Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
File: XpNr6hsMOiCKuifYsQsnXkdN3iw.mft (raw, json)
Hash identifier: 6W30iTvwlNpZLIegD8IS4fFRaHDPhiUlIdZVMWQUp6U=
Subject key identifier: B6:BE:A2:83:05:F9:7F:AE:97:B3:7D:A9:85:2E:5C:18:5E:09:ED:1D
Authority key identifier: 5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
Certificate issuer: /CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Certificate serial: 01976F99D99469E50B098B6AF49C635B3515
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 18:00:43 +0000
Manifest this update: Sat 14 Jun 2025 18:00:43 +0000
Manifest next update: Sun 15 Jun 2025 18:00:43 +0000
Files and hashes: 1: OcwETrC7zKJAEBzcv9NqFhU0VkU.roa (hash: +Fh2IKkl9+PzWE+o8+gifkg2/uXg+cqv7TjJKcDbtnQ=)
2: XpNr6hsMOiCKuifYsQsnXkdN3iw.crl (hash: oJuvIhXY+/NfwgwCbpffzbBGMcHarIsc1jVwp8/BnPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:99:d9:94:69:e5:0b:09:8b:6a:f4:9c:63:5b:35:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Validity
Not Before: Jun 14 18:00:43 2025 GMT
Not After : Jun 15 18:00:43 2025 GMT
Subject: CN=b6bea28305f97fae97b37da9852e5c185e09ed1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:69:9d:85:52:56:7e:5f:81:b2:f9:d7:e9:32:
ab:d9:b4:ca:57:b6:92:c0:47:b8:62:28:78:34:e6:
2b:66:94:72:3a:82:cd:ff:8c:5a:45:67:99:0c:e6:
23:d2:24:01:b0:15:1f:c7:aa:14:2f:ee:6a:73:3c:
4f:fd:11:d7:23:89:58:eb:2c:62:de:56:f9:b2:ee:
ad:3d:a1:51:01:c3:37:92:a7:6e:4c:09:6d:f5:08:
87:81:f0:87:ff:60:64:a0:7e:70:8b:ba:10:10:36:
d6:1c:db:9d:5d:67:f5:c6:78:7a:60:84:1b:cd:c7:
ee:2e:c3:4d:1c:aa:41:9c:31:cb:6d:8c:8e:0b:01:
f6:79:98:3a:80:9c:55:43:41:d0:f1:34:b7:80:ef:
17:46:8b:d2:75:ac:9f:c9:54:7d:74:c6:83:e9:aa:
1a:17:93:d2:cb:dc:40:d8:3b:f1:1d:bd:33:35:58:
ca:6b:10:a2:53:b9:30:c9:48:15:c8:34:8d:c8:f9:
d5:7f:92:d9:b0:37:9c:cf:1b:aa:17:fc:66:ea:7c:
b9:ee:8a:7e:1f:d8:00:79:59:4c:fe:78:ba:bb:8f:
60:d2:e9:5a:4f:53:9f:9b:25:83:d0:cf:5e:c2:c9:
14:84:c5:96:e2:74:23:44:9b:8e:86:22:05:33:85:
d3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:BE:A2:83:05:F9:7F:AE:97:B3:7D:A9:85:2E:5C:18:5E:09:ED:1D
X509v3 Authority Key Identifier:
keyid:5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:cc:c8:74:20:6e:bd:fd:0d:88:fc:9c:34:fe:16:be:25:07:
30:1c:f6:93:55:df:a4:87:88:f3:b0:42:16:14:a9:41:2b:d3:
c0:c3:1b:a6:0b:37:42:4b:52:1a:d3:f4:79:27:f1:0e:50:c7:
25:1b:d7:8d:82:f5:9e:10:af:5d:65:5b:1c:3d:a6:7f:d9:20:
96:51:ab:4c:9d:8b:6f:dc:f9:ac:b7:aa:45:fd:7a:1e:61:e4:
7e:c8:1d:68:0e:5f:6d:27:8b:fc:80:69:16:1c:e9:d0:92:aa:
fc:4d:88:71:70:c5:91:70:47:bf:08:08:cb:66:c1:32:43:3d:
f3:28:fe:35:73:bd:a8:c9:e5:57:39:14:e1:32:a7:42:d4:25:
76:e8:47:0b:20:26:ea:32:21:82:48:2c:9b:a3:40:a2:65:78:
58:b9:b3:9e:ad:fa:40:d6:90:60:51:18:37:9c:83:2a:ca:1c:
85:ef:0f:f7:bf:96:68:c8:6b:17:71:5f:54:8a:ec:6f:fa:83:
93:a9:cf:ff:a8:65:df:87:59:2a:c4:85:56:a3:14:03:fc:51:
84:d9:29:28:18:4c:d5:80:4f:57:58:6a:6d:5f:7e:9a:11:70:
5e:63:09:3b:0a:b6:cc:c3:df:fb:c4:69:fb:b5:56:f2:de:55:
51:32:b2:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:24:51 2025 by rpki-client