Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
File: XWU9B97R6Nf08uoEvTaELFsS8V4.mft (raw, json)
Hash identifier: j51JVdSCoIPWDoePL2DKJYLcto6sX4bXi+q5vP2XTEM=
Subject key identifier: 39:16:FC:93:C0:1E:86:BE:79:6E:67:10:98:44:92:5E:95:CC:6B:C4
Authority key identifier: 5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
Certificate issuer: /CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Certificate serial: 0197B745B7688B13ABF18E9B81C3D4A17E3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
Manifest number: 0DDD
Signing time: Sat 28 Jun 2025 16:01:28 +0000
Manifest this update: Sat 28 Jun 2025 16:01:28 +0000
Manifest next update: Sun 29 Jun 2025 16:01:28 +0000
Files and hashes: 1: XWU9B97R6Nf08uoEvTaELFsS8V4.crl (hash: eDl7pKNyFEZOMBWNdobKKoeOKhuJaBBLDkeOjS+NMJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:b7:68:8b:13:ab:f1:8e:9b:81:c3:d4:a1:7e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Validity
Not Before: Jun 28 16:01:28 2025 GMT
Not After : Jun 29 16:01:28 2025 GMT
Subject: CN=3916fc93c01e86be796e67109844925e95cc6bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:dd:3f:dc:d1:e5:45:ea:11:7d:1c:8d:2b:fa:
94:f1:77:92:2b:26:24:a7:02:a4:c6:33:ea:75:b2:
9b:27:3f:28:58:ae:01:ed:b9:6c:28:c0:ec:b8:76:
24:e6:03:23:8a:6d:18:76:46:97:92:38:2c:bd:2a:
3f:e8:d8:d9:2a:eb:35:87:d5:b9:07:33:ab:95:ae:
7f:5c:b9:56:e2:e9:27:f3:b3:0b:f1:f3:2d:8b:26:
7b:c9:d8:ea:83:19:1c:f5:4d:cd:32:61:13:fa:68:
c1:30:ea:b5:8a:fc:fd:9b:e3:6f:6f:10:9d:55:58:
fb:f1:b9:8e:eb:dc:d9:09:29:40:01:f0:58:02:65:
bd:e5:a6:56:12:71:7e:f2:50:bf:f4:d9:d8:ae:83:
45:7a:0c:6f:9c:1d:4b:f8:2e:df:7e:6b:18:65:80:
e4:12:56:54:c9:8d:eb:00:4b:4d:12:17:0e:02:7e:
12:2c:ce:4b:3c:77:b6:dd:68:53:d4:f1:a2:9c:70:
62:1c:6d:ca:43:a1:77:92:04:df:2f:78:a6:53:0a:
de:8d:56:06:24:79:3d:5c:46:bc:27:39:f3:0a:e1:
8c:e5:30:9d:f9:61:db:26:19:ad:bc:12:e0:f5:9c:
f0:d7:ec:74:4a:0c:2b:d9:aa:1b:9d:b5:c7:d0:55:
0c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:16:FC:93:C0:1E:86:BE:79:6E:67:10:98:44:92:5E:95:CC:6B:C4
X509v3 Authority Key Identifier:
keyid:5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:cb:4e:cc:74:9b:12:89:9c:29:5f:d5:7b:d4:f2:98:1c:95:
60:9b:75:db:d7:7e:aa:50:9c:f1:ae:30:e7:61:c4:eb:40:d7:
35:43:4b:c7:97:2a:5f:82:ee:11:26:be:4d:c6:45:92:8a:0f:
df:2d:c3:30:5d:1a:d6:30:f7:33:47:8c:6f:e3:92:00:9e:d2:
ad:06:cc:e8:70:d8:3d:df:7d:65:f3:7e:35:77:65:9e:5d:e2:
be:a9:ef:09:d0:19:6d:26:9d:30:88:c2:59:bd:12:20:24:fc:
7d:03:2d:d8:13:ff:7d:38:4f:63:69:8c:1a:96:38:4b:81:0c:
42:b1:e2:6e:bf:bf:3c:54:84:fa:e3:97:ae:50:69:4d:fb:10:
b6:d3:20:84:20:6a:a2:09:93:91:df:71:c2:8e:70:70:08:40:
22:5e:cf:30:7f:f0:55:6a:17:71:70:35:88:ee:38:53:73:5b:
03:6a:06:4d:ab:ca:ce:36:39:c4:d4:6c:2c:38:ba:ef:33:9c:
82:9a:f3:70:81:18:20:d0:f4:24:6a:4f:8e:83:7a:d6:da:25:
bb:b0:79:0f:db:67:31:8d:a3:76:36:8e:9b:92:7f:62:08:dd:
8c:cd:23:06:9a:35:80:21:62:fc:be:8d:49:a7:16:f9:02:a0:
2c:01:38:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:38:51 2025 by rpki-client