Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
File: XbomMhShFwVRmA7pFxn42Ixia14.mft (raw, json)
Hash identifier: 18kfPML5wuPgopOn2zHMtM/cF7bMm5Ond90spgt8A1c=
Subject key identifier: 61:88:52:2F:AB:26:CD:7F:8E:F6:ED:15:AD:1E:CE:3F:E4:32:42:0E
Authority key identifier: 5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
Certificate issuer: /CN=5dba263214a1170551980ee91719f8d88c626b5e
Certificate serial: 0197684E456BC328DC0977B25E9E57E5FA94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
Manifest number: 10F7
Signing time: Fri 13 Jun 2025 08:00:49 +0000
Manifest this update: Fri 13 Jun 2025 08:00:49 +0000
Manifest next update: Sat 14 Jun 2025 08:00:49 +0000
Files and hashes: 1: XbomMhShFwVRmA7pFxn42Ixia14.crl (hash: mhdnG/VRZd1V07XzMcgn7YlLQ90iFvAeKUk06ODbIwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:45:6b:c3:28:dc:09:77:b2:5e:9e:57:e5:fa:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dba263214a1170551980ee91719f8d88c626b5e
Validity
Not Before: Jun 13 08:00:49 2025 GMT
Not After : Jun 14 08:00:49 2025 GMT
Subject: CN=6188522fab26cd7f8ef6ed15ad1ece3fe432420e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:38:79:d5:c3:3c:6e:2d:38:0b:9f:89:95:4f:
f7:49:10:30:c9:74:03:68:c3:27:6b:d6:39:ab:79:
44:38:72:e9:4c:50:65:db:51:0b:15:59:f4:43:5e:
6d:fe:26:21:c4:63:4a:9b:0d:2c:ee:5b:51:b6:34:
e1:a9:42:5e:02:83:2c:4f:a6:d9:7b:37:5e:13:3e:
09:a4:f6:2a:fc:95:8c:a4:5a:e8:54:a3:f4:f8:56:
0f:55:7a:2d:32:b1:e0:8d:ff:32:a2:31:46:e7:e6:
ed:e9:b8:6e:90:44:11:c0:6e:00:6f:00:60:48:17:
1b:58:f9:56:48:ba:1b:ff:4b:5d:81:0e:81:ad:62:
03:5d:85:2f:ac:78:1c:57:45:b6:ca:85:d7:17:98:
c2:c9:94:ee:a4:a6:b1:69:a6:58:e9:c6:8d:4c:26:
87:65:8d:4d:38:7c:45:04:4e:b7:20:41:2d:83:d1:
c1:1c:4f:e8:c9:a3:db:a3:05:61:e1:9a:35:44:46:
3a:be:5e:42:8a:69:2a:e0:fb:91:b2:8a:20:38:57:
5d:94:f4:e6:7f:43:2b:76:8d:59:42:64:e6:c0:46:
e0:50:2d:7d:b7:8d:ed:95:87:e3:be:a9:94:ea:5e:
0a:3b:52:b9:3c:f4:77:52:bd:14:5b:90:cd:e2:4d:
f7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:88:52:2F:AB:26:CD:7F:8E:F6:ED:15:AD:1E:CE:3F:E4:32:42:0E
X509v3 Authority Key Identifier:
keyid:5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:b2:f4:50:38:05:af:a0:9d:09:d1:b8:45:7e:44:fb:2d:c2:
db:1d:97:fc:74:f4:50:70:5a:ab:04:85:41:92:c8:1f:9a:41:
3b:59:72:9d:05:ac:75:44:12:48:a2:69:43:d2:dc:0c:da:7b:
10:f5:5b:d6:f0:89:fc:0b:06:ae:8b:d6:2b:91:f8:39:61:bf:
1f:3f:f2:c9:10:aa:a0:1f:6c:64:8c:69:ab:7a:c1:9a:f5:b5:
43:4e:71:b7:79:a3:08:09:4b:3d:ad:38:92:25:e9:bc:45:75:
5b:d6:71:77:b0:3a:3b:3c:5c:90:dc:1f:fc:a7:af:10:ba:4c:
9a:e2:cc:d3:7e:24:94:15:98:0b:21:dd:76:18:9c:ca:d1:f6:
5f:68:62:be:b9:06:a3:07:2b:34:3c:eb:ec:ea:da:5c:7b:72:
b6:66:89:59:6c:b0:0e:72:e7:c4:2c:76:14:dc:a9:cd:8b:74:
ed:02:f6:a6:c2:24:b5:0e:9d:c7:f8:71:9c:ab:17:41:77:52:
f2:8d:68:c2:73:2d:83:0a:d2:33:7e:9f:a3:c1:78:3f:d9:70:
92:99:db:51:67:23:b9:c6:44:c5:74:dc:70:ae:1e:a0:66:50:
79:e3:1b:11:99:8d:6c:c5:dd:89:b8:04:be:ad:de:9e:90:e1:
68:ab:5d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:28:19 2025 by rpki-client