Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
File: XGpfUrAC9ihsHV6yV7tehTNCooQ.mft (raw, json)
Hash identifier: Im0XOc9iFq3A9FQcDKhTsxFlv6CWnCg8d8iHW1eAlY0=
Subject key identifier: C2:47:27:E0:E2:19:DE:9E:FA:AB:53:91:66:E6:FB:20:C7:91:8D:BD
Authority key identifier: 5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84
Certificate issuer: /CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284
Certificate serial: 0197B890450AB680370E7AB496FEE3418EFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
Manifest number: 1269
Signing time: Sat 28 Jun 2025 22:02:31 +0000
Manifest this update: Sat 28 Jun 2025 22:02:31 +0000
Manifest next update: Sun 29 Jun 2025 22:02:31 +0000
Files and hashes: 1: XGpfUrAC9ihsHV6yV7tehTNCooQ.crl (hash: sqszX75/MOMAbEgmo2zhdNiTEWcqFTdEaXN8FLoEXqY=)
2: tscq8RR5-J67nLuusgspLPatxCY.roa (hash: mhooYjP72FJexVsRBpMnu3/8vTwdVxQOmpcDiGXdBjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:45:0a:b6:80:37:0e:7a:b4:96:fe:e3:41:8e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284
Validity
Not Before: Jun 28 22:02:31 2025 GMT
Not After : Jun 29 22:02:31 2025 GMT
Subject: CN=c24727e0e219de9efaab539166e6fb20c7918dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:38:06:90:08:ce:fc:18:d3:bc:5f:10:76:30:
04:0d:01:cf:a2:54:cc:e2:2e:9f:1e:ee:66:d5:f8:
c9:28:30:0f:ab:d3:27:34:6d:6d:bc:53:d3:f4:35:
16:2b:6c:25:f3:a2:aa:ba:5b:56:a6:b0:47:65:cb:
70:2c:68:4c:65:85:1e:80:d5:61:2d:cf:7d:ca:09:
c5:d8:fa:30:47:59:69:9a:6f:9e:5b:25:35:77:c5:
39:65:c7:b3:b7:b1:66:c9:b5:3b:13:a7:87:8a:66:
a1:51:48:c1:1e:ea:5e:82:86:69:0e:5a:79:90:4f:
38:7d:34:1e:21:f6:49:65:97:37:08:f2:75:39:99:
fc:5a:ee:f1:f3:ac:48:ba:09:4f:78:bd:cc:c2:27:
e2:f2:60:ff:16:99:4f:4b:46:aa:56:f9:1e:3c:bb:
fe:be:f6:ab:fa:98:eb:04:d0:f4:85:6d:21:0c:76:
14:9a:50:01:02:d3:b5:1d:1c:00:ca:75:be:ea:b5:
de:f6:cd:7a:9c:b8:39:7b:f9:85:48:54:d0:0a:59:
06:ff:5c:e3:d8:69:44:f6:47:f0:d1:f3:98:b4:3f:
86:55:49:0c:b6:e6:00:27:b4:e5:c5:2b:10:c5:a0:
26:28:82:1d:14:a3:bd:cc:bb:ab:a1:f6:90:04:48:
d5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:47:27:E0:E2:19:DE:9E:FA:AB:53:91:66:E6:FB:20:C7:91:8D:BD
X509v3 Authority Key Identifier:
keyid:5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:be:06:84:7f:1f:f6:07:dd:86:6e:f3:12:ab:cb:5b:38:4c:
dc:20:2a:4a:57:87:94:39:da:42:b0:56:4d:29:f1:f2:a9:f4:
3e:af:05:73:67:3f:9a:b5:52:74:ba:fb:89:e9:68:02:fb:c1:
bf:5d:27:f5:03:21:e1:95:2c:d9:88:1c:2d:a3:fe:36:2c:1d:
af:3b:28:44:43:01:9b:b2:4c:46:7d:89:8a:fd:34:82:ea:8d:
51:fd:7a:1b:50:8e:47:de:36:36:2c:42:71:b9:10:31:77:be:
0a:d5:60:35:83:c9:f3:fe:44:e1:18:e1:b8:a1:7b:f7:d9:ec:
2e:cc:7b:61:8a:0e:e8:8b:b4:a4:aa:70:d8:85:79:e7:2f:fb:
9f:bf:7c:0a:d4:a5:bc:48:d9:4b:2c:54:af:50:53:68:90:0b:
db:22:88:82:17:aa:a9:7f:29:88:db:ff:e3:99:2f:ee:c7:ca:
e0:06:57:b1:3f:b9:b0:c9:47:09:90:6f:43:61:dd:28:25:ed:
43:cd:8f:d2:fa:2a:df:22:59:78:04:e6:d4:59:09:b8:df:14:
df:7b:b9:f2:a9:4d:2c:c5:f9:2e:af:7a:0b:14:1e:40:23:ef:
02:66:94:00:4b:69:a7:fb:46:82:77:f2:3c:e5:95:a6:04:17:
03:63:44:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:31:47 2025 by rpki-client