Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json)
Hash identifier: ZY2g/C4wIqbb+qLQfGNWdy2o5OPxnlJ3g1ZTExECGio=
Subject key identifier: 05:9A:BD:16:18:7D:4B:20:32:18:A4:9D:5F:8E:7C:83:52:A2:A8:70
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 0196A31C19FEA40539650EA07FCD9B16FB75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
Manifest number: 0CD6
Signing time: Tue 06 May 2025 01:00:49 +0000
Manifest this update: Tue 06 May 2025 01:00:49 +0000
Manifest next update: Wed 07 May 2025 01:00:49 +0000
Files and hashes: 1: 8rSm2TYmCggVgedhJYf2d5mO9bY.roa (hash: u5F6NWnwd9MOKoxteUtWCw1+tPwzMsMfG5qFtnCO6pk=)
2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: kuhGvAvunagg8xOvaAIFdjc7i9RLAAOw9p+scHzya70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:1c:19:fe:a4:05:39:65:0e:a0:7f:cd:9b:16:fb:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: May 6 01:00:49 2025 GMT
Not After : May 7 01:00:49 2025 GMT
Subject: CN=059abd16187d4b203218a49d5f8e7c8352a2a870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:0b:a6:6a:2e:cd:2e:b7:d4:18:4e:47:8e:
b3:89:a0:15:98:7c:d6:1b:75:65:af:1f:81:92:58:
8e:04:a4:29:35:ae:3e:86:cb:5b:99:8a:9d:85:ec:
00:83:eb:bf:b5:d6:43:cc:08:c2:e4:6c:72:a1:ce:
68:5f:86:6d:2f:c0:69:91:d1:62:97:74:99:76:5e:
d8:4a:0a:9f:02:25:a1:f3:a1:23:77:b2:1f:c1:22:
3f:67:bf:d1:8f:48:a8:c4:28:d6:ad:a8:de:73:44:
e4:6f:21:44:7b:41:4c:03:a4:34:c3:4f:49:3a:62:
5e:a5:47:50:b0:73:fe:50:c8:7f:59:8f:07:2a:b4:
dd:c2:da:f6:4f:08:08:dc:d1:26:8c:a0:66:05:ae:
d7:fe:98:6b:9c:74:ba:df:92:4d:cc:20:59:0f:36:
e2:a5:8c:88:22:eb:fa:83:54:47:c1:dd:bc:00:b1:
9b:86:5b:56:3d:aa:41:50:ae:d3:3e:48:0e:39:19:
16:d2:96:a5:09:ec:d8:71:ec:1b:0d:90:a5:7b:18:
25:3f:34:59:f1:29:d4:06:48:c8:c8:4f:cf:9f:30:
75:94:d6:d5:cb:fe:b0:4a:09:d7:08:ff:cd:a4:d7:
08:ac:1c:66:b2:30:5c:1a:48:10:9b:67:94:b2:e0:
a7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:9A:BD:16:18:7D:4B:20:32:18:A4:9D:5F:8E:7C:83:52:A2:A8:70
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:78:aa:2e:5a:fd:75:ad:27:88:c3:dc:3b:0e:bd:a1:3d:90:
a2:58:b7:a4:f2:7d:00:91:dd:34:da:46:4d:d8:68:9b:2f:9a:
9c:cb:69:56:63:94:a2:2c:c1:4a:34:52:31:60:e4:20:fa:d0:
d8:5c:b2:ca:83:99:15:f8:c9:18:23:88:77:cf:e7:2f:42:aa:
82:86:14:d1:f2:ca:a6:21:0c:9e:c8:ff:77:a0:11:59:e1:da:
ae:92:cd:d5:b1:ca:46:1e:76:b5:fa:ee:d1:f0:4f:2f:96:16:
1c:f0:19:f3:d4:e2:4b:ca:8c:42:97:74:56:47:2d:3d:30:1f:
94:16:ab:4c:b9:4a:4a:35:87:21:1e:56:78:38:40:6d:92:fc:
93:8d:65:1a:c3:73:b6:73:f5:8f:71:23:0e:42:63:58:84:7f:
d5:a7:67:81:97:d2:57:44:fa:29:88:2a:1d:73:d2:0d:99:43:
60:3b:d8:31:cb:c6:b0:fd:77:4d:87:0a:b9:f9:b5:1a:83:4f:
05:7e:6b:1d:34:02:5e:d7:28:0a:87:73:cd:22:77:e6:9c:ad:
1d:76:ff:d3:e3:0b:4f:13:e0:2c:45:3d:ee:93:3b:92:ca:26:
7d:76:d6:12:44:98:d8:cd:dd:33:b1:cd:51:8d:c3:66:80:c1:
65:01:8e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 03:31:46 2025 by rpki-client