Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json)
Hash identifier: A6RVGSeZeG17/1KUYPqHYnAoCk/aAD0O5Y/zAGTMRCs=
Subject key identifier: 9F:8B:02:97:0E:7E:3D:7F:CF:4A:3F:E3:44:DE:6A:72:76:87:CE:CB
Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Certificate serial: 0197B821296AB1527054220B2C12A7936840
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
Manifest number: 0AF2
Signing time: Sat 28 Jun 2025 20:01:10 +0000
Manifest this update: Sat 28 Jun 2025 20:01:10 +0000
Manifest next update: Sun 29 Jun 2025 20:01:10 +0000
Files and hashes: 1: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: cr95lFAyxiyop9dJ1mTgoU3eGW6nm3jABRdPivayR2k=)
2: _GYD1AJUDNposAkJpRDfG9xq6dk.roa (hash: afY5Qh0XccEeUiEofkFyRBQd+JnAG3mTgUzmW0se7YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:29:6a:b1:52:70:54:22:0b:2c:12:a7:93:68:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Validity
Not Before: Jun 28 20:01:10 2025 GMT
Not After : Jun 29 20:01:10 2025 GMT
Subject: CN=9f8b02970e7e3d7fcf4a3fe344de6a727687cecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:43:6f:3f:96:94:4e:43:c6:f1:a1:68:3b:04:
3e:cf:34:e8:be:94:55:4d:28:4f:cb:17:81:09:86:
0c:98:f9:80:7c:5d:ea:aa:45:e0:db:69:d4:57:5d:
1d:31:5b:b6:c1:a7:91:f4:a5:26:3c:b7:fe:31:11:
58:1d:1c:f6:1b:b2:1c:a8:b0:76:da:14:a8:0a:ed:
44:50:4f:78:f9:85:b6:3d:d2:eb:18:e2:d9:c3:72:
cd:fe:9b:fb:c9:dd:3a:56:c7:a3:4c:8e:68:89:6f:
ef:96:c0:f3:9a:76:d0:2c:9c:c8:b6:78:00:00:79:
97:d5:0e:83:00:36:bd:5a:df:e6:7c:4c:4c:6c:8a:
05:21:cc:f0:ff:94:10:e9:c3:17:73:1f:ac:4c:4d:
e8:f6:84:1a:3f:33:b5:96:80:5b:f3:f9:94:d4:e1:
71:4e:50:9f:b3:fe:8e:bc:12:6a:c2:1b:34:5a:a5:
be:58:58:83:d6:34:ef:f6:0d:d6:21:ff:f9:f9:80:
e0:3b:0f:a7:3e:f6:2c:56:71:14:26:ee:ca:75:93:
51:c7:16:81:6f:a2:a4:68:ae:2f:df:88:8e:bb:f2:
b4:1c:81:e3:8e:89:f9:b9:39:05:b1:bc:4a:f9:b5:
5e:d6:cb:58:85:69:30:1e:6e:9a:5a:63:10:77:b6:
49:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8B:02:97:0E:7E:3D:7F:CF:4A:3F:E3:44:DE:6A:72:76:87:CE:CB
X509v3 Authority Key Identifier:
keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:79:fc:e8:67:e2:0f:d8:39:a3:80:19:52:e4:45:4b:40:20:
c8:e3:8d:ac:9a:df:a5:ee:b6:51:66:02:37:5d:ff:74:03:2b:
73:25:02:ba:19:bc:a8:55:2c:01:71:ba:33:cd:73:ac:e1:89:
bf:bf:1f:1a:0e:f2:d4:07:f8:ee:d5:ab:f3:3d:7c:8e:e4:d4:
06:3d:da:7d:12:5d:22:59:42:f4:a7:1c:a5:38:6b:e5:e5:52:
ce:9b:33:eb:21:ce:51:50:54:1d:80:7d:92:68:43:3d:29:87:
29:e2:e4:61:77:3e:ab:d3:3a:3e:42:61:ff:7f:8c:80:49:3c:
43:a1:da:af:ec:1b:bd:b0:a1:33:f1:fe:18:74:02:a6:ee:ff:
aa:7e:c0:a2:3f:46:22:e0:b8:67:6b:38:e0:f1:94:22:e0:c8:
e2:c9:44:53:6d:74:ab:99:f2:56:20:ae:45:af:ee:61:b0:3e:
fa:4d:fd:56:b6:c6:51:77:b8:ad:b5:8d:b2:69:34:72:ca:09:
6f:75:81:bb:88:ca:4b:b6:6a:27:f5:44:3f:9d:93:62:2d:37:
0e:f4:6e:dc:78:9e:50:a0:5a:2d:c2:d0:f0:7a:85:28:fd:af:
3c:45:e5:c5:36:d8:52:d3:9e:8c:02:88:9c:4f:c1:25:11:5c:
dd:f0:57:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:00:29 2025 by rpki-client