Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
File: Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft (raw, json)
Hash identifier: c8OLQnp6Jn9jkLgOLBJudPNHccNfZIeZqujW1nZ+cws=
Subject key identifier: 7F:A7:2D:AF:DE:A1:A9:73:F9:7C:1A:EA:4A:7B:43:E7:F4:15:31:C3
Authority key identifier: 5D:FD:38:3E:16:8D:2E:C9:FB:C3:90:EA:8D:99:A4:BA:F7:EC:3B:5B
Certificate issuer: /CN=5dfd383e168d2ec9fbc390ea8d99a4baf7ec3b5b
Certificate serial: 01977151576ADAD216415C50BEA478086E68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xf04PhaNLsn7w5DqjZmkuvfsO1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
Manifest number: 2A
Signing time: Sun 15 Jun 2025 02:00:45 +0000
Manifest this update: Sun 15 Jun 2025 02:00:45 +0000
Manifest next update: Mon 16 Jun 2025 02:00:45 +0000
Files and hashes: 1: Xf04PhaNLsn7w5DqjZmkuvfsO1s.crl (hash: XnWIckKgAZInZrAa1D2lbwn8aHQJqUvLCNb7lobwX60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xf04PhaNLsn7w5DqjZmkuvfsO1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:51:57:6a:da:d2:16:41:5c:50:be:a4:78:08:6e:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dfd383e168d2ec9fbc390ea8d99a4baf7ec3b5b
Validity
Not Before: Jun 15 02:00:45 2025 GMT
Not After : Jun 16 02:00:45 2025 GMT
Subject: CN=7fa72dafdea1a973f97c1aea4a7b43e7f41531c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:69:ae:d9:e1:fa:f7:af:2c:ea:27:b6:9a:98:
14:b6:14:63:40:ef:a8:62:f5:26:b3:dd:87:21:35:
3f:cf:15:ec:cf:fe:4b:a6:26:11:6c:94:ad:1f:62:
1c:d5:9d:1f:cf:9d:fd:f1:6d:08:42:67:1e:91:26:
63:d6:ba:7d:e3:db:79:cf:1e:4e:bc:31:f8:f8:5f:
23:59:ff:86:ba:65:fe:2a:ad:2e:66:d0:8b:b0:5e:
f0:cc:66:63:97:5c:5e:a0:87:83:b0:38:bf:95:40:
f1:60:83:a1:88:89:2b:cd:60:01:43:6f:85:d8:36:
ba:32:2e:e5:2a:31:04:bc:65:0c:a6:a2:90:99:52:
b7:1a:ea:e0:7e:79:82:ed:2d:2b:62:ad:21:f0:3c:
27:6f:ca:59:29:64:5c:c2:d3:75:c3:97:ee:bd:35:
8b:05:6b:cf:42:09:53:76:4f:a0:65:ee:35:79:59:
57:a1:72:12:33:dd:4d:60:f2:57:a7:16:5c:55:96:
58:ad:0b:ae:61:8f:35:96:17:e3:72:64:06:6f:b3:
0d:21:d8:0e:86:6f:5c:d7:dd:90:82:c5:19:34:2b:
86:30:fd:8a:d9:d8:b8:e4:07:21:7f:d9:44:e2:7a:
87:37:00:b5:d0:35:a7:3b:5b:89:19:a8:73:8c:e2:
e8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A7:2D:AF:DE:A1:A9:73:F9:7C:1A:EA:4A:7B:43:E7:F4:15:31:C3
X509v3 Authority Key Identifier:
keyid:5D:FD:38:3E:16:8D:2E:C9:FB:C3:90:EA:8D:99:A4:BA:F7:EC:3B:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xf04PhaNLsn7w5DqjZmkuvfsO1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:59:a4:14:68:54:6b:03:6a:da:a5:47:47:90:d3:3b:50:49:
30:a7:e2:d0:d7:b2:4d:07:f7:8a:99:d7:de:af:8d:aa:9a:7b:
1e:b8:7a:64:fe:02:fb:4c:cd:37:de:81:6e:27:61:e9:5c:75:
8c:79:19:94:0d:be:ec:6a:de:f9:2c:1d:70:51:cc:4c:1c:af:
07:83:c4:16:e9:8c:7d:b9:e3:c8:da:50:f2:dd:50:1c:f0:0f:
48:da:2e:67:05:3d:f6:ea:97:ee:72:14:16:6d:ae:7a:7a:d8:
0f:6c:87:fb:56:e8:a8:a4:fc:88:c3:2f:7a:29:8e:14:6b:80:
1a:1b:e0:a7:cc:31:b1:57:97:8f:84:5d:84:f7:98:16:2b:6e:
2b:44:2c:7c:45:b8:69:ba:a9:cd:da:42:2e:2b:8e:80:2e:8c:
66:90:e4:b2:6f:66:b5:af:f2:b5:dc:b8:84:82:41:f1:b4:11:
dd:87:db:8a:b9:a8:57:fc:b8:80:ad:58:4e:64:5f:0d:f4:b9:
94:1b:46:98:81:9f:6a:3e:0a:dc:d3:e9:a3:64:36:08:63:5a:
b0:3a:7f:1a:34:5e:f7:81:b6:f6:96:f9:8c:7c:18:aa:3e:11:
a6:46:6c:6e:a4:7b:c6:ea:6e:fb:df:bf:fe:b8:84:34:6e:b8:
81:f5:33:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:24:44 2025 by rpki-client