Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: ejC5I/ecJFFxhnCV2TOiCRgm94RWKP44Q5waG9XMxEE=
Subject key identifier: 3A:B2:08:61:BD:E5:D0:01:B3:39:50:9D:D7:07:8C:F6:45:DB:BC:B0
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 0197B6A1740F0C0CC212F628402C891B302B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 10C4
Signing time: Sat 28 Jun 2025 13:02:03 +0000
Manifest this update: Sat 28 Jun 2025 13:02:03 +0000
Manifest next update: Sun 29 Jun 2025 13:02:03 +0000
Files and hashes: 1: QGKSiFavp9LMElSoLZBhqzLqFMM.roa (hash: ip/2uYmlI+BKnaF8k1mqNHwsPmNtHEQrk8aTeSCdMUA=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: ZJJ47btwau4WcmZVrOMMIcqRS6NHv0No8zT/soxQBNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:74:0f:0c:0c:c2:12:f6:28:40:2c:89:1b:30:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Jun 28 13:02:03 2025 GMT
Not After : Jun 29 13:02:03 2025 GMT
Subject: CN=3ab20861bde5d001b339509dd7078cf645dbbcb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:1c:09:ff:1b:90:b2:f6:40:20:8a:5a:e6:7b:
3c:4b:92:da:73:ab:22:69:2f:eb:bb:27:62:cb:05:
78:7c:a5:c3:6e:aa:93:8b:d4:04:97:fb:0b:85:66:
b0:fb:1f:85:de:69:fe:96:cb:de:e2:29:8f:55:ac:
92:36:42:b9:e9:62:78:e4:9c:48:65:3d:23:4b:e9:
a8:98:a0:d1:8b:65:0c:e4:41:21:22:43:7c:3b:4d:
02:03:a2:a7:1c:25:62:e3:f1:84:23:43:da:22:e3:
a8:80:1f:63:22:e6:ca:85:06:69:3f:d9:00:85:42:
58:e7:e0:0f:ed:82:20:66:dc:91:7a:48:04:dc:35:
07:ab:dd:1e:b7:3d:82:ac:8f:49:a9:06:8d:74:ad:
d1:65:66:49:ce:00:30:e4:dc:53:f0:c8:b4:97:e5:
d9:3a:1b:23:85:68:1b:70:38:31:e5:34:9e:33:00:
a8:6c:11:ad:c8:e3:cc:55:22:0b:4c:f1:1e:b1:52:
42:a8:bc:79:ba:60:3d:06:a1:99:61:5a:96:95:c9:
ac:6f:54:bd:64:38:75:e6:fb:19:4e:4a:9d:98:5e:
34:08:87:d5:a3:f6:b9:e7:bc:c3:b9:89:a3:f5:92:
43:e1:a9:01:04:29:f6:7c:44:b3:cb:bb:21:d4:e7:
c0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B2:08:61:BD:E5:D0:01:B3:39:50:9D:D7:07:8C:F6:45:DB:BC:B0
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:e6:89:a5:20:db:7b:f8:cd:e0:28:2f:1e:ea:a0:b0:ed:ef:
ae:49:59:53:fb:fa:ea:f9:62:94:42:02:38:39:91:fa:b7:64:
9b:2e:d3:eb:ee:13:c5:41:df:1e:e4:aa:43:17:fb:ff:22:a9:
5b:cb:54:b5:61:19:d0:69:83:96:f4:4e:ce:ca:bb:a8:aa:e7:
54:8c:06:54:9a:1c:a9:ce:d4:39:f8:72:30:45:47:ea:83:d0:
b6:29:0a:55:3d:91:a2:d2:20:57:f3:cf:87:db:e3:91:0a:b3:
0e:84:f1:51:98:d0:d6:15:54:0c:d9:19:58:81:a7:2a:ac:99:
2f:e0:da:fd:3f:57:4c:ef:80:40:e9:a9:8e:58:cc:80:5d:6b:
be:36:d1:80:8f:ab:01:55:9d:12:7e:a6:c7:f1:b2:6e:89:8b:
92:82:56:c4:81:18:d7:38:95:94:85:ee:44:36:5b:45:1e:39:
ea:0a:6a:8c:0a:5d:9a:75:10:c6:54:26:c5:d1:1b:29:b1:e2:
9b:ec:8f:df:e2:30:96:ed:a9:94:aa:a7:0d:7d:7d:1f:7b:d1:
4c:74:98:e1:39:cb:f7:ed:99:c7:a0:cd:4f:50:f0:95:44:3a:
6d:d7:56:df:f4:ae:f7:cc:b1:e4:d3:30:42:ad:d0:b9:4c:5b:
a1:b0:5a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:00:09 2025 by rpki-client