CN=5c8084db19f113d81b6448393fad1c132c584fcd
Certificate serial: 01969F7694EB258FC5EFCCB5C641C644EF33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
Manifest number: 0E27
Signing time: Mon 05 May 2025 08:01:10 +0000
Manifest this update: Mon 05 May 2025 08:01:10 +0000
Manifest next update: Tue 06 May 2025 08:01:10 +0000
Files and hashes: 1: RopsaNkgpHpRL2oKJRAlnWazjYk.roa (hash: hePdDKhYq7jZJBW0X9xyUlZ0MuRDMypI160xH9eb0s0=)
2: XICE2xnxE9gbZEg5P60cEyxYT80.crl (hash: R+snURgEgPSym3hKWdoMAZCTe5TqEkGAFfqJH64znUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 08:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:76:94:eb:25:8f:c5:ef:cc:b5:c6:41:c6:44:ef:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c8084db19f113d81b6448393fad1c132c584fcd
Validity
Not Before: May 5 08:01:10 2025 GMT
Not After : May 6 08:01:10 2025 GMT
Subject: CN=234e2f9f84363f9e2f224bf47524d310be241702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:7a:1f:da:40:3e:7d:23:68:c1:a4:ef:70:3f:
6e:c5:d0:11:01:30:4f:2f:8c:e9:16:60:dd:bc:fd:
2b:9d:2f:92:21:e6:e6:c9:7b:72:34:30:2c:95:09:
a8:eb:63:15:43:c4:d2:0e:75:0e:6a:0e:aa:67:10:
cb:3e:1c:35:14:af:ae:6d:d0:b5:bf:b2:7c:a5:0a:
f5:07:97:2f:a1:d7:5a:4a:28:4d:d0:17:bf:96:4a:
c9:3d:17:a7:f8:95:6b:d7:57:bb:84:71:d3:d4:e5:
9e:d3:02:a9:a7:91:80:39:df:a0:9b:97:e3:fb:24:
1f:71:e1:30:a9:11:b3:ed:e0:cb:11:d3:3c:79:6a:
4f:e8:5f:31:7d:ab:50:c7:83:92:76:86:5a:7a:e0:
94:af:b9:43:c1:0c:11:2d:97:21:6e:6e:5f:92:74:
d8:47:e5:7f:2c:9d:3f:58:be:e9:40:ad:0e:33:1d:
e4:69:13:2d:a1:59:0e:f1:83:c3:85:67:47:63:29:
55:30:c8:f2:8a:20:fc:39:52:cc:2d:3f:99:3f:3f:
99:a4:de:b0:43:33:16:3b:60:de:4f:70:5c:d9:07:
69:f7:18:58:c2:76:2a:59:e7:77:54:f8:f3:63:08:
c4:5c:08:e5:46:04:b4:c4:08:d7:9f:2f:80:87:2c:
37:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4E:2F:9F:84:36:3F:9E:2F:22:4B:F4:75:24:D3:10:BE:24:17:02
X509v3 Authority Key Identifier:
keyid:5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:40:aa:c8:68:30:17:60:ca:1a:68:db:c0:41:5d:8a:75:d6:
17:10:dd:cb:bd:59:f9:cc:ae:d2:54:79:f2:78:b0:15:fd:60:
f5:8c:fa:d8:44:ba:b2:85:6a:70:08:21:5b:60:c4:83:8f:d1:
35:06:76:75:ad:bf:99:dd:ed:a1:b6:b3:85:30:69:bf:b9:4d:
b5:c3:48:02:65:4f:f1:82:74:df:3f:d4:11:28:a3:50:3c:d2:
98:a6:0e:25:eb:63:dc:c6:88:da:f0:d1:50:4c:14:b9:a5:d3:
1f:14:a5:42:a8:48:7a:37:87:5b:3c:a2:24:94:b3:e4:a7:3a:
5f:4b:f0:4e:77:fa:c8:17:ef:13:a5:c6:1a:fb:15:ca:01:ff:
4f:e6:c3:9e:bc:ec:7c:6f:54:b2:36:f2:89:7a:9d:1d:db:b9:
53:20:ec:aa:bf:d4:aa:ea:78:96:93:85:64:da:ab:0b:41:0c:
37:cf:3e:65:84:5a:eb:fa:20:34:7d:24:c4:c4:42:46:c4:52:
02:35:70:9a:2a:d8:32:88:6d:c7:58:e6:bd:94:2a:bc:61:15:
81:33:13:b5:75:30:b3:7c:0a:e3:53:51:3a:50:65:76:2d:f6:
65:94:52:01:76:b2:bf:06:a9:ca:de:34:24:22:77:5b:f4:4d:
f1:f6:55:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 15:36:22 2025 by rpki-client