Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
File: XHbv8miEvwBiB9cis7AaRNK1YZk.mft (raw, json)
Hash identifier: QvKfJ75AVaGdPKhQvI6C8coB8ieXGsPPGxVi5rM6mK8=
Subject key identifier: 87:F3:F8:1D:3E:23:F1:9B:D1:CB:15:C3:BD:BD:54:87:8E:09:6E:D3
Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199
Certificate serial: 0197B6A12AA1056A3601FBF896E372E0FAE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
Manifest number: 0DEC
Signing time: Sat 28 Jun 2025 13:01:44 +0000
Manifest this update: Sat 28 Jun 2025 13:01:44 +0000
Manifest next update: Sun 29 Jun 2025 13:01:44 +0000
Files and hashes: 1: XHbv8miEvwBiB9cis7AaRNK1YZk.crl (hash: u9JADEYcWFE1/dcqgDMxGOjeisVdj7hDuvm0CoatpFE=)
2: aeqC4EE0KUZ0Hdgey5muRSCYEvc.roa (hash: aH7XcxnHv3qEq7LQXqlBVrjotePFAy5nc/77ZI52Ock=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:2a:a1:05:6a:36:01:fb:f8:96:e3:72:e0:fa:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199
Validity
Not Before: Jun 28 13:01:44 2025 GMT
Not After : Jun 29 13:01:44 2025 GMT
Subject: CN=87f3f81d3e23f19bd1cb15c3bdbd54878e096ed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:17:37:02:64:1e:7e:f5:67:d5:cb:6e:61:36:
98:57:ba:08:4b:aa:38:18:b4:80:9e:0a:4f:3d:36:
73:e5:45:f9:00:69:23:ae:8e:ce:a8:1a:1d:50:df:
86:0e:62:32:54:7d:48:9c:db:38:cf:c5:ad:c5:e2:
17:be:dd:74:d7:fc:ca:6b:68:95:ca:e9:d0:d1:f4:
39:ca:8e:e6:e8:55:b4:dd:99:d4:94:58:cd:79:6c:
cf:19:7d:41:fa:44:35:ea:4b:be:85:1b:10:b0:66:
23:3e:d5:53:02:0e:b1:91:97:18:50:2e:97:7f:ec:
46:44:5b:58:2f:7d:bf:df:10:d1:77:61:e0:d6:09:
7f:ec:ea:d0:32:22:30:bf:71:2f:ea:6f:c8:80:53:
89:cd:54:75:37:5c:4b:2c:67:99:3b:8b:9f:18:eb:
80:8a:be:3b:96:9d:c6:21:ee:ef:84:01:61:b1:b9:
5a:d2:c7:c3:ff:e9:1f:bd:ba:47:a9:da:44:c9:6a:
c9:50:c5:20:57:3b:10:6f:63:1d:b6:18:85:59:0a:
d3:d7:98:5a:74:6a:b7:29:30:d1:56:df:06:00:5a:
82:17:35:e1:b2:4a:a1:76:83:4e:b8:eb:4d:78:76:
9c:aa:5b:9d:e9:dc:12:a4:ab:7f:de:80:1c:9c:ae:
be:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F3:F8:1D:3E:23:F1:9B:D1:CB:15:C3:BD:BD:54:87:8E:09:6E:D3
X509v3 Authority Key Identifier:
keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:62:85:c9:f1:2d:35:84:84:83:5f:ed:86:bb:c9:f4:a2:c8:
9d:16:18:66:5a:6e:c8:78:a8:f4:cd:1f:06:c2:23:c9:2b:9d:
c3:d4:36:73:2f:8d:53:9f:26:40:9c:3a:98:93:3e:2e:31:96:
1b:0a:39:07:53:f7:3c:2a:69:56:02:33:f4:05:a0:13:2d:9f:
4a:eb:01:46:87:0f:d2:0a:0f:0e:1b:28:57:51:08:50:cc:d3:
7c:a1:a3:ef:bc:71:6a:10:b5:58:62:cd:d9:78:51:ef:be:b1:
f8:31:cc:dd:6c:39:c5:b7:22:e4:75:d9:2e:50:7d:57:34:5d:
ff:d8:19:69:26:cd:0e:e3:3a:13:74:e8:6b:8f:69:63:6d:ed:
36:b9:4d:92:25:73:01:1d:5d:21:3a:b8:6f:53:76:e3:ea:93:
a6:09:67:ad:c6:64:e6:78:77:36:1e:c4:2a:34:a2:8a:4f:9c:
d7:f6:1d:61:89:bf:ce:bb:46:eb:03:d1:78:72:4e:e0:94:96:
b9:78:a2:8f:5e:61:7c:74:f8:56:29:b3:f6:78:65:ff:f2:7a:
6a:5f:9d:3d:76:69:93:bb:22:4d:db:d9:88:f3:da:fe:ec:17:
66:65:e4:ea:5d:08:4c:39:51:37:15:d4:30:ce:d1:e3:f1:13:
74:63:a3:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:59:42 2025 by rpki-client