Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: DiDI26W6SasIQzxs8EOHgjoqOURhv2SBYSWzh/uvQ2E=
Subject key identifier: 1F:28:95:93:06:4F:46:F4:22:59:88:E5:01:C1:0B:F3:67:18:6F:0B
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 019768852AD5F7B1770F22974264340A92D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 0F87
Signing time: Fri 13 Jun 2025 09:00:47 +0000
Manifest this update: Fri 13 Jun 2025 09:00:47 +0000
Manifest next update: Sat 14 Jun 2025 09:00:47 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: 0f0fJz2TV27cBgEZiNIVzaBaVlRXbb8PsCBNHUDyQ2E=)
2: yQMt2r0-C951BN6h68fRFJDbCC8.roa (hash: tYqh+1wBm4KwmsyhvHbFDKO/UGyJb2eTnTj9n8iYekw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 09:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:85:2a:d5:f7:b1:77:0f:22:97:42:64:34:0a:92:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Jun 13 09:00:47 2025 GMT
Not After : Jun 14 09:00:47 2025 GMT
Subject: CN=1f289593064f46f4225988e501c10bf367186f0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bf:eb:85:f9:ac:bb:7b:54:38:18:ae:21:ac:
fc:f4:bd:d2:ea:92:b5:60:12:b8:7b:74:be:8a:a6:
b5:37:d1:c0:82:2b:6d:27:05:87:64:74:ef:2d:44:
cd:2b:e1:35:7a:c5:a8:fc:9f:f7:14:1e:34:d5:33:
69:b5:5f:cf:76:63:16:d1:cf:51:49:01:e9:46:95:
d5:85:49:12:27:23:cf:e9:a5:a8:46:cb:6c:28:ca:
ef:9c:a3:b1:9c:9a:9b:0b:4d:7f:8d:d1:1c:40:16:
36:6d:59:b4:ae:4f:bb:b5:6d:aa:11:dd:99:d2:81:
0b:57:5d:f0:9c:29:2d:72:29:e6:3c:ae:97:41:8c:
ef:c2:ab:81:d2:cb:07:cf:6e:a9:b9:0e:37:46:81:
1d:14:89:9d:b7:11:bb:48:41:1c:05:21:7c:7a:65:
50:d5:d8:0e:cc:87:e3:ab:d3:82:53:df:f3:14:3d:
f0:84:e8:b6:a0:31:9d:fe:69:98:24:26:e3:59:8f:
06:11:bf:3d:a2:41:45:7e:51:27:21:95:a9:c7:6f:
61:f2:27:05:d8:61:ad:41:71:b2:a1:90:2d:ec:db:
b8:ad:22:f3:21:5e:d3:dc:c7:48:f3:0e:b6:aa:2a:
67:24:f9:4c:0d:02:16:24:32:07:78:f0:dc:56:2f:
83:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:28:95:93:06:4F:46:F4:22:59:88:E5:01:C1:0B:F3:67:18:6F:0B
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:d7:65:62:3c:5b:c1:bb:ce:1e:c2:d6:83:60:31:5c:7c:81:
5f:9a:42:8f:70:4e:ce:ef:85:a0:b2:e8:2e:7f:ff:26:d8:00:
54:14:21:31:ed:a7:c3:ff:46:cd:c1:2a:b0:d8:b5:70:9f:cd:
8d:91:fa:bf:1e:06:51:fa:74:a0:c1:1c:ce:7f:ec:b0:bf:2d:
25:d5:ae:4e:fc:6f:be:8b:e3:ae:0f:62:20:74:f6:f4:e9:05:
f9:c5:f8:8c:67:42:b9:ba:92:c9:e1:35:52:97:7c:d8:30:29:
6a:c2:c1:01:67:3b:4d:06:05:ba:e7:eb:b5:b1:f7:d1:70:61:
75:71:1d:b9:7d:5b:a2:9f:f3:48:15:e0:bc:8e:75:e6:6f:41:
67:68:69:be:96:fb:dd:b9:f7:5d:a3:3e:f0:a3:86:bb:54:65:
68:94:48:7e:b7:37:73:87:5b:0b:ba:2c:c9:93:a7:31:fb:80:
e7:7c:a0:0a:0f:bc:e3:93:84:e0:c1:62:2c:c0:0d:4a:08:a7:
47:e9:01:b2:5c:af:b0:d8:c7:19:00:3c:08:0c:c4:2c:82:dc:
6c:e8:07:c5:47:9f:38:d7:c9:35:8b:77:59:b9:48:9b:40:50:
cc:d1:ad:43:21:3c:d6:bc:bc:d2:67:94:e1:af:e5:b0:f5:d9:
6a:8a:27:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:09:55 2025 by rpki-client