Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: AjnZbNXTBHv+DvJtoCOoBrWx/a/a6K3y8RA9eAoWqn4=
Subject key identifier: 9C:28:8E:FB:1D:EE:6F:0C:B9:9A:D4:A9:A6:11:76:53:E5:B9:05:51
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 0197B5C4D1F693DA879B7FDA1F42DACC7164
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 0AC4
Signing time: Sat 28 Jun 2025 09:01:04 +0000
Manifest this update: Sat 28 Jun 2025 09:01:04 +0000
Manifest next update: Sun 29 Jun 2025 09:01:04 +0000
Files and hashes: 1: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: QNWMciKcdKwFpXXsvUvMB0m2Ftol8Txii15hSCvMAK8=)
2: vKqft3GpUgOOXSf2VjTKls-pWMw.roa (hash: 5Tvu15lYIVA9/K7Qk9i7l4tCbiMQ02zrBkIoUMRXadY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:d1:f6:93:da:87:9b:7f:da:1f:42:da:cc:71:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: Jun 28 09:01:04 2025 GMT
Not After : Jun 29 09:01:04 2025 GMT
Subject: CN=9c288efb1dee6f0cb99ad4a9a6117653e5b90551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bf:2d:ba:49:20:05:19:5d:d2:33:30:4f:4c:
20:fc:35:38:64:94:4b:b8:5d:d0:b6:85:bd:fa:bf:
85:d1:41:4f:3d:fc:7c:95:f8:5f:d6:12:96:f6:32:
9c:02:46:4f:e8:fd:a2:a3:9e:b7:ca:1c:b3:0a:bd:
84:f7:b5:da:ff:f5:9c:c6:d6:1d:0b:bf:a7:fc:79:
9d:3d:9e:fa:73:39:96:97:cb:fa:c3:d5:02:4c:22:
27:b0:2b:3f:8f:15:81:62:98:ab:0d:96:7d:47:0a:
56:41:4a:36:3f:8f:3a:7a:57:13:c9:ef:b4:a6:57:
cf:6c:4c:3d:b4:8c:1e:98:5d:13:e6:26:18:f4:3a:
f1:0c:e5:32:9f:a6:f0:2c:1c:ae:a2:d4:4b:ba:4b:
6c:83:89:74:55:7d:7f:27:d7:b0:56:b8:65:41:4c:
0e:25:d8:1a:ce:63:33:f2:04:1f:b0:9f:8f:e4:a4:
fa:e5:69:19:3b:b0:b1:57:97:4d:e3:91:c3:ef:c8:
a8:86:0f:50:01:f1:91:1a:9a:78:d1:96:2b:26:71:
75:66:3e:06:1b:a8:6c:8c:27:a5:fe:4b:c5:9c:10:
73:f3:69:79:7c:63:4b:bd:53:df:1a:fd:e9:df:37:
1e:af:ff:92:c6:4a:2b:1d:bf:ef:fc:54:c7:6b:a4:
f8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:28:8E:FB:1D:EE:6F:0C:B9:9A:D4:A9:A6:11:76:53:E5:B9:05:51
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:ee:7d:8f:1d:1b:69:2a:bf:51:39:56:1a:6c:68:c5:31:fa:
b6:c5:a3:22:9b:17:90:70:04:fe:94:d3:99:eb:2d:f5:f8:bb:
d9:84:5f:f6:ca:e2:88:1c:9c:dc:22:14:13:6d:cb:13:e5:f4:
a0:59:a5:6d:c8:5f:ce:9f:66:72:da:32:2d:f6:fc:92:d6:80:
c2:49:c5:0f:7b:ad:02:c9:71:f1:43:de:b2:e3:a1:3c:73:4b:
30:7d:7e:36:78:7c:b2:b1:15:0a:76:d2:47:79:83:b0:a3:48:
74:1d:3d:3e:1e:7a:06:3a:25:93:b1:7f:0f:80:ac:56:4d:fc:
ea:81:0b:62:4e:b4:7b:55:b5:0b:c3:74:6a:88:55:84:92:24:
05:47:86:3f:10:51:d2:3e:7a:24:1b:0c:74:7f:6b:22:85:71:
c8:66:4d:f0:96:ad:43:3f:eb:f0:a6:7f:94:91:e3:0b:56:47:
18:0b:4c:b1:f8:d8:ee:db:bc:bb:f9:27:f8:85:5f:7f:e8:57:
3e:7c:cd:c9:1d:5a:9b:ff:7a:df:a5:71:c5:0c:7f:39:bf:0d:
62:e7:22:58:b3:8f:45:ce:6b:b9:79:3c:15:e8:05:52:c6:f0:
be:8a:6c:39:7c:59:87:70:65:3d:be:c1:9c:2b:f9:62:6c:78:
ab:67:28:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:53:41 2025 by rpki-client