Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
File: XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft (raw, json)
Hash identifier: acxZF/WJVLnw6BRYANIL5UxtuDJn8U1TdqztF0RXbvQ=
Subject key identifier: 72:93:32:4F:A9:28:68:AA:6D:6A:FB:31:74:77:99:3C:AD:5F:5C:41
Authority key identifier: 5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36
Certificate issuer: /CN=5de458f21d406466bdf68240f505eefd197ba936
Certificate serial: 0197B5FBC8725C291504F6E537B42D798E0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 10:01:06 +0000
Manifest this update: Sat 28 Jun 2025 10:01:06 +0000
Manifest next update: Sun 29 Jun 2025 10:01:06 +0000
Files and hashes: 1: 8x6SWTgZKaQldoz2iRV_QSdqbtg.roa (hash: LzTLrE8ZLdriPR/s+lretToH9KQur6QiGymJnQCIGiw=)
2: XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl (hash: HDP3u2Y0JEOPVADHxTX4j/x50/YF9wCttvcVSaZLjnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:c8:72:5c:29:15:04:f6:e5:37:b4:2d:79:8e:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de458f21d406466bdf68240f505eefd197ba936
Validity
Not Before: Jun 28 10:01:06 2025 GMT
Not After : Jun 29 10:01:06 2025 GMT
Subject: CN=7293324fa92868aa6d6afb317477993cad5f5c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fe:11:fb:37:98:96:2f:de:85:1a:37:76:8f:
22:c9:ec:b7:8b:c6:e6:d9:19:62:d6:04:1c:9c:31:
2a:cc:6f:1e:91:71:0f:9b:6a:dd:ff:95:a4:ee:c0:
a8:0e:53:6c:8a:0e:8f:d0:15:ed:7e:38:2f:5b:79:
16:9b:c8:ab:df:59:99:7f:77:8b:80:e1:77:f1:b0:
55:4c:33:e9:42:e3:86:bc:5f:67:4a:99:3f:bd:47:
a5:aa:c8:a8:b6:6d:1a:b7:9c:6b:75:5e:c9:82:60:
a1:e9:13:91:14:2c:d8:4a:ad:f7:61:1a:fb:9b:16:
f7:cf:cb:88:83:2b:54:44:33:3c:4b:87:63:c3:1f:
fa:af:2a:a7:89:d5:3d:b6:25:45:b1:30:01:ff:54:
66:9a:d8:95:a0:8f:2b:4e:45:0b:1f:46:95:71:d6:
a9:43:bc:04:ea:91:cc:b0:96:68:89:3b:04:2f:24:
05:da:66:1c:61:a8:1d:45:68:78:cb:1f:0a:3e:f8:
bf:9a:6c:57:d0:d4:72:5f:d7:be:46:2e:b5:3f:4c:
45:2e:50:96:b3:c6:77:6d:be:25:91:90:77:c4:d3:
c6:1a:2e:54:e1:41:cc:0f:b7:a0:4f:6c:e9:7d:a1:
b9:0b:e3:15:6b:02:01:c9:0e:36:32:1e:dc:6a:ee:
ae:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:93:32:4F:A9:28:68:AA:6D:6A:FB:31:74:77:99:3C:AD:5F:5C:41
X509v3 Authority Key Identifier:
keyid:5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:62:33:06:f6:1c:cc:d5:a1:2c:01:26:80:d5:d5:fa:07:e6:
20:66:3e:90:c2:03:4d:b7:bb:6b:a7:6e:fa:30:74:b1:80:43:
54:03:2d:39:72:b4:0d:ec:fc:9e:4e:f2:7a:3c:17:d9:77:c8:
a7:18:ed:b7:47:2e:83:61:a8:96:5a:8f:7e:f7:3b:c3:8c:8b:
39:8f:0e:c5:a8:cd:c6:b5:3d:7e:14:96:72:6c:83:bd:01:f3:
68:de:57:2d:de:a5:60:be:c4:08:fd:f1:2a:4c:68:6b:99:f3:
b9:01:69:42:75:c4:c0:e9:88:2d:41:bf:f4:06:c5:26:dc:18:
cd:0c:09:9c:95:94:0a:14:37:69:fc:b0:00:d3:b6:45:f6:9a:
ad:99:eb:20:4a:9a:2a:0a:72:fb:5d:5f:1c:9b:65:5f:80:49:
b4:69:71:d0:8a:44:ad:14:1c:04:00:b2:85:14:ab:d9:75:5e:
7a:56:51:39:0d:cc:17:c4:39:e2:1a:c4:b6:b5:0e:db:f9:48:
b3:54:25:6c:01:9a:58:be:cc:60:9d:19:fe:52:35:de:97:de:
52:0e:b5:65:eb:c6:5c:50:53:02:c6:b4:f4:17:44:66:ae:0c:
8c:0b:36:3f:15:0d:43:e7:c4:90:03:5f:01:dd:6b:bf:27:ab:
b3:06:75:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:28:52 2025 by rpki-client