Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
File: XX2xSVjPTXheWe9cbGefjvVMHYs.mft (raw, json)
Hash identifier: flHriEShJygj/50sNye/6NcdLh9WXdp5ePcSIs9QFFY=
Subject key identifier: F3:C8:79:39:67:B4:02:B6:BE:5C:33:48:5F:FC:3A:D9:E2:D0:B5:67
Authority key identifier: 5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
Certificate issuer: /CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Certificate serial: 0197B70F497EE3C0438394633C5C2AAF08D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
Manifest number: 059D
Signing time: Sat 28 Jun 2025 15:02:01 +0000
Manifest this update: Sat 28 Jun 2025 15:02:01 +0000
Manifest next update: Sun 29 Jun 2025 15:02:01 +0000
Files and hashes: 1: XX2xSVjPTXheWe9cbGefjvVMHYs.crl (hash: XUMElnfWb+2ONi4SZRFMtAGTcTcKfhKglBeMXJUi+Es=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:49:7e:e3:c0:43:83:94:63:3c:5c:2a:af:08:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Validity
Not Before: Jun 28 15:02:01 2025 GMT
Not After : Jun 29 15:02:01 2025 GMT
Subject: CN=f3c8793967b402b6be5c33485ffc3ad9e2d0b567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2f:cb:6f:4e:f0:e4:be:15:a0:9c:0e:ea:2a:
11:d1:83:19:a2:37:f5:7a:1d:b1:50:2f:68:07:6b:
f8:de:f6:1f:2c:c1:5c:fb:57:3c:a6:fb:13:b5:23:
be:01:07:d8:9e:e8:bb:e8:b1:3f:9d:af:93:72:25:
88:5c:ca:ea:50:b3:51:6a:fb:90:76:ac:f1:e6:47:
eb:59:9d:72:f0:bb:3f:3d:2e:b2:5c:87:16:15:64:
a5:e2:d8:4a:a2:80:6f:d3:04:9d:13:0c:a2:f8:3a:
03:30:f1:1a:ec:cc:8d:73:ac:1d:e2:84:aa:6b:f9:
18:c3:e2:28:31:c8:ff:ea:05:f0:95:b8:35:a6:4f:
c9:bd:4e:c1:ac:94:b1:4b:7c:f8:d3:05:7c:15:f5:
6a:0f:9f:61:57:cc:0d:a1:64:ac:fb:c6:8d:6f:24:
41:20:02:9d:3b:fb:a0:b7:68:4e:06:7a:e3:e5:38:
72:d4:54:b2:7a:50:1f:ea:f5:70:8e:21:c1:d1:28:
d8:52:6f:cd:c1:f8:75:fc:e3:bf:32:3a:fb:e0:ba:
68:37:3b:87:5d:b7:7a:ef:43:33:0e:69:fa:c0:02:
20:f5:8f:75:4c:a4:7d:14:ee:b6:a0:9a:bd:dd:75:
3a:68:06:e8:6e:9c:0c:6e:b2:fe:12:4c:9b:61:c6:
0f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:C8:79:39:67:B4:02:B6:BE:5C:33:48:5F:FC:3A:D9:E2:D0:B5:67
X509v3 Authority Key Identifier:
keyid:5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:63:63:ec:aa:42:cb:a3:e2:76:83:04:00:cf:7b:8b:85:3b:
fa:7d:0c:63:b9:f7:22:83:be:bf:a6:1f:4d:80:41:1b:45:42:
10:fd:e7:0e:4f:e1:71:cf:db:86:70:d6:36:9b:61:59:7c:3d:
66:42:53:06:f4:e6:f2:fd:b1:85:53:97:03:55:a1:02:ee:86:
e9:8b:86:9f:1b:3e:f1:aa:e7:04:fe:d7:cb:d1:65:0d:95:4e:
28:e8:ab:4b:5a:31:46:ce:9e:24:60:d8:55:c2:7c:2b:a9:d7:
49:5b:b3:b7:1f:c2:53:bf:4e:4f:36:19:54:15:90:7a:77:a3:
8c:44:00:a1:d4:46:f4:45:67:86:78:ad:57:0b:e1:2b:47:2b:
81:aa:4c:13:5d:d9:d8:f6:72:c9:58:3b:7a:b0:63:b9:d7:40:
5e:d5:2d:a3:1c:fa:c7:54:2c:c8:47:f2:99:a6:f0:a4:2a:1c:
72:f5:c0:fc:84:16:56:4d:c6:97:55:6e:92:c1:71:51:f3:ca:
aa:6f:0f:b1:39:2a:c0:1b:d5:5c:8a:ca:34:a5:47:e5:f6:3a:
d5:8e:cc:55:31:29:f9:68:16:cb:6f:2e:3f:7d:06:6e:b6:d9:
70:53:71:e7:5c:fb:9e:d0:83:a7:59:9b:11:67:c4:e2:5e:9e:
a0:b7:74:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:30:12 2025 by rpki-client