Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
File: xcidUmDLNP27s7wlv0rbr0zcaKA.mft (raw, json)
Hash identifier: a9hRN2XzkVNBO+TubM/9Ts/Kd+Uqweh+Uh2H3kSBoNw=
Subject key identifier: 32:A3:3E:3B:4F:E2:02:C7:0C:4F:77:6F:FC:05:A1:1B:01:94:3A:3C
Authority key identifier: C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0
Certificate issuer: /CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0
Certificate serial: 0197B6A087FEBCAC5F47200E8166E96D1C02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
Manifest number: 0571
Signing time: Sat 28 Jun 2025 13:01:03 +0000
Manifest this update: Sat 28 Jun 2025 13:01:03 +0000
Manifest next update: Sun 29 Jun 2025 13:01:03 +0000
Files and hashes: 1: xcidUmDLNP27s7wlv0rbr0zcaKA.crl (hash: oxnkurl3NFxmo1MBXZTvBkagoeGsTUaXWnRzD/As2JM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:87:fe:bc:ac:5f:47:20:0e:81:66:e9:6d:1c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0
Validity
Not Before: Jun 28 13:01:03 2025 GMT
Not After : Jun 29 13:01:03 2025 GMT
Subject: CN=32a33e3b4fe202c70c4f776ffc05a11b01943a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:83:ba:e5:f6:fe:58:b5:ae:4b:55:46:88:76:
cf:45:0f:73:44:f8:d4:9c:20:62:b9:6d:3b:bb:82:
7e:2d:02:ea:ab:0a:bc:13:43:05:c6:db:2e:17:47:
cb:04:e5:4f:d0:2f:99:6d:20:de:41:23:14:f5:31:
93:06:e8:72:1c:26:03:fa:8c:1c:9e:f3:16:0f:70:
39:c3:99:e3:04:fa:3f:9b:05:c7:29:85:f8:ef:1b:
71:c7:e7:31:28:9e:4b:17:6c:dc:76:3c:9f:60:02:
70:c5:5f:74:42:bb:5e:cc:ff:b6:cb:91:3b:60:be:
79:ae:1d:38:59:4e:63:36:02:55:44:c8:b4:8a:42:
a5:09:77:ec:38:cf:b7:96:49:7d:bb:65:09:04:fe:
cc:49:bf:5c:db:ea:23:f5:ca:bc:65:aa:e4:24:89:
d4:31:6b:96:4f:03:02:32:cc:04:61:b7:15:8b:7d:
d2:94:58:7b:1c:cd:ba:73:9c:47:8b:e5:d5:8b:bd:
b2:74:ee:b4:b1:bc:9a:4f:06:44:a1:8b:57:cb:61:
f6:5f:72:95:2f:1f:00:db:04:cb:77:4b:f3:4a:0c:
62:27:7b:2a:b1:3e:ff:aa:dc:0a:05:59:fb:f9:d0:
f7:48:e6:0a:cb:99:6d:78:56:94:a5:e6:d9:0d:e9:
99:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A3:3E:3B:4F:E2:02:C7:0C:4F:77:6F:FC:05:A1:1B:01:94:3A:3C
X509v3 Authority Key Identifier:
keyid:C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:43:25:af:c1:bf:52:81:47:a9:06:4d:2d:04:fc:c0:94:ef:
af:d9:ad:4e:d7:d1:61:01:47:d8:92:fd:49:31:c7:c6:ce:2a:
2e:df:13:af:52:06:15:9a:ee:f9:23:d1:90:98:6a:4c:66:5a:
f9:79:44:18:8f:1b:84:a5:a3:68:0a:3f:61:57:f2:ba:01:cd:
08:af:bd:aa:60:ff:c1:97:91:60:1a:b6:bd:6a:6f:b2:7d:fe:
ae:a1:8e:ff:ae:9d:e7:98:16:1e:24:fc:4c:d8:ed:5b:e0:59:
3c:e2:1e:f1:f7:4e:e2:55:9d:9e:18:4e:48:4c:ad:b6:75:bf:
db:c8:dd:f8:6a:4c:e5:7a:3a:f0:3f:a3:06:b1:96:9e:a8:81:
ca:37:22:00:58:c7:6f:12:25:25:d8:17:ac:9b:77:a0:f2:fa:
03:69:73:71:52:51:a1:91:64:1b:71:f5:59:4c:af:69:5c:36:
ee:ed:45:3f:09:0c:c9:6f:19:67:8a:36:40:a8:53:3b:71:3f:
76:ed:a1:b6:02:48:95:5d:9e:b3:df:60:56:2c:7c:5a:d0:92:
0d:b3:cf:6e:d7:4a:bd:63:3e:70:c7:3f:d2:91:c3:83:a4:ee:
a4:6c:77:d9:e3:92:b8:59:76:9c:06:cd:3d:45:a8:42:ac:ea:
0c:58:0e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:12:43 2025 by rpki-client