Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
File: XKn3Xcos07OTU-AwCzC6W2KXais.mft (raw, json)
Hash identifier: 1pUcB03Tsg2lMNOzwCyyA6NSnk6yDYHVMP3DM11p9YY=
Subject key identifier: 6F:9E:32:4B:B4:42:F4:B5:46:4D:5A:28:03:3D:C1:77:63:35:F4:4C
Authority key identifier: 5C:A9:F7:5D:CA:2C:D3:B3:93:53:E0:30:0B:30:BA:5B:62:97:6A:2B
Certificate issuer: /CN=5ca9f75dca2cd3b39353e0300b30ba5b62976a2b
Certificate serial: 0196B4EAEC6ED9071C33D78E1E010E99F728
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
Manifest number: 08B9
Signing time: Fri 09 May 2025 12:00:16 +0000
Manifest this update: Fri 09 May 2025 12:00:16 +0000
Manifest next update: Sat 10 May 2025 12:00:16 +0000
Files and hashes: 1: XKn3Xcos07OTU-AwCzC6W2KXais.crl (hash: nckuPHpjHmsX/Gz3OrRvrBD79UHWvfoyJF7BcgyGPyI=)
2: b9Hu80_829heeLvFjfJdJz5nCTc.roa (hash: j+SJeADqUhFu2qLu6938DWITw4JSWTcM1pVfvfeWeP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:ea:ec:6e:d9:07:1c:33:d7:8e:1e:01:0e:99:f7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ca9f75dca2cd3b39353e0300b30ba5b62976a2b
Validity
Not Before: May 9 12:00:16 2025 GMT
Not After : May 10 12:00:16 2025 GMT
Subject: CN=6f9e324bb442f4b5464d5a28033dc1776335f44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8e:b7:99:39:4c:bb:34:39:e5:64:96:3c:d9:
3b:bc:03:17:5c:5e:74:3a:61:17:e0:6c:29:86:2d:
38:07:87:90:1d:6a:88:9d:88:79:cb:8a:7a:49:0c:
7e:33:5a:f4:3e:1d:9b:63:0e:7f:98:6d:4d:40:2a:
0a:e0:2a:48:16:b6:99:2d:b3:f2:6c:08:e2:19:69:
27:31:d6:be:6e:ea:91:ea:82:22:0c:04:a3:27:08:
57:dd:80:67:75:bb:a3:31:bf:35:c0:ce:31:5c:71:
e7:f3:2b:dc:ca:cb:e0:4b:41:44:98:6d:3e:51:34:
a5:e6:f4:75:c1:93:f9:cc:81:d4:42:a5:f9:89:8d:
b2:a6:65:a8:8f:d7:b1:32:cb:10:e2:e5:da:45:c7:
19:64:fb:87:6d:aa:15:2c:c7:c0:64:ed:76:65:8c:
ca:b2:d1:9f:4e:58:bc:22:81:9b:06:fe:a1:99:18:
23:6c:8b:a6:0f:9d:44:c9:02:2d:ef:6c:f3:50:6a:
b6:b4:53:58:d4:18:41:22:8b:a0:2c:1b:3c:87:aa:
f7:57:bd:bc:03:e4:e5:e1:d5:36:ae:47:a5:74:c6:
0a:6e:42:09:0d:f5:d8:ac:6e:d0:fa:16:84:ef:3e:
e2:93:f6:6b:19:ca:3a:94:f3:48:75:b7:b0:46:51:
cd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:9E:32:4B:B4:42:F4:B5:46:4D:5A:28:03:3D:C1:77:63:35:F4:4C
X509v3 Authority Key Identifier:
keyid:5C:A9:F7:5D:CA:2C:D3:B3:93:53:E0:30:0B:30:BA:5B:62:97:6A:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:7b:4e:76:fc:7a:b8:c2:b0:b4:b6:41:a2:e3:95:21:7e:ec:
53:f2:69:84:77:07:ce:ea:d3:8f:b5:de:e9:cd:bf:43:9c:ec:
01:c3:9a:44:57:31:8c:d2:82:5b:94:bc:10:62:ef:6a:38:68:
dd:2f:bb:9d:c6:b6:70:e6:b4:49:b9:62:b8:cc:a8:38:4a:b7:
63:04:37:3d:28:15:32:fd:5e:13:c7:c0:fa:cb:44:88:bb:0b:
60:2a:62:4b:a2:04:ec:5c:9c:07:de:79:9f:4e:77:5c:61:7c:
f7:9f:ae:14:63:3a:36:5c:ee:1a:8a:43:d0:16:32:95:91:9f:
3f:2f:a1:8e:42:85:d1:51:d7:3a:73:91:f3:8b:21:29:9d:6a:
db:9a:ac:f5:05:15:de:cd:17:ca:3f:4e:ce:8d:f4:ba:f9:7f:
72:5b:8e:8a:c0:c8:ba:b3:4c:6a:3d:a8:34:7a:b5:48:c5:b0:
af:75:55:a3:2c:c0:d4:da:8d:e1:95:4f:27:9b:fc:64:a4:f3:
99:e9:ef:6a:0a:7f:dc:c7:0a:f5:6b:b5:68:aa:72:8e:82:0b:
08:30:25:75:c3:62:0c:fd:b0:98:ed:de:32:a1:8f:d6:7a:ef:
43:a8:5f:7e:47:1a:98:2a:53:27:11:60:12:b1:38:85:41:7b:
3b:5e:5a:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 13:54:17 2025 by rpki-client