Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
File: XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft (raw, json)
Hash identifier: RfI4/x4BTNxZ2TSvxiAkNd2zvJc8p7+xP/1fGwR0+ng=
Subject key identifier: 6F:44:F4:21:40:A9:D7:2A:09:82:BE:0D:34:24:E5:9A:BC:82:6F:D6
Authority key identifier: 5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
Certificate issuer: /CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Certificate serial: 01976CCF7A77CE588CB9D040B8D9442D405D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
Manifest number: 14FB
Signing time: Sat 14 Jun 2025 05:00:26 +0000
Manifest this update: Sat 14 Jun 2025 05:00:26 +0000
Manifest next update: Sun 15 Jun 2025 05:00:26 +0000
Files and hashes: 1: 2ywpCRCtpz6hrb_B5Z2UyYL2m-g.roa (hash: Z+2VK2G2lzN86LoPcE9VgbDrrppkQUiQOHGoi5RCAY8=)
2: XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl (hash: uaphrkYc10VsauW/o6OccOj+j88aPdeIy7hMDwUpzTc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:7a:77:ce:58:8c:b9:d0:40:b8:d9:44:2d:40:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Validity
Not Before: Jun 14 05:00:26 2025 GMT
Not After : Jun 15 05:00:26 2025 GMT
Subject: CN=6f44f42140a9d72a0982be0d3424e59abc826fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:22:bf:c5:fe:13:82:e3:d5:57:68:94:08:35:
22:57:26:90:11:ff:1e:08:d2:1f:2c:5f:f0:a4:f9:
12:5d:33:dc:d3:2f:a0:9b:b0:52:96:a9:ba:ce:32:
d7:a2:3b:be:c9:b0:c3:7a:87:e8:60:55:22:1c:77:
8c:0e:d7:6a:a8:d6:46:3c:d6:e5:5e:83:16:8d:25:
44:96:fc:ac:84:ec:86:3a:d3:18:77:bd:92:3a:93:
53:56:83:6d:71:f4:dd:bf:ec:57:c3:de:cb:81:fe:
66:0d:aa:a9:55:40:a9:99:b6:3d:c3:c2:72:68:85:
a1:1d:b6:ab:e5:86:44:54:bb:38:6c:a1:ab:7b:f4:
4a:a8:c9:83:b2:a6:75:0f:36:a0:df:ef:13:9b:28:
45:72:e6:f8:15:18:b7:c5:52:ae:78:7d:9d:be:06:
68:d5:76:52:56:ac:84:67:02:2e:1d:42:82:dd:6b:
90:e5:fe:f8:18:46:b6:ff:19:c4:04:6e:e3:fb:67:
82:de:57:62:88:55:17:ba:89:7f:da:fa:37:79:98:
82:54:0e:7d:37:31:bc:52:b9:14:7c:1f:45:6d:f5:
dd:40:d7:95:87:bd:74:af:03:ec:5e:c6:52:09:94:
b0:eb:ab:a9:3a:d6:ff:20:30:1f:39:8d:e5:4e:c3:
71:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:44:F4:21:40:A9:D7:2A:09:82:BE:0D:34:24:E5:9A:BC:82:6F:D6
X509v3 Authority Key Identifier:
keyid:5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c3:95:2f:b8:45:c8:d6:48:07:5e:f2:68:db:92:e8:19:9f:
ae:08:ef:29:2b:c9:66:f1:ce:82:2c:9d:72:50:6e:54:83:84:
55:46:cd:33:4a:9e:e1:6f:9f:40:7e:ec:a2:42:c7:6f:77:2e:
1e:95:0d:4b:3f:1f:8b:5d:04:41:5e:70:bc:d7:72:ec:d2:18:
84:97:7f:20:0c:e8:cf:56:0b:86:82:88:52:cb:de:80:1b:da:
ce:58:28:f1:5a:35:c7:48:a2:3f:97:35:08:cd:9f:9f:2f:57:
37:88:b0:24:72:51:97:3a:db:cb:42:87:45:dd:22:af:8b:3f:
1e:9b:fc:70:19:06:8f:06:fa:69:4a:0d:6f:48:92:e1:3e:dd:
ab:ab:86:dc:e4:5f:c7:1a:55:f0:9a:77:fb:21:2f:dc:c4:ce:
fa:0b:1e:50:60:1b:e0:71:70:7b:d1:f2:c0:8c:e8:27:de:a5:
d4:4f:66:a4:9a:62:42:ab:ea:a9:ca:c3:f9:ae:40:72:89:5b:
13:3d:a0:d0:0f:a0:5b:ae:81:64:7d:01:11:fc:7f:13:0c:02:
58:65:2a:57:ec:6b:82:b5:3f:01:98:02:dc:a5:ab:e8:c6:f5:
b1:0d:25:42:40:cb:a1:d6:1d:4e:8b:f7:ac:67:5b:95:4c:1b:
8f:c1:2e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:54:59 2025 by rpki-client