Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
File: XYHR_0WxVHwAqEtG75nsot-9Rbw.mft (raw, json)
Hash identifier: EdM3ZD4jx4KWzDoEokjvfzjbz/plj4gTdF+Twusgiok=
Subject key identifier: E1:89:5E:C7:80:9C:A3:39:9F:B1:66:D0:1E:5B:8F:A7:57:95:80:26
Authority key identifier: 5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
Certificate issuer: /CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Certificate serial: 0197E00AC2FF58B6C9F8A516B83CDD3B3B69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
Manifest number: 15CD
Signing time: Sun 06 Jul 2025 14:01:31 +0000
Manifest this update: Sun 06 Jul 2025 14:01:31 +0000
Manifest next update: Mon 07 Jul 2025 14:01:31 +0000
Files and hashes: 1: C-JYvDSVCc5Zd_4Sd7FiFR4ridU.roa (hash: Fud1edK7T1C6PqdOPqDnlVWq4JxXY+eiVXIDYHC1t50=)
2: XYHR_0WxVHwAqEtG75nsot-9Rbw.crl (hash: nvAqp5Q1i9ynYG8IAFZ3cKUPu0BfBW0hXx39DJxu5bU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Jul 2025 07:08:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:e0:0a:c2:ff:58:b6:c9:f8:a5:16:b8:3c:dd:3b:3b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Validity
Not Before: Jul 6 14:01:31 2025 GMT
Not After : Jul 7 14:01:31 2025 GMT
Subject: CN=e1895ec7809ca3399fb166d01e5b8fa757958026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:6a:ac:6b:3a:d1:62:55:a1:36:4a:9d:e5:f5:
01:cd:14:1f:0b:7c:1e:5c:75:8b:73:c7:4b:1a:c2:
87:93:2b:ef:46:62:18:b7:08:b9:5e:37:f4:5c:58:
df:9d:ed:8d:7a:37:7a:2d:b1:19:47:12:99:94:cf:
6d:3e:be:c4:52:62:ec:aa:8d:24:a9:25:f0:d4:39:
e6:d4:e4:6f:0c:ba:f6:d8:1c:23:8b:65:a8:d9:64:
25:60:b0:56:29:a8:92:83:d0:d0:a4:97:bb:05:32:
77:d5:7a:85:26:95:40:f3:fa:5d:be:de:a3:59:96:
98:a1:3f:1f:a5:bc:42:ba:b2:6a:36:7b:9d:6d:3c:
5c:af:3c:90:73:da:8a:4f:dd:b0:9b:44:f1:2a:85:
a4:7a:02:ce:09:ce:5a:80:3c:59:c4:fd:27:fe:fd:
d5:f2:ee:61:f3:aa:c4:ec:f0:01:fc:e1:d1:66:e2:
1b:45:fb:43:fb:4e:f3:59:fb:43:83:29:ed:e2:94:
73:77:39:e0:49:11:6d:3c:26:b0:77:58:86:d6:84:
c0:59:98:ea:96:a7:40:15:41:4d:84:96:3f:80:14:
07:57:2b:0d:24:d2:6d:82:d5:15:3c:b8:f9:f5:90:
02:b9:d0:48:f4:4e:8e:1e:08:1b:d3:a2:45:3b:4b:
a5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:89:5E:C7:80:9C:A3:39:9F:B1:66:D0:1E:5B:8F:A7:57:95:80:26
X509v3 Authority Key Identifier:
keyid:5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:37:22:fa:37:d9:29:35:98:1d:44:a0:ab:57:fb:40:1a:ba:
a2:14:9e:3c:17:86:81:cb:ad:c4:6c:6a:9c:5f:8e:d9:d0:9d:
c8:78:cd:b3:75:a3:76:27:f8:67:ca:f0:cd:98:fe:a5:cd:26:
3d:95:0e:49:bb:bd:4b:04:80:64:49:ed:b3:89:35:99:91:1d:
33:df:21:01:50:e6:55:6b:90:55:4a:ac:07:6e:15:b8:5d:53:
bc:be:af:14:3f:71:42:db:e5:3f:56:4b:46:5b:a5:4c:93:b9:
93:47:ae:fe:bc:ce:3d:9c:68:06:9d:d3:42:9d:c8:a3:f5:5e:
b8:81:4a:f1:23:98:33:1a:a2:39:71:8a:fa:32:cb:96:fb:f5:
07:61:26:f9:19:63:3a:34:88:5e:ce:fb:56:97:5f:db:d4:d8:
16:89:3d:8f:b2:49:5c:3d:48:7b:83:e7:da:d3:21:6a:d6:e4:
8e:3d:d0:9e:e1:26:7f:89:96:ab:23:d5:b1:40:00:17:47:68:
44:db:66:60:7e:65:a0:47:82:20:33:43:ca:10:16:dd:57:12:
68:76:ec:69:7e:96:08:16:21:04:e6:80:b6:2e:2b:80:9f:93:
4c:95:00:3f:5b:6b:e2:71:ec:59:c0:03:a7:43:68:aa:b4:d1:
d5:7c:60:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 6 16:37:12 2025 by rpki-client