Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
File: XICE2xnxE9gbZEg5P60cEyxYT80.mft (raw, json)
Hash identifier: UjNf+85n4tPTNcuz0LvzGGktBr6WkF4U+Ta1W61f1B8=
Subject key identifier: F4:62:46:0C:76:0E:96:40:64:FA:CD:CC:BC:6C:E4:B7:B2:CC:BF:8B
Authority key identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
Certificate issuer: /CN=5c8084db19f113d81b6448393fad1c132c584fcd
Certificate serial: 0197BB5996EF9685C63E409FFB0F866E4182
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
Manifest number: 0EBA
Signing time: Sun 29 Jun 2025 11:01:40 +0000
Manifest this update: Sun 29 Jun 2025 11:01:40 +0000
Manifest next update: Mon 30 Jun 2025 11:01:40 +0000
Files and hashes: 1: RopsaNkgpHpRL2oKJRAlnWazjYk.roa (hash: hePdDKhYq7jZJBW0X9xyUlZ0MuRDMypI160xH9eb0s0=)
2: XICE2xnxE9gbZEg5P60cEyxYT80.crl (hash: WJknox7Ig1CW3pFmxtfU7JFFF1cfppQx7SE4jBHmJgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:59:96:ef:96:85:c6:3e:40:9f:fb:0f:86:6e:41:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c8084db19f113d81b6448393fad1c132c584fcd
Validity
Not Before: Jun 29 11:01:40 2025 GMT
Not After : Jun 30 11:01:40 2025 GMT
Subject: CN=f462460c760e964064facdccbc6ce4b7b2ccbf8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8a:36:83:6f:4b:e2:e7:b7:75:db:93:1f:49:
88:61:d0:c4:7d:2a:69:64:b4:d3:62:8c:00:10:e5:
7c:56:71:8b:68:e6:29:13:46:cb:b4:6d:4a:64:64:
01:cb:57:57:63:15:df:3b:06:da:62:44:48:e8:db:
0c:b1:8f:12:73:79:39:e7:ff:02:23:0e:54:35:4a:
0f:fb:43:d8:fa:fb:61:82:a5:8e:34:cf:5d:f1:ba:
f6:8c:05:04:ae:fa:22:9e:4f:1a:86:6c:57:44:a1:
ad:1f:39:8e:bd:88:48:62:66:25:86:82:7a:13:db:
ce:6b:b2:05:79:e2:7d:aa:55:5a:45:0e:5b:a3:44:
1a:8f:be:df:33:53:2e:34:63:90:94:77:3a:ea:69:
d5:0c:97:74:50:5b:f4:d4:62:de:83:6c:c1:b2:2b:
1d:c6:45:98:8d:dc:d3:33:75:37:39:ba:eb:79:9f:
5d:21:c2:c4:94:b7:38:91:3d:11:67:27:32:05:a8:
c6:25:d3:ea:df:ed:09:61:bd:56:8c:ae:67:ee:e9:
e7:87:51:51:36:1d:e4:1a:61:bb:f1:d7:58:57:48:
de:ea:ec:01:00:a6:f9:34:8b:57:a2:06:3d:74:18:
15:69:ff:89:ba:3f:a2:8a:70:ec:45:37:9b:0d:55:
f7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:62:46:0C:76:0E:96:40:64:FA:CD:CC:BC:6C:E4:B7:B2:CC:BF:8B
X509v3 Authority Key Identifier:
keyid:5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:e1:18:71:fb:77:dd:09:d5:ae:3d:98:e6:6d:91:e1:3a:ab:
ef:72:6e:0a:19:f1:4c:38:f6:4d:a9:57:d6:7c:fb:2f:14:11:
3a:e8:6f:65:9f:40:8d:e9:d9:5d:e6:6e:6f:ac:e4:98:8a:bb:
59:b7:80:c1:2f:38:78:b5:29:72:c2:c6:18:26:04:93:e6:02:
93:d5:e6:5a:15:c9:18:a4:3b:c7:bc:a0:66:35:76:77:e9:fb:
e5:10:a3:60:95:56:78:8a:97:a3:f8:95:86:b3:19:f3:aa:18:
00:f9:c5:b1:ba:77:50:85:e3:d3:1e:75:cd:b2:c5:b5:37:29:
49:f8:1d:36:21:6b:57:9f:fc:0d:2c:e7:4d:6f:7e:64:93:64:
af:a3:37:36:da:7b:06:57:52:2b:35:3f:84:0b:cf:41:ff:aa:
2b:2d:7f:a4:49:47:8d:7d:1d:64:f4:26:be:d2:3c:2f:34:d0:
64:5b:de:57:55:1c:75:53:d8:56:4e:bf:46:61:c7:99:06:8f:
4a:34:1d:41:3b:1f:db:a3:27:29:89:d5:73:5e:96:63:2d:6f:
d0:92:4e:04:5d:89:e2:05:59:6d:23:a9:89:51:52:0d:2c:dd:
0b:86:33:f6:b9:c6:2a:c7:63:40:6d:5a:00:25:98:ea:63:fe:
23:f2:d8:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 16:48:43 2025 by rpki-client