Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json)
Hash identifier: 4de97k/on9bAWOyiXGZLCJoSKKGlITImQjit2ImlX+0=
Subject key identifier: 23:BA:4D:C6:14:A4:C7:58:9F:61:F6:70:99:A6:A6:1F:AF:4F:B7:3A
Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d
Certificate serial: 01976A05829B1E0B4CFDCF577A5683E4AEA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
Manifest number: 11AD
Signing time: Fri 13 Jun 2025 16:00:35 +0000
Manifest this update: Fri 13 Jun 2025 16:00:35 +0000
Manifest next update: Sat 14 Jun 2025 16:00:35 +0000
Files and hashes: 1: Bu2qohV5DT207In6bmDkzPkl22w.roa (hash: yQgjgxJo0jD6Zb5Cbl39m04H6+9TPpDsNpPjtFWzK98=)
2: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: EF9RHceQJ2mow/SbdwbcCs7u8PVuzr5Ox7Pa33EVUYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:82:9b:1e:0b:4c:fd:cf:57:7a:56:83:e4:ae:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d
Validity
Not Before: Jun 13 16:00:35 2025 GMT
Not After : Jun 14 16:00:35 2025 GMT
Subject: CN=23ba4dc614a4c7589f61f67099a6a61faf4fb73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:37:35:5a:a1:29:6f:c7:fe:50:f1:f9:fb:54:
02:3b:06:b6:71:bd:56:a3:fd:94:9f:17:71:59:4f:
19:39:09:41:a8:73:c2:7a:d9:01:40:05:90:a7:67:
d5:2f:3a:73:e6:3b:c1:4a:20:2c:65:32:e5:b6:b9:
0c:e5:0e:8b:3e:73:10:7f:89:b0:40:44:0c:0d:a4:
3d:b4:98:84:0c:24:14:15:5c:fc:07:99:7d:0a:cc:
61:ab:7a:a2:01:88:32:86:de:59:5d:e2:8c:fc:8d:
a2:d9:fc:d3:91:39:ce:8b:07:d0:38:43:10:40:49:
2f:1a:e8:bd:3d:24:5a:1d:86:db:64:35:40:7a:fc:
9d:2a:d7:1b:b0:cc:c4:37:f7:d4:64:3a:b0:78:81:
b8:72:24:3f:0e:7f:fa:f7:95:ed:cb:b8:00:a9:9c:
ce:28:c9:06:a1:41:4f:13:d5:a2:7d:50:b4:f9:7b:
7c:a6:18:df:98:85:76:52:e1:c1:aa:8a:5c:0e:d7:
88:90:c1:34:62:b8:82:cd:fe:99:d5:44:87:eb:2e:
0d:44:46:51:16:53:15:94:fa:07:ba:cf:43:22:d8:
02:91:bb:9c:4d:13:dd:14:6f:27:0a:e2:6a:73:37:
b1:dc:32:38:44:31:8d:25:3d:ef:9c:69:aa:22:cb:
31:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:BA:4D:C6:14:A4:C7:58:9F:61:F6:70:99:A6:A6:1F:AF:4F:B7:3A
X509v3 Authority Key Identifier:
keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:e3:d5:4f:78:b2:ee:89:0e:ab:d7:0d:a1:1d:8d:12:d5:5f:
f2:38:74:b4:d1:46:10:49:35:3c:8c:87:c1:fd:59:98:7b:fd:
cf:7e:b2:35:3e:c0:3f:39:3e:34:22:fc:f0:7b:fb:83:36:19:
cd:79:b6:c1:3f:7f:f6:bc:d8:a7:49:67:0c:05:6e:5b:ef:56:
33:e3:69:dd:11:4c:95:50:41:37:92:ea:63:06:38:a9:de:22:
d4:74:00:55:75:ec:be:23:8e:5a:b3:28:6c:ee:76:f6:37:c0:
c2:f8:30:5e:f7:30:b4:78:41:f3:3d:4b:b5:fb:05:a4:83:c2:
8d:d8:9e:f9:61:da:47:40:9f:cb:2b:73:39:a1:0d:25:3d:1c:
25:87:58:eb:34:ef:26:6f:24:a3:bd:92:89:e4:e9:1e:00:a9:
c6:32:49:f1:8d:04:17:f8:88:9a:ff:a8:0a:23:5a:89:98:fd:
d8:53:b5:1a:7c:2c:50:76:b6:96:87:8c:51:1e:ee:1c:0f:54:
51:2b:6d:be:d6:94:f9:b2:a0:6f:99:49:d0:eb:82:89:60:95:
46:45:04:e5:b5:39:64:8f:d4:38:9a:05:f0:10:84:7f:79:81:
30:76:99:dc:33:b5:9e:13:c1:66:e5:41:6f:50:3f:26:54:1e:
e6:71:cf:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:04:08 2025 by rpki-client