Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
File: XKn3Xcos07OTU-AwCzC6W2KXais.mft (raw, json)
Hash identifier: HweeFNxdPJ4XoAkqV1twV0XyO1Ens4CIp0iPufWEE20=
Subject key identifier: 1A:D1:92:24:83:1C:FE:29:7F:2D:6E:2C:CB:3B:8B:DA:58:A8:2C:BF
Authority key identifier: 5C:A9:F7:5D:CA:2C:D3:B3:93:53:E0:30:0B:30:BA:5B:62:97:6A:2B
Certificate issuer: /CN=5ca9f75dca2cd3b39353e0300b30ba5b62976a2b
Certificate serial: 0197B9A16D2C19A12E9E0BE65E2930123E42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
Manifest number: 0940
Signing time: Sun 29 Jun 2025 03:00:53 +0000
Manifest this update: Sun 29 Jun 2025 03:00:53 +0000
Manifest next update: Mon 30 Jun 2025 03:00:53 +0000
Files and hashes: 1: XKn3Xcos07OTU-AwCzC6W2KXais.crl (hash: 2y6T0sa0ERyIGK7fMROeXH37j8Y5S2IW4cKugVtH0iU=)
2: b9Hu80_829heeLvFjfJdJz5nCTc.roa (hash: j+SJeADqUhFu2qLu6938DWITw4JSWTcM1pVfvfeWeP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:6d:2c:19:a1:2e:9e:0b:e6:5e:29:30:12:3e:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ca9f75dca2cd3b39353e0300b30ba5b62976a2b
Validity
Not Before: Jun 29 03:00:53 2025 GMT
Not After : Jun 30 03:00:53 2025 GMT
Subject: CN=1ad19224831cfe297f2d6e2ccb3b8bda58a82cbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8d:14:d4:a2:2e:7f:ac:2f:3e:57:47:35:ff:
65:a5:61:e5:0a:27:48:2d:6b:69:85:34:65:40:eb:
5d:08:b2:7c:8a:54:dd:e5:5a:70:a2:8e:e9:0b:07:
2f:50:53:6e:a9:a2:b3:ce:26:a6:35:68:d2:27:12:
67:c3:3b:67:04:40:34:20:47:2c:4c:c2:87:8b:d2:
5d:5c:f2:1e:28:65:15:8a:f3:90:95:cf:25:ae:da:
c4:7a:9d:2c:f1:36:a9:91:6d:8a:f6:82:03:6e:9c:
4f:32:b4:a5:4b:8a:79:38:95:cb:ac:28:62:cd:38:
97:1a:c7:35:5a:f5:fd:dc:6d:b3:4a:8e:bc:1e:76:
b5:c4:4d:c8:b4:36:23:af:cd:68:17:e4:9a:40:a6:
f0:63:db:c8:18:7b:5b:bf:f9:32:13:ae:be:32:90:
98:f2:07:24:58:04:5d:c7:bd:f4:17:38:2d:81:3d:
f8:ba:42:28:31:ec:4f:7a:02:80:46:4a:04:59:67:
37:35:90:a8:33:73:a8:4e:77:88:51:87:f7:56:e1:
fb:d4:ed:f8:58:10:6f:2a:76:af:c8:ac:ae:0a:95:
37:98:2f:c8:42:c3:2f:29:f7:1a:1b:00:63:33:44:
07:8d:ad:0b:ea:5f:9b:fb:da:8e:9a:57:8b:ec:cd:
e8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D1:92:24:83:1C:FE:29:7F:2D:6E:2C:CB:3B:8B:DA:58:A8:2C:BF
X509v3 Authority Key Identifier:
keyid:5C:A9:F7:5D:CA:2C:D3:B3:93:53:E0:30:0B:30:BA:5B:62:97:6A:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:0c:c2:85:9e:9b:db:c5:a8:bc:e8:bd:b3:27:1e:61:b6:51:
1e:b1:63:9d:99:d0:4c:5d:88:a1:7c:a1:29:74:87:61:66:1a:
27:36:b0:7e:a0:5c:49:e2:5e:2a:32:53:65:48:f7:f5:d0:0e:
88:48:90:09:80:5c:bb:72:52:10:ec:55:0d:db:ea:5e:c2:0a:
ef:d5:0a:50:97:64:9a:e8:2b:e7:f6:42:ab:3d:d6:e5:ab:a8:
22:f0:fc:50:8e:0f:d5:da:68:a4:a8:29:b4:65:54:da:da:ca:
3b:17:9e:48:43:d0:2a:77:5a:77:f3:f1:b0:3f:6f:75:21:76:
28:af:6a:6a:2e:a9:07:d4:c5:fb:be:39:67:5e:e5:d9:75:fd:
77:0b:3c:59:66:63:9e:a4:2d:b0:fa:36:4c:a7:ec:bb:d5:e1:
69:4c:f6:11:47:97:c1:b5:c1:5d:72:f5:cd:80:15:ed:1c:2e:
02:66:c5:d5:45:3f:39:65:6b:9a:57:3e:70:6f:bc:d6:73:aa:
09:fd:e8:8a:a2:ac:79:39:fa:22:ba:21:24:86:33:a8:52:d6:
30:e2:07:00:00:4d:40:d4:d5:70:09:95:7a:ef:aa:c2:a0:72:
07:00:85:e1:d7:61:46:64:67:ca:f5:ce:55:55:5a:74:51:3f:
16:4a:31:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:31:01 2025 by rpki-client