Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft
File: xorAnHI17TE4Ph_ThzkY3RgzNCo.mft (raw, json)
Hash identifier: wj7fZu4dJC9zNZr3PLTri49gwWXpJHK2I1MRes1O7fk=
Subject key identifier: 72:F8:D2:A0:E3:2D:16:7C:4A:B8:D7:BA:79:A4:E3:42:B5:CC:F2:42
Authority key identifier: C6:8A:C0:9C:72:35:ED:31:38:3E:1F:D3:87:39:18:DD:18:33:34:2A
Certificate issuer: /CN=c68ac09c7235ed31383e1fd3873918dd1833342a
Certificate serial: 0197BB8FDA8B3EFB686D735801B884902101
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xorAnHI17TE4Ph_ThzkY3RgzNCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft
Manifest number: 0587
Signing time: Sun 29 Jun 2025 12:00:56 +0000
Manifest this update: Sun 29 Jun 2025 12:00:56 +0000
Manifest next update: Mon 30 Jun 2025 12:00:56 +0000
Files and hashes: 1: xorAnHI17TE4Ph_ThzkY3RgzNCo.crl (hash: +7RskDRCh5/wotXYVWiBG+5acLZ+IUNJRDvn31JpIJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft
rsync://rpki.ripe.net/repository/DEFAULT/xorAnHI17TE4Ph_ThzkY3RgzNCo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:8f:da:8b:3e:fb:68:6d:73:58:01:b8:84:90:21:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68ac09c7235ed31383e1fd3873918dd1833342a
Validity
Not Before: Jun 29 12:00:56 2025 GMT
Not After : Jun 30 12:00:56 2025 GMT
Subject: CN=72f8d2a0e32d167c4ab8d7ba79a4e342b5ccf242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b2:24:39:3b:88:20:d5:84:5d:a8:41:e0:5e:
c7:a1:f9:7a:d2:0e:b1:32:e9:27:ad:ab:e7:b5:67:
ed:f3:39:87:11:01:e2:1d:37:10:26:6d:16:3c:8d:
65:03:ff:c4:18:0f:8b:b3:73:6d:1b:fd:f5:3e:ea:
8a:59:b2:3e:8f:90:14:0e:75:ba:15:45:02:d8:e8:
a8:f9:b3:b2:df:6f:29:83:74:b9:75:3e:d2:d1:80:
0a:8e:ff:8b:1f:00:7d:e5:77:bb:70:1c:cb:7d:03:
7b:3d:cb:7a:ea:cb:d9:99:a9:f3:00:eb:8c:20:f0:
e2:0d:8f:07:e7:15:08:11:e7:ff:52:e0:3e:d3:25:
ab:c0:2a:49:8a:df:af:b8:0c:fd:af:82:ec:de:8c:
49:7e:3a:d4:35:54:2d:2a:8c:23:10:fa:b8:d7:8a:
be:64:db:c7:9b:6b:9b:55:9c:53:62:30:0a:64:a2:
f4:f2:05:1f:19:ec:c4:28:6f:78:3a:f9:04:62:a0:
bf:8b:ad:69:de:f6:91:6c:6a:8d:a3:5d:44:b3:58:
a8:50:fd:bd:9b:e1:4f:c2:e5:88:2e:1c:f6:91:97:
ea:b9:41:fb:26:b5:9e:bd:fa:c0:03:66:dc:99:3f:
25:25:90:a3:b2:1b:40:c6:4f:c7:63:c1:67:d7:49:
d6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:F8:D2:A0:E3:2D:16:7C:4A:B8:D7:BA:79:A4:E3:42:B5:CC:F2:42
X509v3 Authority Key Identifier:
keyid:C6:8A:C0:9C:72:35:ED:31:38:3E:1F:D3:87:39:18:DD:18:33:34:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xorAnHI17TE4Ph_ThzkY3RgzNCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:fa:e5:ec:12:4d:21:e3:cc:0d:78:7d:68:15:20:4c:c3:7b:
98:9e:17:3a:fb:52:e9:44:4e:0e:ed:bd:d3:73:ce:40:de:01:
e1:b3:0e:0e:b6:7e:c8:d1:06:47:6f:fe:b7:fa:7e:6b:63:e1:
a4:dd:f2:c7:08:43:b1:12:a1:44:bf:be:23:5f:29:b3:64:ea:
f0:8a:2f:43:f6:26:19:3a:14:a4:4d:b4:81:8d:67:17:94:cc:
b1:4b:70:d7:ed:6e:39:2e:ea:90:9d:f8:4e:5e:2c:5a:01:79:
9a:b9:4a:93:f9:43:8a:4c:7e:6b:67:d3:76:c9:a4:00:0d:cf:
1e:2a:39:49:57:b5:7e:12:ae:05:36:4c:3c:07:0f:c5:c9:bc:
62:88:23:cc:26:64:35:0b:8a:57:ad:71:45:2c:7a:f4:5f:94:
88:78:f2:80:f6:52:25:64:bd:05:00:c3:05:39:b3:ba:7c:9e:
39:92:d7:60:88:00:d7:c8:bb:1a:e9:57:35:b3:ff:af:a6:9d:
8d:0a:f9:19:f2:7d:56:34:f7:23:59:3e:95:1f:98:71:36:dc:
0d:fb:4f:d2:e1:88:38:ce:0d:9f:c1:de:28:57:67:06:70:04:
49:a1:5e:eb:48:27:85:d8:9b:12:d0:56:68:06:28:7d:a5:06:
5f:d3:f6:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:16:51 2025 by rpki-client