
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
File: XEzh8ZMxT2k5vxw_nawjafYpWFo.mft (raw, json)
Hash identifier: /EMmxX0gIZ4FHYfYbLYug8bu4VQMcogQ3jtQV4k1ZcU=
Subject key identifier: 03:1E:6C:54:35:A1:E5:F4:56:CD:ED:D8:06:59:4E:0B:13:9E:62:EB
Authority key identifier: 5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A
Certificate issuer: /CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a
Certificate serial: 0197B8213734456B851B806EC58BDB2085A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 20:01:13 +0000
Manifest this update: Sat 28 Jun 2025 20:01:13 +0000
Manifest next update: Sun 29 Jun 2025 20:01:13 +0000
Files and hashes: 1: NeVlE-PzPHn5ppNlSgj87PhylgM.roa (hash: +i1WA9cuFFrQg1WFh0BGIYlKWMIvdmOqwrDe9C8B0aM=)
2: XEzh8ZMxT2k5vxw_nawjafYpWFo.crl (hash: wHdRwOmimEmvMb6lNvLKdfQvgJUe6jwOAhbQDi6bPp8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:37:34:45:6b:85:1b:80:6e:c5:8b:db:20:85:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a
Validity
Not Before: Jun 28 20:01:13 2025 GMT
Not After : Jun 29 20:01:13 2025 GMT
Subject: CN=031e6c5435a1e5f456cdedd806594e0b139e62eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:88:fe:b0:22:11:15:e7:54:41:47:57:02:71:
dd:da:1c:c9:97:b8:c8:7c:e9:f2:29:4b:a0:75:26:
37:42:90:dd:e6:31:96:3c:da:e0:46:33:f5:5d:de:
4f:97:72:93:23:26:32:a8:b9:19:2d:71:06:fc:a9:
83:63:3a:26:aa:56:bb:44:16:4b:b5:13:f3:68:96:
1e:16:14:1c:1a:9c:b1:e8:b2:00:e8:7f:cd:67:c6:
58:9f:4a:55:9c:90:cb:01:a4:e5:04:78:ba:5d:8a:
ef:14:b3:d4:c9:68:5e:ff:eb:e6:b3:c2:fd:26:29:
9c:13:15:00:9c:dc:ce:52:8f:9e:e6:87:85:11:4f:
c3:ea:ab:77:9c:20:a4:36:4e:bb:3b:7f:54:07:b3:
72:5d:3f:80:f3:7f:f1:fd:7f:b2:91:3a:0b:19:71:
bc:e2:34:99:eb:a2:97:13:e7:6f:4d:95:d2:9d:b4:
1c:38:c2:68:86:6f:7e:2e:02:c2:1f:e7:bb:6b:d2:
af:40:11:f2:38:ca:1d:6c:a8:db:53:16:0d:ed:c8:
66:4f:31:83:06:25:d6:b9:57:a5:44:6c:9c:f9:e1:
dc:49:45:80:1b:81:ea:53:9f:43:e4:9a:cc:11:15:
f4:77:6b:f0:c0:3d:5d:ec:49:3e:29:a5:15:a1:db:
74:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:1E:6C:54:35:A1:E5:F4:56:CD:ED:D8:06:59:4E:0B:13:9E:62:EB
X509v3 Authority Key Identifier:
keyid:5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:62:45:2d:0b:c8:b7:36:58:96:72:6a:2a:7f:53:da:b7:05:
00:e5:a5:a8:8e:c7:f1:60:ba:a0:ce:2c:c5:b6:ac:bb:a8:12:
cb:6a:c8:6f:d0:bd:69:42:23:50:88:81:3e:40:bf:a5:c2:90:
4a:af:5a:32:7d:e3:e9:71:d5:d1:25:e8:14:1f:16:1a:e4:40:
b7:24:e1:18:0d:45:1d:b4:5f:f4:39:21:60:f2:45:3a:7b:e9:
c8:93:c4:79:95:be:21:1a:d1:80:85:4e:d9:c4:6b:82:f9:73:
3f:93:81:04:c0:6d:c6:02:d0:fd:a6:88:fc:8a:01:0d:e6:6f:
27:71:15:e2:66:fd:1a:2f:8b:fc:66:a9:53:ab:0f:3b:5a:67:
14:25:23:f6:f3:23:28:2d:ec:49:c5:74:b6:6e:c9:fb:03:e8:
30:0a:e1:38:30:07:6b:90:64:94:9a:26:1b:a6:3c:0e:db:fb:
e2:7e:43:2a:d2:96:99:1f:55:71:a5:1b:5f:85:d6:a6:71:f9:
09:1e:1f:29:27:c0:38:7c:c8:12:ca:37:a7:97:c2:17:aa:1c:
d0:5e:99:80:b7:eb:91:12:22:3e:8b:2a:25:16:ac:4d:22:34:
6f:f3:49:f4:cd:79:56:e7:00:0c:55:53:6f:7e:20:bb:f8:e7:
4b:b6:72:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:17:40 2025 by rpki-client