Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
File: XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft (raw, json)
Hash identifier: XfaPb/HKk+yxI27V9l8zgjqstO6wZLR1YU/C7PvF0iw=
Subject key identifier: 8E:E4:37:E9:B6:91:4E:20:5C:F4:8E:B6:B8:4D:57:2D:33:83:7A:C2
Authority key identifier: 5E:D6:77:2B:90:21:2E:57:72:49:F7:35:6C:21:8E:D1:06:8B:67:76
Certificate issuer: /CN=5ed6772b90212e577249f7356c218ed1068b6776
Certificate serial: 0197B88F5C0277E4F602DB99B737B908D363
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 22:01:32 +0000
Manifest this update: Sat 28 Jun 2025 22:01:32 +0000
Manifest next update: Sun 29 Jun 2025 22:01:32 +0000
Files and hashes: 1: XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl (hash: i/OjXnnofrcIz2qt8D9sLYTOivDlmABGjzQSMfslxT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:5c:02:77:e4:f6:02:db:99:b7:37:b9:08:d3:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ed6772b90212e577249f7356c218ed1068b6776
Validity
Not Before: Jun 28 22:01:32 2025 GMT
Not After : Jun 29 22:01:32 2025 GMT
Subject: CN=8ee437e9b6914e205cf48eb6b84d572d33837ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c1:0f:d0:df:75:1b:80:03:f9:36:85:8d:70:
18:a8:93:7c:9f:53:d4:18:04:b7:2b:6c:86:c4:2e:
38:2f:00:6e:17:54:73:b4:8f:45:c5:88:3e:1f:3f:
18:3a:78:85:89:82:15:43:f4:db:0a:15:d3:37:ed:
4e:99:41:10:c5:a6:a9:02:a2:1e:a2:7b:da:4a:3e:
81:a7:b4:b3:72:cd:39:7f:8d:46:7c:1c:16:43:3b:
db:2a:72:5c:22:4b:b9:98:ad:81:a9:17:31:24:86:
7b:44:04:00:01:74:8a:72:55:f2:15:1d:69:b1:f4:
ff:c9:74:42:ec:55:97:1a:84:b8:d9:68:1c:99:29:
e0:11:ac:70:0c:3c:b8:e2:5f:cb:0d:62:21:69:23:
1b:cb:b9:95:f5:ab:88:50:f3:b0:db:1d:8c:57:f0:
27:ef:33:01:4b:08:c7:89:2c:21:e4:a0:8d:f4:28:
59:ea:26:f3:2e:34:83:44:34:b6:6d:00:34:22:d7:
d4:60:7b:f5:4c:4c:15:d5:13:cb:31:b2:22:8b:28:
68:96:5f:4e:54:1d:c3:53:46:d9:68:fe:c5:03:27:
18:fb:9b:00:d9:ec:dc:31:11:6f:d2:0d:35:66:4c:
b7:a7:2d:86:08:ad:d0:5e:31:c1:27:5d:cd:ad:85:
2a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E4:37:E9:B6:91:4E:20:5C:F4:8E:B6:B8:4D:57:2D:33:83:7A:C2
X509v3 Authority Key Identifier:
keyid:5E:D6:77:2B:90:21:2E:57:72:49:F7:35:6C:21:8E:D1:06:8B:67:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:09:ad:4e:01:71:37:84:a1:f4:17:14:37:83:a1:b2:80:c9:
14:b5:0a:4d:bc:a8:31:eb:79:6b:0d:1f:77:be:f3:7a:9a:e0:
a5:c3:77:37:8d:85:fd:3e:c9:9c:4b:17:cd:75:6b:6d:5b:a5:
36:2b:3b:60:87:4f:be:f3:25:37:3c:fe:01:92:6b:e2:48:ec:
cd:44:a4:47:ea:b8:80:b1:a6:ee:0c:80:07:2d:7a:c1:1e:12:
c9:75:92:dc:42:57:63:24:69:c1:5c:83:00:1e:88:81:43:a7:
86:5a:fb:8d:bd:ff:71:d1:a6:38:f5:b1:7b:29:92:38:04:ba:
aa:e8:0c:aa:42:5d:53:ea:a6:a6:02:c7:fe:1e:ee:a1:33:9f:
1e:83:60:e7:11:30:32:42:f6:3a:be:f3:00:05:d9:45:6f:da:
8f:11:fe:35:aa:64:a5:ee:90:f2:64:b0:b0:f0:63:45:84:91:
2d:5f:58:44:23:a5:3b:c9:83:9e:21:b6:0b:2a:45:f5:b3:20:
7e:da:9f:30:2c:47:dd:44:67:88:68:89:74:7d:d4:ac:cf:e5:
dd:4b:e7:f6:07:a9:55:e8:0d:ee:a1:2b:78:f2:47:14:a8:50:
48:68:6f:ed:dc:e8:9b:3e:cc:74:92:b1:f4:14:de:33:f2:1c:
bd:09:55:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4j1wCd+T2AtuZtze5CNNjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZDY3NzJiOTAyMTJlNTc3MjQ5ZjczNTZjMjE4ZWQxMDY4
YjY3NzYwHhcNMjUwNjI4MjIwMTMyWhcNMjUwNjI5MjIwMTMyWjAzMTEwLwYDVQQD
Eyg4ZWU0MzdlOWI2OTE0ZTIwNWNmNDhlYjZiODRkNTcyZDMzODM3YWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcEP0N91G4AD+TaFjXAYqJN8n1PU
GAS3K2yGxC44LwBuF1RztI9FxYg+Hz8YOniFiYIVQ/TbChXTN+1OmUEQxaapAqIe
onvaSj6Bp7Szcs05f41GfBwWQzvbKnJcIku5mK2BqRcxJIZ7RAQAAXSKclXyFR1p
sfT/yXRC7FWXGoS42WgcmSngEaxwDDy44l/LDWIhaSMby7mV9auIUPOw2x2MV/An
7zMBSwjHiSwh5KCN9ChZ6ibzLjSDRDS2bQA0ItfUYHv1TEwV1RPLMbIiiyholl9O
VB3DU0bZaP7FAycY+5sA2ezcMRFv0g01Zky3py2GCK3QXjHBJ13NrYUqewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI7kN+m2kU4gXPSOtrhNVy0zg3rCMB8GA1UdIwQY
MBaAFF7WdyuQIS5Xckn3NWwhjtEGi2d2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mNWVlNzYtZWVhZS00MzZjLTg4NDMt
ODYyMTA2ODUzODYwLzEvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9mNWVlNzYtZWVhZS00MzZjLTg4NDMtODYyMTA2ODUzODYw
LzEvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABAmtTgFx
N4Sh9BcUN4OhsoDJFLUKTbyoMet5aw0fd77zeprgpcN3N42F/T7JnEsXzXVrbVul
Nis7YIdPvvMlNzz+AZJr4kjszUSkR+q4gLGm7gyABy16wR4SyXWS3EJXYyRpwVyD
AB6IgUOnhlr7jb3/cdGmOPWxeymSOAS6qugMqkJdU+qmpgLH/h7uoTOfHoNg5xEw
MkL2Or7zAAXZRW/ajxH+Napkpe6Q8mSwsPBjRYSRLV9YRCOlO8mDniG2CypF9bMg
ftqfMCxH3URniGiJdH3UrM/l3Uvn9gepVegN7qErePJHFKhQSGhv7dzomz7MdJKx
9BTeM/IcvQlVfQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:15:04 2025 by rpki-client