Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
File: XpNr6hsMOiCKuifYsQsnXkdN3iw.mft (raw, json)
Hash identifier: E8Oi28Ff7dBXosGZsnd09/pfiqfIh7cJgmtjVYJjrC4=
Subject key identifier: 34:86:D8:82:D3:29:28:D5:47:64:E6:83:0E:AB:C4:20:93:4B:9B:E2
Authority key identifier: 5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
Certificate issuer: /CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Certificate serial: 0196C34BB24ABB913ACAF385635F2D7CE14D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
Manifest number: 1537
Signing time: Mon 12 May 2025 07:00:40 +0000
Manifest this update: Mon 12 May 2025 07:00:40 +0000
Manifest next update: Tue 13 May 2025 07:00:40 +0000
Files and hashes: 1: XpNr6hsMOiCKuifYsQsnXkdN3iw.crl (hash: Yf71xaLwW8IYW8OMLMF+Yhcyx+9Bnm1qOL0lKBCFS1U=)
2: stcblJCloKrq21i-3tGdy209Cks.roa (hash: sV8E479KWjrK8MD/w/N9wPnQZDPeZCzIYkOl03vwH+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4b:b2:4a:bb:91:3a:ca:f3:85:63:5f:2d:7c:e1:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Validity
Not Before: May 12 07:00:40 2025 GMT
Not After : May 13 07:00:40 2025 GMT
Subject: CN=3486d882d32928d54764e6830eabc420934b9be2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ea:b5:2b:7d:e8:e3:a0:c9:38:d5:dd:e2:45:
b6:1b:db:7c:94:c1:2e:96:fb:70:16:b7:df:81:a5:
ed:1d:69:a2:a6:c8:23:ee:da:37:d8:a7:09:8c:6f:
37:62:fd:3a:9f:b3:1a:7c:b1:b4:0e:4e:ec:51:50:
0c:7c:1e:e1:a0:14:54:05:3d:38:c6:af:86:1e:9b:
e5:d0:14:fc:4f:88:58:0f:f8:1b:0c:0b:d1:57:f8:
e7:91:24:2c:65:df:9b:12:a8:68:8c:c9:bd:4f:84:
75:cf:47:fb:a9:59:7e:19:b9:54:be:eb:0f:32:f7:
15:43:d5:dc:2a:e7:7e:9d:cb:cf:9c:77:fb:7a:1d:
1a:fb:5a:80:ae:8e:4a:c6:bb:0e:ba:2b:3c:e7:25:
71:ac:52:e7:e6:58:f3:f6:a0:ab:b9:ef:bc:f4:f5:
b1:ba:fb:b8:d9:43:cd:03:48:a9:ed:bb:98:af:2d:
85:9e:23:81:d6:39:8c:de:a2:1a:45:29:1c:6a:b4:
2f:a3:83:cd:6b:11:8a:09:7c:07:2c:44:89:1e:56:
c4:8c:be:6e:27:4e:50:b6:38:59:9b:c4:3c:d4:be:
03:58:4f:b5:16:63:3c:83:65:0b:6c:60:e1:9a:2c:
ce:06:eb:aa:f7:96:89:d2:b4:77:02:a2:81:d0:c8:
08:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:86:D8:82:D3:29:28:D5:47:64:E6:83:0E:AB:C4:20:93:4B:9B:E2
X509v3 Authority Key Identifier:
keyid:5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:26:aa:ad:f4:50:36:03:dc:96:74:bc:6f:e4:98:0a:4f:76:
88:b2:fa:96:df:32:57:e5:5d:a3:c7:af:69:0e:df:ff:e7:9a:
5c:e5:25:92:35:94:ee:41:3b:16:ec:27:46:05:ec:77:a0:75:
d4:34:32:9b:a4:d4:37:23:d1:68:da:09:4b:ac:63:a4:01:fb:
47:49:05:f2:df:2f:dd:77:43:e6:37:d3:4d:29:02:89:50:0d:
6f:8d:c3:97:66:dc:39:00:15:ed:a7:b2:23:ee:7a:61:a4:e0:
2b:ce:1f:8a:4e:88:37:ec:af:53:37:b9:23:24:66:77:f6:89:
c6:0e:7a:6e:da:86:bd:49:0e:13:35:8f:97:09:bf:b5:91:16:
a4:43:04:9c:f2:da:54:4e:c2:bc:42:56:e1:4c:12:33:98:8c:
24:bc:4e:ab:bc:4f:ea:3f:5d:70:73:3b:ef:00:0f:d7:16:3f:
b6:de:51:94:d3:02:06:17:a6:52:3d:47:4a:9f:9e:ac:ac:e1:
35:f2:80:7f:c1:11:09:a3:06:af:6e:6d:ff:32:8b:b8:e6:8c:
ea:31:d3:e9:fc:57:ce:f0:84:ff:e8:17:28:36:ba:62:7e:d5:
e7:d1:9c:c7:23:a1:d2:c4:bf:0d:39:bb:0c:e4:46:de:fd:78:
ef:17:fd:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 15:58:28 2025 by rpki-client