Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
File: X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft (raw, json)
Hash identifier: /7Wc1DZV5LJtof0vPIXPEWrxB0IRscbucSjX7hQvXOg=
Subject key identifier: A2:8F:C5:EA:52:54:90:D3:A9:D6:FB:86:E0:25:6C:EB:45:D1:56:A0
Authority key identifier: 5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
Certificate issuer: /CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Certificate serial: 01976D3D63D32141E214B67256484C2B6D50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
Manifest number: 158A
Signing time: Sat 14 Jun 2025 07:00:29 +0000
Manifest this update: Sat 14 Jun 2025 07:00:29 +0000
Manifest next update: Sun 15 Jun 2025 07:00:29 +0000
Files and hashes: 1: X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl (hash: D6Fsb4Do0oiHX0MY8kIVW9YfBM//G7CaqaDgr+quI1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:63:d3:21:41:e2:14:b6:72:56:48:4c:2b:6d:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Validity
Not Before: Jun 14 07:00:29 2025 GMT
Not After : Jun 15 07:00:29 2025 GMT
Subject: CN=a28fc5ea525490d3a9d6fb86e0256ceb45d156a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3e:29:ca:2b:27:aa:e6:e8:1f:08:06:84:dd:
d3:f6:88:ea:ee:39:1e:1e:72:f0:9c:2f:9d:06:f2:
05:59:f9:07:62:74:8c:11:f0:03:32:4e:e8:c7:05:
69:bb:d9:50:e9:b1:81:03:17:d0:31:ba:d9:b8:80:
58:9a:14:63:4a:d1:63:67:f3:67:51:f9:d0:5c:d8:
d9:f1:df:e8:cb:45:31:45:41:8e:18:ca:3b:09:75:
d7:55:19:9c:65:81:a1:46:1d:7d:d6:e3:6e:f4:da:
d5:2e:45:22:86:cc:1b:9e:ce:53:81:7d:b4:97:1d:
7d:35:17:1d:6f:a2:94:29:3a:ef:02:5f:45:64:de:
0e:06:1b:93:2f:df:ee:73:88:ea:6b:53:10:01:7d:
a0:cd:91:78:4f:74:5d:8d:95:30:93:cf:6a:86:df:
13:da:6d:c2:f0:e4:a5:33:f7:c5:4a:e0:1d:8c:0a:
73:00:16:89:e4:cf:58:12:bd:03:32:51:f7:f8:4c:
6b:17:79:4d:69:6b:cd:a6:51:b1:e3:54:c7:3f:b4:
7c:fa:01:e1:aa:d4:23:7d:e0:3d:45:84:9c:56:96:
ce:1c:9f:92:5b:e7:82:fb:55:92:6b:15:b1:e4:73:
6a:2d:c5:7c:dc:1f:da:7c:23:7e:e9:e2:10:d1:f3:
8e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:8F:C5:EA:52:54:90:D3:A9:D6:FB:86:E0:25:6C:EB:45:D1:56:A0
X509v3 Authority Key Identifier:
keyid:5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:0d:2f:d0:e6:ab:43:b2:1f:32:49:b5:75:76:f8:40:46:a6:
2d:ad:2b:ce:dd:20:a3:4e:53:f7:5f:49:e8:e5:33:f0:16:c1:
f5:ef:9e:9f:e7:c5:f4:e0:db:7d:30:36:0a:fe:0f:4a:65:e1:
9b:ef:5c:e4:79:66:30:32:44:7e:5a:3b:ad:5f:db:79:f7:f1:
bd:53:9e:51:12:ea:66:9f:42:7b:1d:67:4b:3a:96:c2:e2:b3:
84:ef:b3:9b:b1:50:a5:b6:a1:58:98:96:7d:ca:a7:77:f7:22:
ac:0e:8c:f9:ab:6b:7e:97:14:12:ac:7b:0c:83:55:58:58:d4:
ae:58:73:05:9d:42:ca:52:b1:ec:11:de:4b:6f:9a:2f:24:7f:
da:29:75:22:81:fd:1e:b6:8a:a1:86:aa:c6:46:c4:bc:80:e0:
51:1a:1e:bb:ed:be:79:f9:e0:5a:05:ff:53:5a:0c:2c:dd:d2:
c4:f8:1f:a2:25:24:7d:65:49:d0:94:f6:ed:67:73:a4:7e:fe:
81:f9:6a:cf:9a:33:89:64:4c:69:0c:7d:4a:b2:13:67:c0:cf:
f8:2d:e9:f6:0b:bd:eb:74:9d:12:56:83:42:54:a1:a1:0c:a2:
b3:61:32:6a:f5:4c:ae:57:39:e4:41:12:fe:cb:9c:9b:6c:62:
e0:1d:e3:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:59:24 2025 by rpki-client