Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json)
Hash identifier: YhMEnJ+5kqkYcUb3Mj5baPXKPXGWBwiq1Zr4lePJNw4=
Subject key identifier: A7:B7:4D:A6:D0:01:06:9F:C9:A7:34:AB:28:F0:87:4B:22:21:1F:5E
Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d
Certificate serial: 0197B74576B7C2B47C683EFBA1FAE5D95D71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
Manifest number: 11D5
Signing time: Sat 28 Jun 2025 16:01:12 +0000
Manifest this update: Sat 28 Jun 2025 16:01:12 +0000
Manifest next update: Sun 29 Jun 2025 16:01:12 +0000
Files and hashes: 1: Bu2qohV5DT207In6bmDkzPkl22w.roa (hash: yQgjgxJo0jD6Zb5Cbl39m04H6+9TPpDsNpPjtFWzK98=)
2: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: 3g6agp15nyx6oN4zJ9x+q4FQRt+SvIfSINe/WuqCjWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:76:b7:c2:b4:7c:68:3e:fb:a1:fa:e5:d9:5d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d
Validity
Not Before: Jun 28 16:01:12 2025 GMT
Not After : Jun 29 16:01:12 2025 GMT
Subject: CN=a7b74da6d001069fc9a734ab28f0874b22211f5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fd:02:44:ee:58:46:8e:09:51:e1:59:95:17:
d1:9e:35:c8:5d:88:36:83:0e:a4:e3:4a:fd:7c:cd:
ca:23:d3:92:d1:ed:6d:a3:1b:30:a0:ae:e7:a1:7d:
2a:82:28:eb:31:eb:20:d5:19:6c:55:e9:80:20:66:
ec:f9:c2:15:6a:9e:4d:ab:b3:3e:3b:25:de:67:a6:
99:95:b3:dc:3e:87:3e:76:66:24:71:c1:b2:48:f4:
2a:3f:61:db:1c:95:0b:3a:b4:6e:b6:21:09:26:b3:
ea:ad:bf:89:a8:23:b9:ee:68:b2:5e:59:98:fa:94:
90:00:6f:6a:7a:e1:72:ce:6e:01:d6:6e:c6:1f:6d:
65:4e:36:a8:13:ef:92:2f:86:d4:d3:50:3b:e8:36:
d7:82:2c:26:60:49:f1:0e:1e:16:b1:62:0a:3a:67:
cb:c1:76:42:b2:a7:34:49:13:0d:03:bd:a6:56:8f:
a8:d6:68:db:3e:9d:05:d7:1e:34:3c:f6:1b:3c:5f:
25:00:c4:9a:b1:e3:57:94:45:86:22:13:18:ce:10:
72:c1:01:90:50:d0:8f:80:d8:56:6d:34:56:d1:5d:
0a:c1:12:5e:35:28:5f:9f:2f:ca:63:40:79:97:6f:
e1:12:c3:64:6c:a5:07:28:c0:f2:8d:dd:e6:bd:2a:
6a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B7:4D:A6:D0:01:06:9F:C9:A7:34:AB:28:F0:87:4B:22:21:1F:5E
X509v3 Authority Key Identifier:
keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:66:af:6c:15:a8:08:24:81:ab:d1:05:4e:f0:5b:2d:0b:c6:
15:14:ef:4e:44:a0:51:fd:cc:87:7d:4c:93:ca:cf:47:94:4a:
5a:b4:5e:ad:6b:42:35:6b:c8:9d:43:0b:24:68:52:d5:4b:e0:
d3:1a:cd:ce:6a:65:90:22:bb:a1:2b:4f:17:f2:d9:ad:91:40:
86:45:1a:12:5d:ed:c3:68:e4:54:f2:cc:88:89:f8:dc:8f:64:
a8:25:fb:e2:4c:91:ce:20:36:d5:98:5e:66:71:c5:ed:18:78:
03:e8:e2:09:0b:f0:2a:7e:4e:17:12:24:2c:f1:f3:6d:ff:01:
a1:da:87:78:b7:01:6a:91:45:d4:a1:03:2a:45:ce:de:19:55:
7f:34:d6:90:6e:cb:c4:cb:89:93:04:4f:b9:da:ae:4e:26:a8:
8a:70:37:09:53:7a:36:3e:b4:90:d0:95:ad:77:86:c8:ee:02:
ea:9c:0c:64:55:4f:9b:0b:fa:fd:e4:27:40:d1:92:f1:56:74:
32:26:f6:f8:71:ce:46:52:3d:0e:55:d7:d6:ab:ea:93:66:43:
ef:42:f6:c8:14:2a:75:07:03:4d:7e:e0:ec:3e:be:fb:b2:f3:
2c:49:10:f0:22:84:9a:60:93:c0:9d:f2:44:61:5f:ee:ee:78:
a8:ae:c1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:22:00 2025 by rpki-client