Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
File: XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft (raw, json)
Hash identifier: JIUJABsCVsnUxlRJ09GjEg8H2NwIeY4taz7ePJRTKyo=
Subject key identifier: 3D:3C:FE:10:0A:63:0E:8B:6F:91:BF:8B:43:13:C2:F4:BE:A9:C9:D5
Authority key identifier: 5C:02:F9:81:BE:E7:95:21:A3:04:B6:8F:66:7F:EA:ED:81:EA:3F:F6
Certificate issuer: /CN=5c02f981bee79521a304b68f667feaed81ea3ff6
Certificate serial: 0197B70E85AAC3103861A67B5F01CE9E832D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
Manifest number: 100E
Signing time: Sat 28 Jun 2025 15:01:11 +0000
Manifest this update: Sat 28 Jun 2025 15:01:11 +0000
Manifest next update: Sun 29 Jun 2025 15:01:11 +0000
Files and hashes: 1: XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl (hash: YDEL/MjC73A9gTROF/2TdiJqA/E32Iu5JnwJYMU+/W8=)
2: o5qKOTRfTPnYThdIYO9xUeKi2sc.roa (hash: EOStnDBrp4FRFcFGDjBhhWwMtuAGb36N8+2XArtelwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:85:aa:c3:10:38:61:a6:7b:5f:01:ce:9e:83:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c02f981bee79521a304b68f667feaed81ea3ff6
Validity
Not Before: Jun 28 15:01:11 2025 GMT
Not After : Jun 29 15:01:11 2025 GMT
Subject: CN=3d3cfe100a630e8b6f91bf8b4313c2f4bea9c9d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5b:26:f5:02:bd:4f:97:04:7b:d1:23:be:6c:
a2:a5:db:a7:36:07:a6:e9:cc:1a:0d:44:ac:bb:15:
6c:26:0f:3e:38:56:da:35:a1:a0:37:f8:36:d3:5e:
29:aa:08:0b:1b:c5:d3:5b:75:89:8e:4e:3a:e6:33:
85:44:5c:48:fb:96:69:17:6d:dd:68:42:a7:bc:e2:
02:92:ab:9c:4d:ef:19:78:56:88:51:ba:5e:eb:dd:
93:d7:36:08:01:74:45:88:d0:cd:b9:37:dd:43:08:
e5:d4:64:aa:d7:fb:03:33:8d:60:8a:d1:d4:c2:76:
ba:09:01:af:a1:59:87:9d:c7:d7:68:5f:60:f2:8d:
b8:62:ce:af:f3:f7:c6:06:f1:da:39:7c:77:19:31:
09:9c:b6:1c:5a:fa:4e:a3:66:f7:f3:a4:02:1c:bb:
e5:aa:ed:bd:2e:9e:6c:ef:69:ba:b0:d1:25:61:64:
e1:43:76:2a:9d:fb:a5:3d:2a:3f:e7:56:66:24:8c:
ae:5f:de:f7:04:a6:f4:f4:ec:13:54:f3:6b:35:04:
ac:36:59:5d:ad:20:86:3a:bc:26:be:e4:34:42:4d:
53:98:79:90:2a:fe:22:6d:3f:53:63:96:4d:b2:9b:
66:04:f0:70:6f:99:72:70:63:0c:9d:a4:0f:e5:79:
54:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:3C:FE:10:0A:63:0E:8B:6F:91:BF:8B:43:13:C2:F4:BE:A9:C9:D5
X509v3 Authority Key Identifier:
keyid:5C:02:F9:81:BE:E7:95:21:A3:04:B6:8F:66:7F:EA:ED:81:EA:3F:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:cb:77:b2:99:3f:70:dc:be:91:5e:4a:f7:9e:c4:3a:bf:7e:
7a:43:9d:02:69:30:3f:67:87:ae:06:c9:ce:3c:d2:7b:f2:2e:
09:bd:02:53:4e:f9:8b:71:29:c4:ac:5e:e2:a8:fd:e4:ae:b8:
da:8b:17:72:25:07:bc:b2:57:ea:f5:b6:66:f4:1d:7b:40:e1:
7e:6d:ae:6c:bf:93:d4:90:9c:f3:5e:9b:54:8f:52:35:b3:14:
a6:c1:54:a2:ba:51:ca:ab:a8:d0:7a:98:c9:ba:ef:45:86:f2:
c2:fb:4b:eb:0a:ad:a2:e6:3f:a3:4d:8f:52:ec:1e:a8:f8:09:
e1:52:83:3f:66:a0:fb:80:73:04:d4:dc:89:6e:03:53:86:49:
33:05:89:bd:4b:48:82:39:80:60:d7:98:e2:e2:1d:76:8d:8f:
65:35:bb:97:34:dc:3b:f4:ee:1c:29:ac:b5:cb:62:e7:62:f4:
08:d5:bd:b2:c2:66:0a:a3:78:6b:7b:e1:7f:f0:c4:d7:e5:0e:
8e:fb:cd:47:9f:6e:57:c7:41:72:4a:35:ba:2c:f3:01:72:54:
bc:86:af:4e:65:8d:02:0a:b0:7e:3f:43:43:4c:3e:f6:22:ab:
d3:aa:7b:7a:22:5a:55:2b:bc:b8:39:70:0f:db:eb:d3:bf:41:
5a:59:8c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:18:57 2025 by rpki-client