Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft
File: XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft (raw, json)
Hash identifier: mI415fXV6QYfmp2Ic0f+OGyV8prD7otPd7vLJsp9qME=
Subject key identifier: 2F:59:C4:8B:82:A4:A3:DB:D8:3A:22:06:1F:D3:48:5B:A9:9F:BF:03
Authority key identifier: 5E:52:14:15:8A:F3:10:FF:A9:C3:15:29:83:43:F4:C3:E6:6A:EC:9A
Certificate issuer: /CN=5e5214158af310ffa9c315298343f4c3e66aec9a
Certificate serial: 0197B70EFD54A90316B57D1D48990D7F7D67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft
Manifest number: 0601
Signing time: Sat 28 Jun 2025 15:01:42 +0000
Manifest this update: Sat 28 Jun 2025 15:01:42 +0000
Manifest next update: Sun 29 Jun 2025 15:01:42 +0000
Files and hashes: 1: XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.crl (hash: nInHcLtT2tZVFyKofLODllnEi2iqpimDm7rZ/LEHUbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:fd:54:a9:03:16:b5:7d:1d:48:99:0d:7f:7d:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5214158af310ffa9c315298343f4c3e66aec9a
Validity
Not Before: Jun 28 15:01:42 2025 GMT
Not After : Jun 29 15:01:42 2025 GMT
Subject: CN=2f59c48b82a4a3dbd83a22061fd3485ba99fbf03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a4:5c:d7:3f:c0:81:02:69:f3:28:ab:9e:3d:
25:2b:ec:35:23:f2:b4:7c:fe:20:ed:00:43:52:b6:
e6:c4:e5:bb:fc:94:d4:c9:88:1c:b5:77:e6:3e:17:
1e:46:8c:53:e2:a2:00:c0:a6:03:46:17:cb:75:aa:
a1:af:d7:94:fe:10:7b:0b:0d:5b:a1:13:18:72:e1:
e2:7f:d6:09:6d:0a:27:dd:44:af:35:ec:9e:e4:76:
c7:27:4b:f0:3c:c0:54:1e:67:95:fd:ae:5f:3b:21:
63:60:1b:80:75:b7:2d:46:43:5a:55:36:ff:7e:57:
b4:27:46:41:be:e2:56:22:e0:f8:96:8a:d3:67:23:
06:16:53:7a:cb:b2:74:69:59:62:b2:40:53:29:49:
89:f8:7e:2f:78:7d:66:31:41:f2:37:a1:db:88:8f:
4d:63:a1:d7:13:87:a4:f0:39:6e:5d:df:b4:79:81:
81:f8:93:ed:c9:65:4b:e0:01:39:e5:d7:8e:29:c0:
0c:82:c8:e4:e0:ff:7c:31:35:df:55:83:ac:e4:cd:
cf:da:08:6c:31:24:f6:77:5b:d6:01:77:cc:08:69:
65:aa:3f:78:54:7a:a2:83:cd:af:86:73:ec:e7:4e:
1a:18:11:ac:fd:f0:41:03:3a:bb:ca:f5:24:0d:6c:
e3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:59:C4:8B:82:A4:A3:DB:D8:3A:22:06:1F:D3:48:5B:A9:9F:BF:03
X509v3 Authority Key Identifier:
keyid:5E:52:14:15:8A:F3:10:FF:A9:C3:15:29:83:43:F4:C3:E6:6A:EC:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a992fe-c1cf-4de8-bbb0-f96f6f769838/1/XlIUFYrzEP-pwxUpg0P0w-Zq7Jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:71:cc:00:36:f0:1f:78:09:29:61:9a:79:c4:dd:3e:a3:ba:
6d:48:87:ad:8f:b8:b3:25:57:00:d2:6a:ae:f2:90:17:fc:bd:
57:16:fb:04:32:27:ae:ae:7e:e6:5b:26:ec:4e:b2:67:2a:3e:
be:32:e1:78:94:8e:c5:92:df:68:d1:b1:a7:c6:1d:3e:55:63:
85:4c:f5:03:98:f3:15:50:2e:a3:94:36:d4:01:f4:3f:e3:c2:
b6:74:da:5e:ec:fe:06:70:36:80:2d:4d:05:15:27:a2:82:a8:
5e:9a:10:e7:5e:64:26:5d:2e:01:1f:e1:91:61:75:4e:bf:13:
b3:8d:d9:b7:bf:9f:f4:a0:db:42:29:78:fb:0d:36:13:68:52:
cc:03:48:de:1a:8a:88:a8:71:1c:90:4f:d1:ed:8e:5f:3d:98:
e6:ce:20:96:bf:00:50:2a:01:7b:a2:d4:30:e1:68:96:27:5e:
c8:bd:9d:83:55:ae:8f:6a:ab:41:d5:44:1e:ac:b7:f3:00:62:
3b:e0:b4:d3:dd:3b:4c:31:06:46:06:b5:19:14:54:4d:59:34:
f3:6d:b6:de:ac:c8:2c:3d:c5:13:52:f0:97:77:23:a7:5e:48:
cb:7e:6c:9e:47:15:db:21:f4:90:9f:b3:c9:83:ab:3b:2d:cc:
03:ca:fd:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:11:06 2025 by rpki-client