Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
File: XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft (raw, json)
Hash identifier: 2Ogxxow489EuKk90w9TeGopzSHz88akVDTyDM8RBnng=
Subject key identifier: 64:6B:1A:3A:EE:E8:F4:29:E1:2C:E4:76:27:28:58:EA:D3:BA:6B:76
Authority key identifier: 5C:02:F9:81:BE:E7:95:21:A3:04:B6:8F:66:7F:EA:ED:81:EA:3F:F6
Certificate issuer: /CN=5c02f981bee79521a304b68f667feaed81ea3ff6
Certificate serial: 0196B6346E830DE861E8F11664C7551305D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
Manifest number: 0F89
Signing time: Fri 09 May 2025 18:00:11 +0000
Manifest this update: Fri 09 May 2025 18:00:11 +0000
Manifest next update: Sat 10 May 2025 18:00:11 +0000
Files and hashes: 1: XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl (hash: NsqxrFGQBSuObdgLxyak/dAjkEay3YLj2QIFT+61rUo=)
2: o5qKOTRfTPnYThdIYO9xUeKi2sc.roa (hash: EOStnDBrp4FRFcFGDjBhhWwMtuAGb36N8+2XArtelwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 18:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:34:6e:83:0d:e8:61:e8:f1:16:64:c7:55:13:05:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c02f981bee79521a304b68f667feaed81ea3ff6
Validity
Not Before: May 9 18:00:11 2025 GMT
Not After : May 10 18:00:11 2025 GMT
Subject: CN=646b1a3aeee8f429e12ce476272858ead3ba6b76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e9:34:f1:35:bf:de:03:a2:38:d7:b6:8e:5e:
81:16:ae:d2:ef:b2:5b:bc:13:4b:22:5a:93:92:3f:
05:7b:a4:a2:2b:53:87:e6:be:77:70:40:06:c1:cc:
6f:9c:04:74:f9:f0:c4:ca:39:41:5b:11:4b:0b:40:
de:64:bd:5e:92:7c:50:58:1e:9c:c6:4c:e1:15:83:
91:94:a4:a1:b9:71:05:24:2f:8d:a7:8d:6c:00:be:
87:36:0e:d1:bf:0f:ea:8f:79:19:f6:0f:39:d1:00:
37:96:d0:f8:19:bf:7c:00:2b:d7:04:8c:8f:c0:5c:
fa:db:58:ea:26:2a:79:2d:2e:27:89:5e:e3:da:29:
53:d7:3e:e1:92:b3:21:57:ca:e7:7d:1c:a2:ee:b9:
0d:89:a9:bf:d6:1b:5f:61:78:b0:02:6a:e5:61:19:
4f:cc:12:c6:c6:b4:53:79:88:ef:b8:5b:a4:40:c6:
48:ae:61:e8:7d:dd:37:6e:34:1f:f4:d8:34:d7:63:
7b:4d:2a:1e:f2:a3:52:59:ca:9e:54:03:ee:68:12:
9c:52:38:1b:a1:d4:ae:4f:ad:aa:2a:82:3e:83:68:
90:47:61:b7:16:1e:af:6f:c6:a2:16:56:a7:96:42:
93:34:ec:d7:50:df:df:79:36:81:e6:a0:fb:7e:62:
b5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:6B:1A:3A:EE:E8:F4:29:E1:2C:E4:76:27:28:58:EA:D3:BA:6B:76
X509v3 Authority Key Identifier:
keyid:5C:02:F9:81:BE:E7:95:21:A3:04:B6:8F:66:7F:EA:ED:81:EA:3F:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:3e:30:79:dc:6b:18:09:9e:ce:65:82:2f:d8:80:a1:8a:5b:
85:62:d3:ae:a2:75:e0:88:50:a4:ff:70:15:a1:a6:cf:c9:e3:
02:36:38:12:96:6b:1f:6b:3a:24:db:5b:24:d2:dd:31:1b:86:
2b:d7:e6:8d:de:c8:a1:24:80:83:6b:18:e6:8b:99:a9:f4:07:
89:f6:7f:c3:f2:e2:f5:f5:21:72:01:35:48:91:47:a4:d1:fe:
cd:6f:62:ec:a3:2c:eb:d5:9c:71:7b:b4:c2:93:ed:d6:f8:48:
bb:9c:81:fc:25:1c:51:d3:cf:30:9a:f2:c6:26:76:dd:f1:c9:
f4:13:5c:a6:25:80:92:40:e7:7d:98:21:ca:5c:5b:06:61:cb:
bf:9c:69:33:f4:2d:27:b9:c1:5a:70:47:cd:76:24:dd:7a:fb:
64:b2:3f:99:d4:6f:7e:79:e1:fa:65:83:00:12:63:1b:ff:ae:
fc:b4:35:fb:a7:df:0f:49:15:65:da:43:bf:ef:64:7c:35:8c:
57:bc:23:56:c9:eb:ac:4e:bf:a6:74:c3:97:0e:37:4e:83:a1:
84:c2:eb:e7:1d:62:2d:f8:a1:a9:bb:43:7e:ad:eb:5c:78:51:
43:9b:f0:e4:da:f3:a8:37:7b:82:09:98:0b:f1:8e:6f:dd:57:
d2:63:e2:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 03:51:09 2025 by rpki-client