Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
File: XQwn-FWB4ue94MmPvVS-HUlnBRc.mft (raw, json)
Hash identifier: UX82yECJuGIVVspvPfEFN6ovWqAjHjB/tyxcdlO2g1A=
Subject key identifier: 3D:6D:67:88:43:16:76:57:EE:39:7F:0D:45:76:05:2D:F8:06:BF:08
Authority key identifier: 5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
Certificate issuer: /CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Certificate serial: 0197B5C4D8F1F5CFF1B79A8613B730BB438B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 09:01:05 +0000
Manifest this update: Sat 28 Jun 2025 09:01:05 +0000
Manifest next update: Sun 29 Jun 2025 09:01:05 +0000
Files and hashes: 1: 5lc5ZmxcIf_S-qtTdxwVFYdfw74.roa (hash: nWQ6LzHmMcNUWFVJjD8F6A2IBDinnQ/3GkZ+tOcMhcc=)
2: XQwn-FWB4ue94MmPvVS-HUlnBRc.crl (hash: XWApFFTFNwsdaSE64jy7R30L9Wggwf0dObN7CdDEUZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:d8:f1:f5:cf:f1:b7:9a:86:13:b7:30:bb:43:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Validity
Not Before: Jun 28 09:01:05 2025 GMT
Not After : Jun 29 09:01:05 2025 GMT
Subject: CN=3d6d678843167657ee397f0d4576052df806bf08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:65:bf:cb:82:26:5f:b2:9f:e3:52:3d:49:0c:
1f:94:0c:a1:18:0d:b7:9e:61:ae:1b:3f:a9:bf:71:
96:50:85:ae:64:96:d6:f7:24:56:14:3c:16:32:ae:
d9:92:4e:1a:e0:c2:3d:30:ad:d5:a7:0e:b7:7c:1e:
62:e7:58:7b:da:45:06:6b:8d:0f:23:85:4c:0f:02:
1c:74:56:72:90:32:3e:b9:ed:a9:88:ca:f1:ba:6f:
65:9e:06:a2:5c:20:0c:12:7d:b2:ac:06:c7:08:4d:
70:75:a8:ae:1b:3a:c9:b8:04:0e:e8:be:5b:61:58:
a5:3e:5a:f6:16:4c:9f:f1:b4:50:52:54:52:02:18:
67:83:32:72:34:c4:79:d9:4c:16:73:51:76:07:94:
3d:91:d3:0f:d8:23:a9:8c:02:ed:c4:db:a3:43:97:
d1:d2:69:83:e1:38:7c:50:01:2e:ec:d3:20:0f:2a:
51:83:20:6a:a6:6d:2d:34:5f:5b:ba:01:2c:b6:5a:
de:2b:3b:fa:5b:c3:1f:bb:ac:b6:dd:56:23:76:6a:
00:ab:5c:60:ba:30:67:9f:a2:c3:7f:62:83:37:07:
13:8b:cb:28:98:c5:54:b5:dc:2b:39:3b:8e:33:9b:
2b:6d:31:4a:1f:af:f2:f0:7f:15:e6:d9:50:6a:8e:
29:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6D:67:88:43:16:76:57:EE:39:7F:0D:45:76:05:2D:F8:06:BF:08
X509v3 Authority Key Identifier:
keyid:5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:fb:c9:70:48:a5:48:88:ef:0a:5d:8b:d2:d7:d7:fb:3a:92:
d1:4f:47:5b:cc:5c:45:4b:f8:38:7e:ae:6e:9f:24:04:01:2c:
eb:c0:01:7b:49:12:40:36:d7:ff:4e:79:eb:c0:14:10:7c:17:
94:a1:fb:f3:2f:da:ba:0f:33:91:ad:5d:5a:f4:29:a2:4b:93:
1b:3f:68:51:1e:17:88:43:7f:13:7e:40:5e:4f:4d:18:45:63:
47:2b:68:e5:c8:dc:8f:fb:8a:d4:eb:f2:1e:69:9a:f5:ad:b0:
95:47:79:6a:2b:10:f1:e7:e5:46:33:7d:de:84:ba:c4:1f:73:
37:35:db:02:f2:e9:11:c3:90:45:71:5a:7e:d9:98:5d:4d:d8:
e3:31:5d:46:d8:36:e4:a3:02:21:ab:bb:ed:f8:04:ac:8a:b9:
90:41:3c:75:11:65:42:5a:6b:6d:b5:c8:2d:65:64:af:aa:a4:
f2:af:c5:1d:dd:26:93:2e:9a:96:c2:85:f3:f3:d1:ed:d2:97:
eb:0c:46:d7:93:a8:23:63:12:ac:50:77:c0:24:2c:64:53:a1:
8a:5d:bc:bd:03:5b:48:b2:1c:90:76:31:8a:1d:9f:3c:de:23:
ff:1f:77:bc:1a:e6:88:4f:7b:fe:c5:49:94:bb:79:51:5d:17:
31:db:d0:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:13:00 2025 by rpki-client