Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
File: XqFlPhd6opVUAIBcjHW9DWhYOvw.mft (raw, json)
Hash identifier: IwLd1d5Pu6/CySJrAfht1ONeKCttk5+jid9MidXOYKo=
Subject key identifier: AC:D7:4E:05:0E:50:06:E2:2F:73:DB:4A:46:FC:A0:3C:32:58:CF:BA
Authority key identifier: 5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC
Certificate issuer: /CN=5ea1653e177aa2955400805c8c75bd0d68583afc
Certificate serial: 01976997BAF532A54C44106570F624D2C302
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
Manifest number: 0A1D
Signing time: Fri 13 Jun 2025 14:00:40 +0000
Manifest this update: Fri 13 Jun 2025 14:00:40 +0000
Manifest next update: Sat 14 Jun 2025 14:00:40 +0000
Files and hashes: 1: XqFlPhd6opVUAIBcjHW9DWhYOvw.crl (hash: fsiRhs5M3FOxffzYMsssn2wgfl+TV8FWlu3BjZPHdNg=)
2: pG0gZB0nkw3GnTji0o-IVbuNrD4.roa (hash: viA8g+053tZ6I/BKlBgt30tnVs0+WwkriBcMwHPLKm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:ba:f5:32:a5:4c:44:10:65:70:f6:24:d2:c3:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ea1653e177aa2955400805c8c75bd0d68583afc
Validity
Not Before: Jun 13 14:00:40 2025 GMT
Not After : Jun 14 14:00:40 2025 GMT
Subject: CN=acd74e050e5006e22f73db4a46fca03c3258cfba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5f:d4:73:ea:73:65:fe:23:0a:60:93:58:2b:
0d:47:9f:0a:5a:52:a5:2a:26:3c:c2:eb:a8:45:c6:
d9:47:0d:8d:31:ba:06:3b:a2:2a:7a:65:49:fc:dc:
e5:6b:94:7a:fe:65:27:d5:5c:bb:32:43:70:09:f0:
bb:f3:5a:32:f9:bc:fa:04:12:22:9b:2e:07:4f:48:
8e:f0:9a:17:a4:6c:b0:11:b1:2d:df:eb:b9:89:79:
43:59:1c:87:28:fc:9c:00:c5:3d:ed:20:4d:70:a9:
6c:8f:10:08:32:5f:d2:21:45:d5:57:2e:d2:c3:aa:
79:94:8e:21:68:d2:c8:59:cf:d8:db:e5:06:7d:d0:
36:a9:4d:75:71:ea:27:70:2d:4a:d6:b1:e4:dc:88:
06:b1:5d:39:dd:f0:11:1d:4a:f4:93:59:c0:a4:21:
85:58:cf:32:32:1a:48:5d:e7:27:8a:7a:1b:c4:d7:
d1:c2:d6:12:a2:12:f0:04:63:fd:37:e3:fa:c5:43:
fa:63:af:13:ba:27:95:83:09:1b:70:86:8a:44:fa:
cd:fb:d6:a7:93:cc:35:f0:37:29:7d:99:ac:e6:08:
61:2e:87:48:8d:20:09:db:03:c3:31:8a:4c:33:fc:
ba:2f:13:90:4b:87:ea:b5:05:5e:c0:68:45:d6:18:
7b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D7:4E:05:0E:50:06:E2:2F:73:DB:4A:46:FC:A0:3C:32:58:CF:BA
X509v3 Authority Key Identifier:
keyid:5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:5b:60:47:82:fc:75:e4:90:c9:62:21:08:12:43:c0:f4:63:
93:72:05:5a:b4:53:2a:d3:09:aa:b4:6e:af:11:cb:c5:e5:66:
de:63:17:80:dc:4a:ca:ae:27:56:3d:e3:dd:ae:50:bc:e0:5d:
f8:42:b9:3e:71:ec:78:bc:7a:e0:41:2b:62:cc:1f:1d:b4:83:
78:a3:44:34:71:99:29:34:26:4c:10:43:83:ac:bc:ad:d1:09:
ec:64:94:1c:f3:fe:c4:75:4c:d5:b8:21:b2:5d:69:68:df:d6:
19:81:1b:4a:73:e7:bf:d5:02:d3:e6:89:2c:33:f9:06:a3:a9:
9a:2d:18:ca:f3:7c:22:d9:f0:d0:a5:3a:f8:18:1d:86:9e:56:
f1:c3:56:11:22:fb:dc:b6:77:3d:8a:c9:bd:38:c8:47:5b:5a:
b7:6e:3b:ac:4d:b7:ad:15:23:e8:11:fc:2e:e3:5b:9a:55:89:
a7:44:97:c9:77:98:de:11:30:b7:07:cc:42:af:c8:68:b4:9a:
6d:11:e4:df:d1:ed:3e:e4:33:a1:00:04:d0:d1:20:88:8b:07:
79:c0:74:35:2b:3e:06:ab:8c:fa:b1:18:75:4d:a7:f1:b9:87:
29:40:c0:59:ce:67:de:a6:f6:8a:7a:5f:4b:f4:bf:91:b1:79:
89:25:50:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:14:51 2025 by rpki-client