Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
File: xFz9uYA84FcULRh_hrxPVnHX63s.mft (raw, json)
Hash identifier: UYx1minZLlIYwnLuPmBOLI4tW0INGH67yopTsHZGW9Y=
Subject key identifier: 56:76:0D:90:21:B4:92:36:EC:B1:D7:FD:F0:00:B2:37:A1:F2:56:1F
Authority key identifier: C4:5C:FD:B9:80:3C:E0:57:14:2D:18:7F:86:BC:4F:56:71:D7:EB:7B
Certificate issuer: /CN=c45cfdb9803ce057142d187f86bc4f5671d7eb7b
Certificate serial: 0197BA7DAE596826EDB6DBA7A4DB3E88B30C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
Manifest number: 15B1
Signing time: Sun 29 Jun 2025 07:01:28 +0000
Manifest this update: Sun 29 Jun 2025 07:01:28 +0000
Manifest next update: Mon 30 Jun 2025 07:01:28 +0000
Files and hashes: 1: xFz9uYA84FcULRh_hrxPVnHX63s.crl (hash: Hpjkzam064i/7DQxx+tSHxkCNo0XHxkeoekafE7o3YU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:ae:59:68:26:ed:b6:db:a7:a4:db:3e:88:b3:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c45cfdb9803ce057142d187f86bc4f5671d7eb7b
Validity
Not Before: Jun 29 07:01:28 2025 GMT
Not After : Jun 30 07:01:28 2025 GMT
Subject: CN=56760d9021b49236ecb1d7fdf000b237a1f2561f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:be:93:63:72:ac:e9:4b:bd:b8:a9:88:dc:f2:
64:55:33:91:35:9d:96:0c:25:14:b4:d7:51:51:45:
93:b4:7a:ed:d7:c8:3f:ce:39:6e:a5:50:2f:95:53:
db:05:c6:c5:7d:30:4b:34:ed:f8:7f:2e:bb:bd:c4:
fc:a6:70:15:12:ce:f4:73:4c:2e:1b:f9:91:87:32:
56:f1:14:23:68:9f:f3:32:d0:42:c6:51:b5:83:bb:
db:a1:2d:59:3c:c8:53:0d:41:cd:fb:d9:a8:f5:c9:
f6:31:72:da:95:5e:be:31:d8:3b:d5:ba:cb:da:a0:
01:d8:e5:76:53:b5:9c:fb:a0:f3:a0:61:cf:b1:d5:
c1:ea:2b:ac:57:52:28:6e:bf:1c:02:ba:a9:de:ab:
f0:13:f6:d1:4e:f2:de:03:ea:c0:94:b5:ec:6d:47:
12:78:0c:c8:4c:b5:87:e1:3e:de:79:f8:37:0a:b3:
7b:34:0a:96:ec:57:61:cd:80:e4:bc:39:3b:14:c0:
cc:d7:47:ad:e7:a3:1a:9f:3a:98:6b:8c:3d:2d:dc:
a8:62:3a:60:53:a6:5c:c6:b5:b4:a2:37:5d:6b:2d:
10:ed:62:dc:47:36:41:5b:4d:f0:ba:68:b2:50:bb:
6a:db:06:00:5a:40:db:b5:d4:2b:fa:26:37:89:f2:
3c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:76:0D:90:21:B4:92:36:EC:B1:D7:FD:F0:00:B2:37:A1:F2:56:1F
X509v3 Authority Key Identifier:
keyid:C4:5C:FD:B9:80:3C:E0:57:14:2D:18:7F:86:BC:4F:56:71:D7:EB:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:30:db:53:41:05:9c:99:99:dd:c4:d2:2c:4a:2d:9c:8f:d8:
af:ad:cd:7e:8e:d4:f2:44:2b:1b:e9:88:6c:23:6f:7a:37:8c:
