Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json)
Hash identifier: 61+zc3DeiFfyXdTr7ac6wGp7Qt/b7RxRbc7qP2DWyUQ=
Subject key identifier: F4:FE:33:0A:09:67:FB:A1:F6:5A:37:E6:02:82:6A:70:53:40:C8:02
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 0197B7450C64EC4856AB5185449E6E7821CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
Manifest number: 0D65
Signing time: Sat 28 Jun 2025 16:00:44 +0000
Manifest this update: Sat 28 Jun 2025 16:00:44 +0000
Manifest next update: Sun 29 Jun 2025 16:00:44 +0000
Files and hashes: 1: 8rSm2TYmCggVgedhJYf2d5mO9bY.roa (hash: u5F6NWnwd9MOKoxteUtWCw1+tPwzMsMfG5qFtnCO6pk=)
2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: +sABL2jijg1tqFLW265y6K+zLHv7PdKQzZD6OfDGoR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:0c:64:ec:48:56:ab:51:85:44:9e:6e:78:21:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: Jun 28 16:00:44 2025 GMT
Not After : Jun 29 16:00:44 2025 GMT
Subject: CN=f4fe330a0967fba1f65a37e602826a705340c802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7c:17:65:c1:2a:d8:01:a3:d8:da:37:d4:92:
44:31:4a:76:6b:68:41:6f:f5:af:4b:c4:c3:fc:d1:
93:27:79:bb:e5:36:fc:c2:b5:4c:75:ae:ac:af:22:
62:12:cd:aa:b3:0f:6e:79:d7:74:22:9a:a5:75:22:
ca:81:2d:6a:f0:15:8b:f7:40:b8:14:cc:ea:d7:ac:
8e:5d:4a:1d:26:bb:1b:43:ab:fd:d2:ad:1f:be:65:
fd:2c:04:df:f0:ea:5d:cb:69:49:ea:ac:69:79:ae:
5e:14:13:8d:d2:02:f5:bc:ec:0e:87:09:06:e8:57:
42:66:6c:ce:35:d9:0d:63:04:f5:fc:f2:2b:30:4e:
5a:43:d1:75:2d:a6:d9:d2:15:c1:4e:e1:3a:49:8e:
b3:68:84:2a:a9:75:87:d2:aa:73:a5:94:d4:8a:a5:
dd:fa:c8:1d:d4:dd:87:3a:68:dc:cc:67:d8:e7:53:
e3:72:44:bf:2b:58:7f:19:63:17:06:06:e2:1b:d0:
28:28:14:12:5f:39:1d:ce:85:42:da:c2:fe:68:17:
a6:d7:b5:59:b7:36:b7:81:d6:ff:90:cc:91:42:73:
2a:89:34:66:09:0d:96:6e:45:16:29:92:f4:46:8d:
d0:a9:b5:14:c5:4f:42:ec:82:80:83:36:5c:c4:19:
47:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:FE:33:0A:09:67:FB:A1:F6:5A:37:E6:02:82:6A:70:53:40:C8:02
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:1b:0a:4b:15:ad:03:74:9f:08:7b:b8:ac:b0:a2:0f:e2:e9:
9a:92:44:00:40:7b:f7:62:cd:bf:f9:75:5b:7d:9e:14:7c:08:
c6:21:57:55:69:32:20:16:2c:df:4e:f8:51:c3:d6:bb:76:59:
39:41:da:a7:e7:85:2a:b0:28:aa:c7:2f:5a:f4:66:33:9e:81:
13:da:22:ab:04:1a:83:b6:ff:ae:72:27:f2:ed:61:c2:db:54:
f2:23:7f:89:a2:3e:58:7c:cb:f1:df:0d:3e:7e:78:1a:0b:42:
00:28:16:93:ae:01:6a:a1:eb:d5:58:41:a3:d5:1a:f6:34:a7:
fa:fe:6f:12:c1:e5:d1:a8:bf:fb:69:85:dd:23:b6:b7:28:17:
7f:7f:53:a2:ac:50:9c:f0:4a:b8:8c:f7:ff:eb:37:1b:64:ae:
3e:1a:b0:2c:01:5b:90:27:e1:e9:15:37:af:e1:2d:40:6f:a7:
c4:6c:cd:a4:7f:70:cb:70:55:7e:77:5d:df:92:77:f8:3f:ce:
9a:00:ea:1d:d8:4d:ab:a8:3f:93:d7:ed:66:97:fa:4f:33:e8:
97:6d:df:32:e7:f2:e2:98:31:07:b7:77:11:35:47:25:fb:fe:
7a:91:02:83:c3:c3:21:d5:53:51:df:19:44:9c:fb:2d:9d:72:
dd:dd:29:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:08:44 2025 by rpki-client