Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
File: xs_ZQjfv0gDdCxFuH2-be8plnKc.mft (raw, json)
Hash identifier: K4S/wsj3qjt6DI6ZEL6jPxvGN/Lv0FRJWZG7PA4pnFM=
Subject key identifier: BE:3D:54:D3:C4:36:EB:26:17:B1:5C:7C:A2:90:A2:78:BD:90:90:FB
Authority key identifier: C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
Certificate issuer: /CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Certificate serial: 0197B7B363C0F952C780FBB108F717F09B18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 18:01:16 +0000
Manifest this update: Sat 28 Jun 2025 18:01:16 +0000
Manifest next update: Sun 29 Jun 2025 18:01:16 +0000
Files and hashes: 1: K9i5BAZ6MzcgF9CzcPcItueT7VY.roa (hash: SAFMofRuJhJyuX+kxWxAf3VBKLBtrOMj73WD80i1Rgo=)
2: xs_ZQjfv0gDdCxFuH2-be8plnKc.crl (hash: HrAsHD6RAX//5OfX8GI0prDHdpkj1uM06bLhqfo5hbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:63:c0:f9:52:c7:80:fb:b1:08:f7:17:f0:9b:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Validity
Not Before: Jun 28 18:01:16 2025 GMT
Not After : Jun 29 18:01:16 2025 GMT
Subject: CN=be3d54d3c436eb2617b15c7ca290a278bd9090fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:54:cb:74:95:c9:22:8b:66:5f:fb:07:0c:87:
9a:02:95:4f:6b:2d:71:8a:86:1e:f4:e8:4e:ad:f7:
d3:ab:07:41:b2:bf:e4:7e:2b:c4:b2:46:18:76:c8:
0d:7f:83:20:3a:2c:98:46:d7:4e:e2:8c:50:37:86:
4e:0f:a0:38:a6:7e:24:de:89:aa:a7:54:d5:29:f1:
39:a1:b3:e0:06:f9:91:fd:41:fc:c1:6d:7b:90:5e:
42:da:55:a9:ba:85:a8:f3:66:f5:50:b5:b2:d5:ac:
0b:d3:45:5e:d5:62:46:55:5f:ad:5a:5f:25:b3:d2:
57:6d:c6:59:a8:b5:20:d4:db:1a:99:1d:9c:a3:a9:
eb:26:ae:b0:c8:a7:23:f3:73:32:27:b7:5a:29:ef:
bb:7e:2a:75:33:46:b2:c3:ac:5f:1f:d8:6d:c8:b3:
33:8b:62:05:68:29:85:c9:6a:17:38:28:f3:9b:72:
26:fa:22:97:05:f4:3c:ec:d7:f9:f3:39:32:57:39:
a5:2f:5a:6a:2b:22:1a:f9:d4:5b:f7:69:64:c5:9a:
50:ab:9d:d4:5d:7b:05:f8:bc:9a:27:b2:e5:ce:a4:
85:93:c1:47:1b:c2:56:e2:9b:67:67:6b:26:82:35:
f3:26:c2:66:6e:ba:75:33:a2:f0:0a:20:7d:ac:3a:
65:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:3D:54:D3:C4:36:EB:26:17:B1:5C:7C:A2:90:A2:78:BD:90:90:FB
X509v3 Authority Key Identifier:
keyid:C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:56:3a:e0:54:75:fc:d2:cf:b8:a7:f5:d3:05:25:28:b0:03:
48:c0:a6:4c:9f:4c:89:b0:b6:71:6d:30:82:6e:4b:8e:4f:26:
26:52:32:ea:ab:49:4b:c5:ca:b8:7c:dd:74:fc:af:cd:64:6e:
8d:99:20:35:7e:de:e4:30:d0:23:a4:9f:33:7e:55:1c:11:c8:
b4:9c:e6:19:7c:da:68:2d:95:61:32:d8:2d:ce:67:63:9a:fb:
42:98:c9:12:5c:5d:e7:9c:83:e7:04:db:1e:0f:66:30:78:83:
08:ad:d4:72:74:21:df:26:e3:d5:c2:23:01:c5:9f:89:12:c0:
8c:34:8e:9a:2b:24:53:c3:eb:e4:4d:75:fb:d2:0f:4b:78:f6:
7a:f3:93:8b:7d:64:dc:91:21:d3:59:81:39:c0:3a:65:88:87:
c1:ff:01:a3:04:ce:90:ff:2b:97:4b:5a:0f:80:ac:27:24:23:
67:5e:a3:98:89:66:15:27:0e:e4:c6:12:07:9e:48:c7:42:00:
76:93:c5:f5:90:fb:f6:50:36:d8:19:11:d6:d7:3a:bb:5b:70:
11:62:d8:65:5c:d0:cf:0e:82:bc:5b:5f:20:f5:e9:c5:73:0d:
8e:41:2e:8a:0f:cf:31:b4:a5:e9:e7:a8:d9:b0:5e:c5:4b:0a:
83:9b:96:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:46:41 2025 by rpki-client