Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
File: XzHZebcQ7eIGiCOIGqYRrROvVFk.mft (raw, json)
Hash identifier: uULo56HXAaPRUHEe5mx5x98mwPfOHYF+cGv/W229cHs=
Subject key identifier: 5C:09:E5:3D:FF:F3:0A:A7:7F:76:FC:57:E7:9F:1B:B9:49:19:8D:DE
Authority key identifier: 5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
Certificate issuer: /CN=5f31d979b710ede2068823881aa611ad13af5459
Certificate serial: 01976F2BAE5FC08127666564933583014DB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
Manifest number: 0B45
Signing time: Sat 14 Jun 2025 16:00:23 +0000
Manifest this update: Sat 14 Jun 2025 16:00:23 +0000
Manifest next update: Sun 15 Jun 2025 16:00:23 +0000
Files and hashes: 1: 7VePb56Lb2mDp_DoHqAJOVOs_T8.roa (hash: V7IpcMoqQADg7SX3r725vYH2jPknDmi+ikdfBjQyP5c=)
2: XzHZebcQ7eIGiCOIGqYRrROvVFk.crl (hash: mwkKci3it7i5sgJ8ihgZGYSzhspYJUtNVq494iTCDwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2b:ae:5f:c0:81:27:66:65:64:93:35:83:01:4d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f31d979b710ede2068823881aa611ad13af5459
Validity
Not Before: Jun 14 16:00:23 2025 GMT
Not After : Jun 15 16:00:23 2025 GMT
Subject: CN=5c09e53dfff30aa77f76fc57e79f1bb949198dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:41:00:ad:c6:b6:c0:77:1f:82:0a:5e:17:4c:
72:ce:24:6d:5d:fa:eb:1b:4e:f3:9f:0e:53:56:d1:
ac:0e:b5:77:34:dd:6a:33:c2:d7:c6:92:65:bd:d5:
08:4b:80:5b:38:fe:86:b2:4c:1d:8b:31:48:36:e1:
49:01:46:5f:48:7c:d0:5a:9b:28:62:90:2b:f1:9f:
3b:f2:85:6d:ec:82:80:f5:f0:54:aa:d3:70:1e:cb:
ca:f8:e4:04:e9:a7:2a:75:6f:39:53:93:d4:46:39:
37:f3:6d:3f:c7:42:0d:6a:5f:5d:49:07:72:ad:b1:
89:75:21:a9:ee:b3:8a:f2:18:b9:28:c7:81:48:23:
10:3a:de:2a:69:73:9d:b7:5b:df:70:6a:a1:9b:aa:
fe:bd:92:2e:3e:e3:ad:ff:59:06:a4:bf:9c:a0:5a:
90:14:7c:47:06:71:2f:d9:2d:c6:2d:b6:6c:10:ce:
44:f4:d9:36:cb:e7:15:eb:f9:93:2f:8a:af:e4:f5:
62:7c:ef:1e:55:87:6c:59:a5:a4:a2:0d:e9:a0:94:
ff:0d:26:20:35:8a:0f:f2:6a:6f:e8:88:58:52:c7:
e8:a4:d8:ba:f2:66:98:77:db:ca:34:41:75:1a:ce:
2d:0a:8e:4f:7b:f0:99:98:f7:91:23:63:34:0c:b5:
9d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:09:E5:3D:FF:F3:0A:A7:7F:76:FC:57:E7:9F:1B:B9:49:19:8D:DE
X509v3 Authority Key Identifier:
keyid:5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:f8:45:28:91:e8:29:f9:dd:97:66:60:8d:8f:72:71:e5:e5:
f6:e2:8a:06:55:73:46:53:01:11:42:14:ec:40:77:be:88:08:
aa:b5:5c:76:42:19:c6:61:c2:8f:5b:55:f4:66:b8:6e:c2:9b:
6e:19:b4:c3:5f:fe:82:85:d3:93:26:3a:bb:73:7e:bf:eb:2c:
88:2b:d5:3d:1e:c1:fd:01:ee:28:9a:75:d0:61:49:5f:72:49:
0c:7a:ab:16:e7:2c:c3:4a:84:a2:d7:3f:10:04:35:04:e0:63:
c2:31:8c:4e:fb:27:14:63:42:99:ad:ef:ed:36:9e:38:61:97:
ba:42:a2:ea:3e:d5:f3:a5:d2:72:00:b8:06:f7:94:a7:9f:79:
e2:ad:96:1d:38:46:66:3d:a8:ee:87:b9:c7:85:24:be:ec:0f:
6d:54:2c:f3:5f:0a:ad:2a:35:6c:b3:ba:a5:a1:35:b2:28:eb:
15:50:20:48:2e:f9:3d:cf:9e:76:e1:14:0f:17:76:51:c6:39:
d5:a4:27:87:02:3d:ec:c8:6b:96:d3:27:c9:67:f9:3f:86:51:
f5:48:60:c2:45:d2:99:b5:49:b5:0b:0d:eb:08:47:1a:b3:58:
81:57:3b:ba:62:d5:98:3e:e6:bb:0d:14:93:cc:3e:03:c0:ef:
34:7e:19:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:07:53 2025 by rpki-client