Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
File: XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft (raw, json)
Hash identifier: ZpsSEDllx+P76gUEYG+r4YGNif6U2bAneSbagnAjuk0=
Subject key identifier: BA:7B:33:6E:D8:7C:B5:4B:A0:14:A2:02:F5:A0:8C:81:51:F8:C5:E7
Authority key identifier: 5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
Certificate issuer: /CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Certificate serial: 0197778AA561594A0994D4FA0F392AB918EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
Manifest number: 05A6
Signing time: Mon 16 Jun 2025 07:01:04 +0000
Manifest this update: Mon 16 Jun 2025 07:01:04 +0000
Manifest next update: Tue 17 Jun 2025 07:01:04 +0000
Files and hashes: 1: XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl (hash: 2zZ6U4KdRURGYUqgPUxBv/x6RwvPPRuzz7l4O1S0+xM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:8a:a5:61:59:4a:09:94:d4:fa:0f:39:2a:b9:18:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Validity
Not Before: Jun 16 07:01:04 2025 GMT
Not After : Jun 17 07:01:04 2025 GMT
Subject: CN=ba7b336ed87cb54ba014a202f5a08c8151f8c5e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0c:69:af:d4:3e:73:64:54:4f:cb:fd:57:39:
a6:14:01:b3:db:68:94:65:a6:c4:b1:a6:b9:77:c1:
76:30:a1:d6:4c:31:c6:3e:f9:86:87:e1:c3:26:1b:
e1:5b:71:31:1a:c5:09:5c:cf:f2:50:86:4a:dd:6f:
ee:05:cb:79:b5:fa:1a:be:20:34:1d:08:01:f7:09:
f1:a2:0f:64:58:be:a8:b6:59:6f:b1:d4:5c:df:5d:
dc:26:10:97:f6:bf:b2:02:94:ff:e8:c1:b3:d9:cd:
ac:90:dd:15:09:8a:19:2e:62:28:97:ef:e4:6e:68:
ad:cd:bd:47:25:93:da:27:42:2a:91:8a:92:88:1d:
57:94:b7:2b:f4:a6:77:2d:1f:a6:ef:4f:7e:51:b4:
14:f6:51:6c:0c:c5:81:f6:2f:c8:a3:73:e4:6e:a4:
6d:02:27:d1:91:ce:be:9f:90:c5:75:d1:64:58:d0:
40:bd:f0:60:60:05:31:a0:37:15:86:e0:43:75:b7:
47:d4:fc:fa:76:da:08:11:f4:27:f8:ed:e9:cf:0f:
8f:0a:dd:72:68:5c:3b:42:4e:55:d1:b0:46:15:66:
34:d0:3b:64:61:47:d6:ab:2d:5b:39:35:89:b0:53:
ea:cd:98:47:4c:a8:01:2f:f2:17:4b:8d:3c:ea:4e:
de:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7B:33:6E:D8:7C:B5:4B:A0:14:A2:02:F5:A0:8C:81:51:F8:C5:E7
X509v3 Authority Key Identifier:
keyid:5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:3c:66:e9:87:f1:30:2d:82:ad:40:3b:29:55:0e:49:11:93:
04:da:9c:64:bf:d3:f7:2e:0d:3d:e8:bd:65:58:c5:f4:11:61:
49:a9:85:05:3b:92:09:c2:55:f7:ea:90:8d:20:d2:a8:5a:74:
87:d8:e4:58:fe:ee:5f:be:50:1a:25:92:ba:ba:b2:f2:53:14:
4f:26:2b:43:56:44:70:fe:c9:a8:e4:65:93:1e:77:f2:ac:9b:
1c:12:e1:4d:62:90:fc:a7:ad:f8:0d:ba:9d:52:12:81:b6:81:
a4:d3:3c:73:7c:32:49:ec:92:c2:a6:d7:ae:54:c4:fd:35:82:
29:63:29:a8:9e:02:7a:fb:9b:3c:d6:2a:a8:b9:f1:87:04:f3:
79:c1:23:4f:be:92:21:10:dc:e5:8a:f3:67:cf:1f:84:d6:ac:
fc:bf:b0:9f:0a:9f:38:e6:b4:72:58:c5:70:d1:ed:81:94:7d:
9b:53:ab:e6:78:04:81:22:ba:af:06:25:fa:c7:34:4a:12:e0:
7c:a1:c1:aa:f0:07:04:79:b2:9b:5e:ff:7d:c2:10:c2:fb:91:
e7:57:7d:f5:7b:37:1c:c8:83:3a:75:85:b2:46:42:7d:f8:cc:
75:de:e8:27:86:80:13:43:73:f7:2d:69:4f:53:87:7f:5d:49:
32:4d:34:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 12:29:21 2025 by rpki-client