Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
File: XYLKb462haVz5dHZH48GEhqwKjc.mft (raw, json)
Hash identifier: 7scPvZMtoMtm4Q+7X2owy6wRpJxjmxcI9EVmZVaRzGw=
Subject key identifier: D8:65:96:A7:B1:33:EC:73:8F:C4:83:BC:28:1B:77:EC:22:7A:66:16
Authority key identifier: 5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
Certificate issuer: /CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Certificate serial: 01976CCFFA6E15B7C11F156AB067B142CCB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
Manifest number: 11C6
Signing time: Sat 14 Jun 2025 05:00:58 +0000
Manifest this update: Sat 14 Jun 2025 05:00:58 +0000
Manifest next update: Sun 15 Jun 2025 05:00:58 +0000
Files and hashes: 1: 5CQ4eO5LX17KXZ4KRK1zO2WmDio.roa (hash: elGO+kkXCWf6xUhLxKQr6fK8y3EJu/aqnItwgZKwIWc=)
2: B7NZ-u78J5mcpsov1XyIGK10cH0.roa (hash: U6kZ6B0tG819VSZmmXYNrc7xdPGbBot/5/JsXAv6Iss=)
3: OoBGTJUsN0YQ8-kRUhL79IvaFTU.roa (hash: KQ8kfmaZw2mJmdCZhrX6qjUaRt+eTM3yBnvc8ppjAws=)
4: XYLKb462haVz5dHZH48GEhqwKjc.crl (hash: rSWaxb3uvNDoxqPCzLiQsz/wZ/KpaI9JnErcEXSWsXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:fa:6e:15:b7:c1:1f:15:6a:b0:67:b1:42:cc:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Validity
Not Before: Jun 14 05:00:58 2025 GMT
Not After : Jun 15 05:00:58 2025 GMT
Subject: CN=d86596a7b133ec738fc483bc281b77ec227a6616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:22:9a:91:03:de:bd:81:5c:8a:cc:a1:6d:49:
28:49:3d:a3:e5:68:f9:28:b0:73:c4:b5:fc:9d:43:
5f:2b:91:95:21:ed:2c:3d:a7:db:a8:56:25:1a:cd:
4f:08:80:b7:d8:e7:fb:4d:3d:09:59:01:f9:82:2e:
30:29:33:76:62:0f:71:1f:6a:fe:a6:a6:31:cd:f1:
5a:3a:3c:8f:22:55:40:3f:0c:81:82:92:a6:90:a0:
d6:a5:05:5f:6c:34:a6:5e:d2:0d:f2:d3:fe:63:a2:
19:d7:43:e6:5d:fb:38:4e:6c:7d:0b:00:41:35:57:
08:86:8c:54:ef:c9:ff:cf:61:0c:cc:0c:e3:37:32:
1b:f8:67:a5:0e:58:f0:f1:cb:24:02:19:b1:66:6c:
80:95:46:9e:7f:92:5f:a4:6a:31:06:21:43:f3:f9:
5d:f4:ea:e6:b6:4f:63:6a:66:56:ce:c7:c5:02:3c:
71:3e:16:cc:08:6e:72:be:4b:4c:ca:55:33:2e:9b:
7d:f9:c1:6d:7d:aa:a4:ed:9a:c5:92:70:c6:98:02:
18:39:3c:af:da:f3:81:43:5f:b2:45:08:0e:e4:e2:
db:66:ef:b9:3f:21:77:f8:86:5d:d2:8d:0f:c4:9b:
f3:65:1b:87:27:70:f5:ac:c0:cf:4a:4a:2a:6d:0e:
47:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:65:96:A7:B1:33:EC:73:8F:C4:83:BC:28:1B:77:EC:22:7A:66:16
X509v3 Authority Key Identifier:
keyid:5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:14:ce:e9:52:e6:2f:f8:43:6f:8d:7d:ad:a5:94:4e:1f:cb:
67:ae:3e:34:23:eb:af:dc:8d:47:1b:c6:9e:fe:bd:88:30:97:
69:5e:61:2e:bd:66:06:d0:19:0f:d0:57:80:d5:bf:e8:48:75:
44:6e:a2:18:63:47:41:94:71:fe:0e:c6:5b:2d:f8:4c:c9:cc:
b3:36:e4:06:cc:e9:72:e1:61:e6:00:81:a4:16:62:6f:fb:f0:
00:bd:0a:3e:f3:28:78:18:ae:9e:9e:78:f3:55:73:a6:50:bf:
c6:a8:d0:43:1a:08:38:99:6b:42:27:ad:f4:93:56:86:b5:89:
be:d8:c1:a2:59:7c:c1:bf:f3:f8:60:9f:8c:8f:bb:45:de:cd:
2d:e4:4f:24:e5:18:d7:8d:52:b6:66:d4:48:9c:bc:f9:1a:b7:
c6:c9:b7:ef:7b:2d:b4:c1:1f:38:4f:9f:15:8a:c6:08:fd:a5:
f9:1c:e7:d3:44:71:2f:de:08:7f:10:3b:47:a9:78:8c:0b:e5:
81:c9:47:ff:92:66:6d:88:7b:7f:6d:c5:6e:d7:44:3d:54:64:
a3:e3:60:ed:6b:2c:6b:d8:1e:91:a1:2d:de:47:52:03:2a:40:
9e:e0:ca:d6:0f:8b:46:2b:ff:dc:57:95:0f:df:43:20:ec:06:
45:bb:0a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:44:45 2025 by rpki-client