Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
File: XM97P9h86bzpn5ALZBmdYGvxYGk.mft (raw, json)
Hash identifier: eWGnuWKS5LmMRBtONsjJYH2KJXTALoY4mezLKdZeCL8=
Subject key identifier: 22:66:F6:5D:86:2B:ED:11:5F:CA:D0:FE:77:32:A7:52:36:CE:13:B5
Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Certificate serial: 01976C62280A47B25173D19F1331292F3475
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
Manifest number: 1521
Signing time: Sat 14 Jun 2025 03:01:01 +0000
Manifest this update: Sat 14 Jun 2025 03:01:01 +0000
Manifest next update: Sun 15 Jun 2025 03:01:01 +0000
Files and hashes: 1: KOB0vwmJ7cfgZ_1WOb_Xx7LqG6U.roa (hash: a7bo8HXeX2LyPkuCveHxDVKdqnbGHzPDqS6LymzXHUs=)
2: XM97P9h86bzpn5ALZBmdYGvxYGk.crl (hash: ECJDXzRW8AxQnHwl849lMghzNmpkYdUy/cwVMcJp4S0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:28:0a:47:b2:51:73:d1:9f:13:31:29:2f:34:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Validity
Not Before: Jun 14 03:01:01 2025 GMT
Not After : Jun 15 03:01:01 2025 GMT
Subject: CN=2266f65d862bed115fcad0fe7732a75236ce13b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6f:ea:b7:ca:ea:1a:35:10:5b:d2:12:e1:a0:
ca:09:46:f6:27:d5:2b:89:19:fa:12:d5:99:5a:bc:
f9:4d:e1:87:53:7a:d8:18:c5:df:45:f6:c6:63:d4:
3b:4b:3b:28:90:cb:87:70:5c:a7:41:d8:4d:d4:52:
d1:3e:e3:8b:55:bd:1d:6d:5a:32:ed:a2:b5:a4:d3:
22:90:dc:3f:64:7f:17:d2:e4:77:d8:f4:f4:ea:0f:
2e:a1:80:a6:35:bb:9c:ad:9b:c6:34:1b:c5:c8:68:
2f:a4:a7:d5:43:8e:46:b9:cd:06:1c:f8:4b:22:ff:
da:69:1f:80:6d:94:28:47:7c:6b:d0:af:c5:27:ec:
6c:22:95:04:c7:24:31:aa:1b:52:bb:09:dd:04:f4:
59:06:aa:a3:58:d1:5c:cc:4e:1a:5a:a9:e3:e9:da:
62:fd:18:56:04:65:08:50:32:9c:9f:a5:af:a8:fb:
8c:b9:10:af:06:2f:13:80:ce:10:10:1e:c1:cf:ea:
5d:53:a2:0d:65:83:a8:dc:f0:84:e4:e2:fd:ef:e4:
0c:a0:e7:00:8e:5f:c6:16:a4:9f:83:f8:60:5d:11:
40:bf:01:14:08:24:25:16:a3:5f:a9:2a:65:c4:cd:
ac:ea:b3:4a:a3:2e:6a:f0:b4:b5:4e:60:fc:89:71:
f2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:66:F6:5D:86:2B:ED:11:5F:CA:D0:FE:77:32:A7:52:36:CE:13:B5
X509v3 Authority Key Identifier:
keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:7f:9d:a6:7d:43:7c:ea:42:3d:3c:a7:33:24:14:a6:fd:e1:
6f:05:2c:93:7c:5d:b0:12:d5:d9:f2:85:15:78:e5:b9:9a:7d:
38:e6:d8:84:1b:6b:30:a7:61:55:e2:43:e2:99:54:87:74:61:
cc:c1:50:40:d2:da:7c:16:6c:c2:c2:5d:1f:75:b8:9d:83:a3:
05:30:a2:8c:da:be:fe:34:04:33:28:bc:60:e1:50:c1:c6:19:
06:e1:aa:fb:47:cd:50:ce:df:76:ed:48:78:b9:f4:99:2e:45:
99:0f:cd:38:ed:3e:b8:4f:6d:3c:0a:de:ce:58:41:a4:6b:d4:
30:0f:d4:83:8e:bf:ef:1b:3c:73:3d:6c:c0:2d:e7:d4:47:06:
78:f1:9f:6f:60:fb:98:82:86:2d:a1:eb:f8:4a:51:19:f7:76:
c4:53:3c:60:24:4c:d3:0f:cb:de:fa:52:4f:c9:11:16:04:b1:
e2:53:fc:1f:ae:4c:04:37:5d:f5:65:8a:d2:12:4d:0c:85:a8:
1e:ea:ac:88:8c:c4:d9:d9:26:d0:07:1b:48:d8:9e:a8:3a:4a:
87:28:d4:e1:91:02:cb:a2:ad:20:31:ba:06:d7:d9:0f:a0:65:
49:b3:17:ad:04:99:0e:06:82:54:f1:c6:e3:e9:6c:9f:8d:7a:
fc:f3:36:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:25:15 2025 by rpki-client