9e:df:2b:d5:f3:a3:62:6d:10:ba:89:37:94:8c:4b:e9:e1:fd:
b4:20:87:63:1f:0d:bc:d1:c7:8c:00:46:3f:eb:09:ce:8d:e6:
2a:f5:33:d5:c0:42:78:09:20:13:21:ed:9e:ff:c9:10:fa:d4:
94:9e:2a:53:f1:6a:15:46:0a:fb:d3:d7:47:be:5d:ad:c6:72:
86:02:1d:7a:d2:8a:1c:b3:f3:05:35:06:51:4c:fd:fd:dc:05:
b5:77:c6:cd:8a:a5:ab:b7:e6:6e:49:5f:57:25:c9:a7:ad:42:
5a:09:b0:ab:69:68:12:0b:81:a5:da:f0:a2:b5:03:1a:5a:13:
4d:84:11:e4:e2:ae:1a:5e:1a:e4:82:b9:45:66:1b:76:73:f8:
46:0c:43:d2:1c:78:7e:df:23:31:43:75:7e:0b:46:3d:9c:e0:
1e:ce:65:90:64:1c:cc:d9:ec:5e:dd:30:f4:a5:4c:10:08:bd:
13:65:8b:9f:8b:84:c3:d5:c2:c6:cf:4f:ec:f7:82:ac:8c:3f:
ea:f2:b1:e9:d4:40:11:59:a8:c8:18:9f:6d:0e:64:98:0b:6b:
c2:a0:7b:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6fa5ZaCbtttunpNs+iLMMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0NWNmZGI5ODAzY2UwNTcxNDJkMTg3Zjg2YmM0ZjU2NzFk
N2ViN2IwHhcNMjUwNjI5MDcwMTI4WhcNMjUwNjMwMDcwMTI4WjAzMTEwLwYDVQQD
Eyg1Njc2MGQ5MDIxYjQ5MjM2ZWNiMWQ3ZmRmMDAwYjIzN2ExZjI1NjFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuL6TY3Ks6Uu9uKmI3PJkVTORNZ2W
DCUUtNdRUUWTtHrt18g/zjlupVAvlVPbBcbFfTBLNO34fy67vcT8pnAVEs70c0wu
G/mRhzJW8RQjaJ/zMtBCxlG1g7vboS1ZPMhTDUHN+9mo9cn2MXLalV6+Mdg71brL
2qAB2OV2U7Wc+6DzoGHPsdXB6iusV1Iobr8cArqp3qvwE/bRTvLeA+rAlLXsbUcS
eAzITLWH4T7eefg3CrN7NAqW7FdhzYDkvDk7FMDM10et56ManzqYa4w9LdyoYjpg
U6ZcxrW0ojdday0Q7WLcRzZBW03wumiyULtq2wYAWkDbtdQr+iY3ifI8mwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFZ2DZAhtJI27LHX/fAAsjeh8lYfMB8GA1UdIwQY
MBaAFMRc/bmAPOBXFC0Yf4a8T1Zx1+t7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEZ6OXVZQTg0RmNVTFJoX2hyeFBWbkhYNjNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9iMjU0YmQtMTQ1Yy00MDE5LTg4YTQt
ZDVhMTc3MTc4ZjRhLzEveEZ6OXVZQTg0RmNVTFJoX2hyeFBWbkhYNjNzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9iMjU0YmQtMTQ1Yy00MDE5LTg4YTQtZDVhMTc3MTc4ZjRh
LzEveEZ6OXVZQTg0RmNVTFJoX2hyeFBWbkhYNjNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnzDbU0EF
nJmZ3cTSLEotnI/Yr63Nfo7U8kQrG+mIbCNvejeMnt8r1fOjYm0Quok3lIxL6eH9
tCCHYx8NvNHHjABGP+sJzo3mKvUz1cBCeAkgEyHtnv/JEPrUlJ4qU/FqFUYK+9PX
R75drcZyhgIdetKKHLPzBTUGUUz9/dwFtXfGzYqlq7fmbklfVyXJp61CWgmwq2lo
EguBpdrworUDGloTTYQR5OKuGl4a5IK5RWYbdnP4RgxD0hx4ft8jMUN1fgtGPZzg
Hs5lkGQczNnsXt0w9KVMEAi9E2WLn4uEw9XCxs9P7PeCrIw/6vKx6dRAEVmoyBif
bQ5kmAtrwqB7mQ==
-----END CERTIFICATE-----
Generated at Sun Jun 29 09:17:50 2025 by rpki-client