Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
File: XeYTaCVSAQKY86aUoA18WQYGC5U.mft (raw, json)
Hash identifier: MEcCbfV6SQ0jY7h81n4Nm3sKrUSkgf6M931TYAgYcY0=
Subject key identifier: F5:91:37:3A:07:B0:BA:78:33:72:7F:A4:EA:E9:B8:F8:EE:4D:88:11
Authority key identifier: 5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
Certificate issuer: /CN=5de613682552010298f3a694a00d7c5906060b95
Certificate serial: 0197B7455A4EE8C384433763BB150DFEBA68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 16:01:04 +0000
Manifest this update: Sat 28 Jun 2025 16:01:04 +0000
Manifest next update: Sun 29 Jun 2025 16:01:04 +0000
Files and hashes: 1: XeYTaCVSAQKY86aUoA18WQYGC5U.crl (hash: 8MnjzzS2BHqDwyWWEwLbw2UPl9eoadVIta25LWRoCW8=)
2: auYlcZnEp-yqavQsok9_TPLHAq0.roa (hash: kbe3quRrlIxTjuDhfKrAisNkV8HOTBuxWR/raJshlU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:5a:4e:e8:c3:84:43:37:63:bb:15:0d:fe:ba:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de613682552010298f3a694a00d7c5906060b95
Validity
Not Before: Jun 28 16:01:04 2025 GMT
Not After : Jun 29 16:01:04 2025 GMT
Subject: CN=f591373a07b0ba7833727fa4eae9b8f8ee4d8811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ee:ca:b3:61:f3:b0:2e:aa:ad:35:cf:b9:4c:
83:57:4f:43:f9:31:02:21:00:b2:7e:bd:09:9a:a9:
ce:6f:34:8e:dd:f1:30:90:c6:d9:c6:5f:be:d6:39:
4e:00:0c:1c:e7:cb:27:7a:84:79:74:f3:d3:6b:56:
7d:d8:c2:36:38:bb:e8:d0:77:d9:13:a5:6d:52:bb:
af:4a:37:b7:bf:b3:d0:bb:05:8e:19:f6:08:80:43:
51:03:13:c1:ea:89:7f:91:85:e8:2a:6e:17:ca:53:
38:21:28:e7:fc:c9:1a:f3:84:9e:63:bc:c2:8e:91:
d9:9e:19:85:72:2b:72:a1:a2:23:58:7b:7d:b1:c0:
1c:c3:9d:38:7b:34:40:c5:d8:98:b5:72:5a:8b:ca:
53:ec:51:f0:42:b8:99:65:7b:f3:2e:2f:c6:c9:85:
b6:d5:66:37:30:99:ba:aa:21:6b:84:58:8d:a6:e5:
80:88:4a:27:55:72:ed:85:2a:e4:bd:9f:7f:0c:df:
39:15:7a:e9:11:c5:d9:ed:17:52:08:8b:f8:60:37:
6b:3d:b8:1e:c0:0b:41:2b:1b:7e:51:96:a5:b6:c8:
2f:46:91:65:fc:59:6c:5e:14:96:07:1c:61:75:ae:
2a:62:f7:f0:dd:0c:0e:fe:54:26:d5:0e:b7:51:e9:
f7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:91:37:3A:07:B0:BA:78:33:72:7F:A4:EA:E9:B8:F8:EE:4D:88:11
X509v3 Authority Key Identifier:
keyid:5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:4c:9f:3b:48:24:f3:e8:5b:fd:fe:e8:c8:de:e4:f9:e3:e3:
36:21:44:fa:a5:df:48:94:16:ee:c2:2d:9e:6d:35:16:0d:bb:
15:6f:14:f0:da:78:8f:ea:d9:7b:72:8a:99:66:21:2e:d7:e7:
77:d6:b4:52:d2:23:56:a3:d5:74:b9:f9:09:d1:fd:0b:77:b0:
fc:18:78:f0:e3:c5:8d:43:61:0a:85:5a:fd:63:c6:94:d6:1d:
24:20:4a:70:44:45:59:3b:de:3c:73:22:0c:b7:98:ab:aa:c8:
f6:d2:37:5f:c2:52:56:66:96:5c:de:5c:2e:30:60:70:0b:d8:
19:f2:6e:b4:d2:e2:4b:aa:8f:3b:5e:4b:12:de:7e:b4:8d:aa:
d7:4a:57:c1:c2:5a:3d:df:dc:60:5f:a0:c3:99:dd:c8:a5:e2:
21:2c:a6:06:22:34:63:1c:14:38:1b:7b:bc:81:c2:9e:20:ce:
a2:8d:b9:5b:fd:f7:b0:4e:ba:c2:49:41:29:f1:c9:d6:88:6a:
dc:2a:43:23:ca:36:48:6f:71:5f:a8:01:73:e7:3d:87:d1:7a:
22:3f:eb:a0:67:3f:74:1a:31:4b:83:54:65:22:1a:c0:61:e2:
7f:0a:a8:5b:31:81:db:1c:9e:3c:08:a8:b6:4b:78:47:72:65:
3b:6f:8f:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:33:48 2025 by rpki-client