Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
File: XX9jQBQHwcx5excDToE9IlT5dz4.mft (raw, json)
Hash identifier: SC9TyR8mxmct5g3aBuC9O5vFhg6LjMLo/r46lXytK8A=
Subject key identifier: 23:7B:A5:2C:1A:61:27:25:91:16:A5:14:B4:59:58:2A:30:DB:85:79
Authority key identifier: 5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
Certificate issuer: /CN=5d7f63401407c1cc797b17034e813d2254f9773e
Certificate serial: 0197B6D7414982A568341DD057EC997CAA44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
Manifest number: 0C4C
Signing time: Sat 28 Jun 2025 14:00:49 +0000
Manifest this update: Sat 28 Jun 2025 14:00:49 +0000
Manifest next update: Sun 29 Jun 2025 14:00:49 +0000
Files and hashes: 1: XX9jQBQHwcx5excDToE9IlT5dz4.crl (hash: QWdv3xAufsDrh5Hr1Lkp/c1Yt6LKeC8vHMh8ssOaJ20=)
2: d_GxW2d1XGEYH2UR9fC88UUW3QY.roa (hash: uor8f2a3ITsSo8ZIn5M2P4KmPLaok++1jFjqHJFf6Ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:41:49:82:a5:68:34:1d:d0:57:ec:99:7c:aa:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7f63401407c1cc797b17034e813d2254f9773e
Validity
Not Before: Jun 28 14:00:49 2025 GMT
Not After : Jun 29 14:00:49 2025 GMT
Subject: CN=237ba52c1a6127259116a514b459582a30db8579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3f:1c:77:28:26:d0:26:11:0f:c8:71:33:47:
6a:ab:61:79:f9:77:74:32:c8:29:5c:39:b7:42:68:
78:bb:5d:f1:86:32:cc:c8:44:78:e4:d1:63:15:99:
f6:77:a1:7a:82:07:63:51:59:68:b3:af:b1:85:c3:
a1:76:11:e7:8e:6c:7b:f0:94:6a:70:62:e9:5f:41:
b8:2c:60:87:7e:7d:46:ad:3f:78:7c:3e:57:df:9e:
f2:03:8e:62:39:39:f7:2e:bd:f1:d1:80:7f:e0:77:
34:9b:8a:e2:40:d6:7a:8e:2b:1a:6e:58:59:7f:53:
7d:9d:a9:10:67:e2:ea:15:88:f7:cc:9f:b1:f8:ab:
9c:a0:33:9a:7c:ae:f3:b4:cd:66:b7:d4:9b:ba:8b:
e3:de:40:32:3c:b2:c5:a9:43:76:12:10:e3:aa:d4:
fb:5d:39:1c:3c:6a:4a:18:e7:48:ca:27:e1:92:fe:
6b:ef:4f:db:44:e4:41:1d:68:a3:b0:79:bc:d9:d4:
95:c8:e2:c9:c3:13:13:ba:44:01:7c:d6:59:c9:b8:
8c:7b:76:00:7d:46:aa:80:68:57:2c:28:df:39:5e:
9e:d3:07:0e:4a:41:98:e3:31:9e:44:69:1a:36:21:
bd:6f:0d:2b:c0:a4:06:6a:87:5c:c3:bc:a9:71:f2:
18:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7B:A5:2C:1A:61:27:25:91:16:A5:14:B4:59:58:2A:30:DB:85:79
X509v3 Authority Key Identifier:
keyid:5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:96:c9:07:0e:00:0e:dc:d3:6b:b1:7b:9b:17:ef:a4:28:6a:
b8:69:d3:00:73:71:4b:5d:98:8b:40:e6:b0:55:0f:1b:a7:2c:
f8:bd:c5:60:3a:11:f8:45:79:78:9c:53:86:39:e9:7b:a7:ef:
6d:16:47:2f:06:a9:6c:e0:dd:e0:0d:d0:f4:f7:0a:b4:0c:37:
e9:a0:42:56:0f:f4:a0:a9:29:35:d5:03:8b:d7:1f:2e:a3:19:
4b:f7:3b:3e:82:e4:20:83:e9:9c:5f:f1:b1:2c:5b:4f:c6:4b:
18:18:1a:dc:48:10:7e:bf:56:95:ae:1a:d0:9f:9e:af:e8:75:
a3:07:02:99:ca:4e:16:37:ca:49:b1:74:91:c5:d9:f8:3d:63:
ef:af:28:ec:1a:46:97:f3:04:43:f8:d7:d4:f4:01:4e:f9:4d:
f3:28:0b:57:87:c2:fb:9a:e2:68:20:61:f1:13:98:39:14:73:
bc:be:2f:43:b2:9f:7c:27:66:bb:3f:16:b4:d1:88:f2:7a:67:
04:76:27:2d:b0:ec:92:45:99:14:66:25:e6:f4:48:84:5f:36:
97:cc:e4:16:08:a0:8c:55:42:df:bb:3e:50:d3:f3:ca:19:31:
47:79:1b:e4:d8:c2:bf:8f:62:19:70:16:35:a3:f7:77:fd:1a:
0a:a1:a7:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:52:35 2025 by rpki-client