Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
File: XPMa_DbLaVUAf-l-1KXjGF0icbo.mft (raw, json)
Hash identifier: vhBNcWZfQfiPTsY4dsMH4K0BPEIRmZObjRhCUAgEhCs=
Subject key identifier: 48:76:9D:4D:53:FA:3A:03:46:80:F8:6D:B8:9C:3B:1D:68:CE:68:7A
Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Certificate serial: 01976E5030E5A234CC71CDD2B24F39F6270B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
Manifest number: 159F
Signing time: Sat 14 Jun 2025 12:00:38 +0000
Manifest this update: Sat 14 Jun 2025 12:00:38 +0000
Manifest next update: Sun 15 Jun 2025 12:00:38 +0000
Files and hashes: 1: 0LO0qT2-0L6mWDwJ3dVrGvaEEOA.roa (hash: m3gjbEV2ZPpf1SrIWWEpb/lM9m2SeM9EF+s0bK96n04=)
2: CXLJsfdv2mQYEw_nRCBRyHgGrls.roa (hash: gIlLTUkZL/5+bXwsRESHghLIgWvhwbD5U5vB0n4lI0k=)
3: GZyq4JhiMN6IbDxHDi387ilVO3Q.roa (hash: RAmDxoFTdOQGRBWibMySEyO1+N/egEhlrBt73Hj0G1U=)
4: XPMa_DbLaVUAf-l-1KXjGF0icbo.crl (hash: fwrZz+5lwO8S/oqsgqOjlmQHtpFy9X38Hnz9h1spz8Q=)
5: XsnL58BowN54P94Hq8ZFELardLk.roa (hash: HNbFuOKPa1T82T8LpW7Qm3FZ0tR+dmMImgYgvtx3m4g=)
6: Zz42OKsTm8e7N4-UL7iAE7WQUo8.roa (hash: 5tp1DE1mgaUL43CN7zGdBuvgS2VFLrFuAK++O/dGYog=)
7: eGwOE8lbraIFP9l-UBBCUyjN8_w.roa (hash: E3bGB9caMn035nPuIHCWLooaKqDnHxrQ+ZG/yfDBfXc=)
8: obqfL4R2IKMApxxeeUPFE0sW9OQ.roa (hash: 7Ovq+/kB1PpmG+7SGcAWS7Jl70fuixev1vRb1jw0DXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:30:e5:a2:34:cc:71:cd:d2:b2:4f:39:f6:27:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Validity
Not Before: Jun 14 12:00:38 2025 GMT
Not After : Jun 15 12:00:38 2025 GMT
Subject: CN=48769d4d53fa3a034680f86db89c3b1d68ce687a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:9d:9e:41:c4:e2:8a:99:6e:b7:3f:4e:4a:32:
0a:96:19:5b:c2:ad:ef:99:36:3f:f9:f4:22:6f:e9:
35:89:f0:61:0d:0a:69:c8:42:8a:65:5d:ca:6a:b0:
98:14:ce:7f:27:15:8f:a2:c8:e6:3d:c0:a5:b3:b3:
d9:69:d5:33:bb:86:58:fb:75:35:7f:13:ff:ab:01:
19:d2:8f:90:e9:66:c8:b6:b5:15:54:e0:94:a2:9c:
10:24:65:5d:82:91:5c:c7:76:49:5f:d6:12:be:78:
2a:4c:b0:0d:bf:09:53:3c:2a:71:87:35:c1:4e:58:
b2:91:ef:76:2f:85:3f:09:4e:5e:1e:e5:e8:9a:54:
50:a3:d0:3c:0c:6d:8f:12:2b:d3:a0:30:da:5e:29:
7d:4a:78:3a:95:d2:cf:0f:46:ee:ac:ac:50:b4:f2:
7a:e6:ad:33:4d:1a:9a:fd:da:bc:4a:df:c2:7b:0f:
a4:95:d5:38:8f:60:04:0e:b3:65:37:7d:37:6d:4d:
82:6a:0f:db:9e:db:98:dc:ca:86:2a:ed:94:8d:8c:
18:2f:98:e3:c9:15:4c:ab:10:5f:22:ce:5f:4a:54:
bf:58:71:62:83:7c:9f:27:03:32:c9:68:4a:99:8a:
fe:4a:61:84:9c:c0:ef:f0:69:f5:ad:62:4d:db:08:
7a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:76:9D:4D:53:FA:3A:03:46:80:F8:6D:B8:9C:3B:1D:68:CE:68:7A
X509v3 Authority Key Identifier:
keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:df:21:64:84:9d:e5:0b:18:57:c4:cc:3d:88:60:6d:ec:b1:
45:4d:12:84:96:fc:26:b5:58:8b:65:5a:af:97:26:a3:55:91:
26:b6:13:45:23:5a:ce:7e:1c:28:16:f0:36:e0:ad:d7:21:0e:
06:72:00:7b:0c:a5:62:e2:c1:3e:23:9d:9f:75:ad:62:14:d8:
bd:84:13:10:ee:79:bf:22:0c:97:69:ab:0f:a1:b0:55:00:aa:
39:81:a0:07:29:9a:12:39:02:13:f4:a0:bb:ea:85:8a:ab:f3:
68:d7:2a:e8:5c:05:50:62:fb:97:c3:1e:f4:bd:0c:2b:b7:10:
ab:e2:a0:9b:89:e7:82:17:50:6e:e2:3b:09:11:1c:04:b8:57:
ca:32:c7:a2:21:1e:81:4a:93:a6:d3:b7:98:b8:a3:cb:54:92:
90:82:f0:e3:43:7a:31:5f:42:6d:b8:29:b8:a5:13:bd:f4:30:
cd:8d:d8:f0:fb:d4:84:23:95:4c:92:85:c0:dc:bc:3c:99:14:
67:47:d4:53:b7:4e:be:9f:fb:cb:27:a0:12:a2:ce:78:13:33:
d0:81:dc:e2:94:71:18:8e:fe:ff:a4:fc:26:b9:03:55:e3:ae:
80:62:24:3d:30:8b:68:d4:ab:55:93:f4:a2:c8:5a:c5:f1:df:
90:22:0d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:04:28 2025 by rpki-client