Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
File: XaWsO7omBTjDM-bIYPI2ASyYZ10.mft (raw, json)
Hash identifier: kc2hP7j0H6VT9LJ4WrcIc7DqZ7g1TSdlS9etSBw1oOo=
Subject key identifier: 8E:A2:F6:93:A0:53:D8:00:55:33:9E:57:DE:90:32:E1:CD:15:23:00
Authority key identifier: 5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
Certificate issuer: /CN=5da5ac3bba260538c333e6c860f236012c98675d
Certificate serial: 01976A05E3C437D3FC6AA886CE5DCAAEFD31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
Manifest number: 0FE7
Signing time: Fri 13 Jun 2025 16:01:00 +0000
Manifest this update: Fri 13 Jun 2025 16:01:00 +0000
Manifest next update: Sat 14 Jun 2025 16:01:00 +0000
Files and hashes: 1: Lirq-zsF2DJ9HSd8FBwZm-dq_PM.roa (hash: DEsCxQ0UWNIneJAQeHuxPuouMfS+o3gP/21W0HHwfiM=)
2: XaWsO7omBTjDM-bIYPI2ASyYZ10.crl (hash: 03UAVcMsLdS2cYyW9qvGsBycQ+bkG3zjdVs6gppy8QM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:e3:c4:37:d3:fc:6a:a8:86:ce:5d:ca:ae:fd:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da5ac3bba260538c333e6c860f236012c98675d
Validity
Not Before: Jun 13 16:01:00 2025 GMT
Not After : Jun 14 16:01:00 2025 GMT
Subject: CN=8ea2f693a053d80055339e57de9032e1cd152300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:73:d5:79:26:d1:98:17:81:55:7d:7d:9e:5d:
81:74:96:15:4b:1f:c6:ad:06:ab:3a:22:d7:ed:d9:
36:40:13:67:dc:c1:07:16:fa:86:cd:54:7f:e4:a4:
31:39:07:f0:a3:d5:19:b5:77:5d:d0:02:b2:fb:fd:
88:ac:80:42:c2:f1:03:94:ca:e9:3e:68:51:b3:08:
92:a2:0d:8b:85:1d:36:cb:bd:3b:0c:77:4a:7e:71:
e2:94:62:2e:c6:b3:50:fc:cc:19:c4:64:e1:69:a6:
99:0d:11:f7:8c:95:40:e3:61:ed:d0:db:6f:5e:22:
31:86:f6:1a:b2:f9:97:1c:7c:a7:cf:00:18:01:42:
21:ec:ac:10:b3:6c:bb:19:74:ac:c6:73:cd:f7:d2:
c8:78:a4:47:6e:21:f2:a3:a1:6f:1f:fd:3c:70:dd:
1c:03:ee:f5:fd:65:23:20:08:b3:86:60:b3:1c:e4:
b2:50:40:6f:06:e6:c9:13:8f:a7:4e:98:b8:84:7b:
74:b6:4d:c7:03:66:9f:53:78:5a:77:de:11:9e:02:
49:81:75:87:d6:71:80:3c:36:16:a5:0f:19:49:76:
9c:38:01:8b:7c:0a:f4:fc:fc:ae:18:79:cc:04:28:
1a:13:59:d7:66:d5:f3:42:e2:8a:d0:9d:ce:b1:b0:
ed:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A2:F6:93:A0:53:D8:00:55:33:9E:57:DE:90:32:E1:CD:15:23:00
X509v3 Authority Key Identifier:
keyid:5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:8a:51:bc:a2:95:ec:57:1b:d2:c1:f4:87:79:17:41:f2:24:
61:ce:c7:84:6b:fe:08:43:3f:a1:cd:38:a3:af:9b:7e:83:28:
20:96:af:80:aa:3f:54:a8:fb:82:da:da:f2:c0:be:13:3e:67:
1e:05:79:a7:82:d0:20:6b:1b:eb:d8:aa:11:83:61:28:99:af:
02:04:f1:ad:e5:d0:af:71:c7:41:0f:b4:48:64:fc:40:15:b3:
cc:05:2a:78:b0:60:b0:a4:75:a8:b5:2b:d4:61:6d:fe:28:7d:
90:87:f1:9e:69:97:99:7f:ac:b5:c6:af:94:04:81:cc:46:2f:
5e:1d:d9:64:17:6f:0f:29:47:e3:0c:5e:51:b9:2f:a9:9d:8e:
ca:67:b7:63:e3:6e:e1:68:97:3a:c7:1c:00:1a:34:0a:ad:1d:
6c:4d:28:0b:fb:da:b8:4d:10:89:39:b6:84:5c:90:b4:a1:da:
96:e9:4a:3b:8e:63:c4:0c:83:d8:fa:65:5c:23:04:52:9c:3c:
c4:29:65:51:22:65:27:13:29:d9:95:0e:be:72:30:6c:11:b5:
41:34:a1:4c:83:1d:00:ec:5f:fe:2b:6f:dd:53:e7:2f:e0:39:
df:8c:95:e0:15:5d:73:d9:2e:af:74:16:30:0f:4e:fa:11:09:
20:0c:22:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:10:43 2025 by rpki-client