Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: H/0TpUMObkm9WlxBu3ycEmMNQEIgxXa5kIXmVdZRjMk=
Subject key identifier: C7:3B:99:80:E8:E1:11:95:46:DC:82:7E:88:00:F5:B2:FC:72:31:31
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 0197B5C51BE92C125DF7F8DF7CB9AAA39432
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 0FAF
Signing time: Sat 28 Jun 2025 09:01:23 +0000
Manifest this update: Sat 28 Jun 2025 09:01:23 +0000
Manifest next update: Sun 29 Jun 2025 09:01:23 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: wOuC6jAbPEuIfiWw5cRfCZ1/4T4qyarItqQjwwX1vqo=)
2: yQMt2r0-C951BN6h68fRFJDbCC8.roa (hash: tYqh+1wBm4KwmsyhvHbFDKO/UGyJb2eTnTj9n8iYekw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c5:1b:e9:2c:12:5d:f7:f8:df:7c:b9:aa:a3:94:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Jun 28 09:01:23 2025 GMT
Not After : Jun 29 09:01:23 2025 GMT
Subject: CN=c73b9980e8e1119546dc827e8800f5b2fc723131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b0:8c:79:0a:be:84:ce:77:72:81:8c:b4:9c:
35:7c:ce:81:62:a2:d3:b9:6a:6a:c5:1e:de:7e:30:
d5:7d:2e:61:b4:11:bb:db:a7:b2:47:5c:2f:19:d9:
8d:a5:1b:e9:17:89:9c:d8:39:fa:f2:6f:3a:f5:27:
b7:b3:88:0f:95:b2:81:11:26:4d:95:a0:a2:a7:f2:
a3:a3:21:7c:f3:e5:ba:62:19:8c:af:76:25:62:3f:
c0:c1:26:b7:4b:1b:f0:6e:3b:ac:6d:a4:7c:a8:a8:
02:2e:df:42:5d:b8:53:83:b5:13:36:27:5d:cf:ec:
4e:fb:0c:7b:11:92:53:8e:e9:1c:90:ca:d7:bc:dc:
0d:9b:25:c1:fe:20:db:70:e7:25:0c:d6:38:d3:05:
81:1a:f7:98:fd:81:ff:8a:87:cf:35:e5:79:6c:9c:
4b:89:0f:7e:ca:91:c4:95:af:c1:88:10:03:a5:e3:
a0:b8:55:6d:b5:2e:9d:53:3d:8d:32:4e:62:14:55:
80:b7:70:3a:26:ee:fc:63:ed:c3:2d:fa:0b:d2:d2:
74:66:97:51:a3:4a:84:d8:4e:e3:d2:03:64:10:ac:
d4:91:52:d3:4b:10:3c:0c:e6:c0:96:65:b5:0a:4a:
46:30:e5:1f:d8:f1:77:5f:f5:39:4e:aa:e2:0e:d4:
1b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:3B:99:80:E8:E1:11:95:46:DC:82:7E:88:00:F5:B2:FC:72:31:31
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:91:1e:ed:53:45:60:7e:15:49:09:b8:b7:c8:2f:ed:11:04:
d0:31:ea:35:e4:2d:50:18:8b:44:e7:58:35:aa:13:c4:91:05:
ed:da:9f:95:ed:25:29:94:24:3c:2e:84:de:ee:91:17:c0:cf:
14:a8:d3:e9:a0:82:a0:83:1e:ec:d4:39:66:a4:15:67:2e:a4:
91:e1:43:47:0a:58:f0:59:37:bf:58:df:b6:a0:02:6c:42:25:
7d:11:74:e7:52:90:10:2c:47:0c:43:bf:20:9a:46:2e:6a:1b:
61:54:51:13:9f:05:c0:d9:00:89:2c:e0:ca:17:c9:9a:91:ad:
10:bb:d1:12:3b:9b:aa:ea:e1:06:e9:0e:d8:9e:d2:76:22:ea:
25:7e:78:59:32:8d:26:d1:a9:57:2d:25:11:86:9a:53:00:00:
95:45:e9:99:b7:92:1a:81:f8:fe:41:db:17:b0:2d:e5:50:0e:
ea:48:79:ca:ef:97:90:1f:c8:fb:76:2b:97:b9:b6:43:b8:7e:
2b:92:84:9d:34:cb:d9:d0:3f:d9:cc:dd:41:15:a6:31:aa:f3:
96:e5:99:86:ed:5d:1b:00:3d:e2:11:91:7a:25:58:56:83:f4:
88:29:5a:95:67:42:3f:70:96:bc:f4:17:06:ad:de:0f:24:29:
16:06:2f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:35:44 2025 by rpki-client