
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
File: XchzCYds7EBPAHv22gQ0wL3GLYs.mft (raw, json)
Hash identifier: SzwdiqGXdj3F/JVHNok6OWIxxokaQCCMZTaNQR4U0DE=
Subject key identifier: 9B:0D:59:40:E3:C4:59:AB:53:CA:35:B4:7A:7F:CD:5E:35:E0:37:63
Authority key identifier: 5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
Certificate issuer: /CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Certificate serial: 0197B890671A44D28BE4C20F43617C7E99E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 22:02:40 +0000
Manifest this update: Sat 28 Jun 2025 22:02:40 +0000
Manifest next update: Sun 29 Jun 2025 22:02:40 +0000
Files and hashes: 1: XchzCYds7EBPAHv22gQ0wL3GLYs.crl (hash: 6xKyqznUlAdh8lleLXARshVBXi5eeS+ORVoVkFCq73Y=)
2: jcQt-MOzJfjybIamiUioFB-oBn4.roa (hash: vxzopxc1UXJfcspNz3GsRCac77+K0gwBOQSeqjgarpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:67:1a:44:d2:8b:e4:c2:0f:43:61:7c:7e:99:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Validity
Not Before: Jun 28 22:02:40 2025 GMT
Not After : Jun 29 22:02:40 2025 GMT
Subject: CN=9b0d5940e3c459ab53ca35b47a7fcd5e35e03763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ec:6f:d9:c5:2b:66:27:5b:68:b7:54:60:06:
34:3b:5b:f8:cd:c9:f8:58:9f:93:ca:ad:03:a4:9f:
ab:1f:5a:88:16:56:94:11:be:6a:86:e1:0f:b7:1f:
c3:e5:c8:87:64:c0:c1:f3:85:2a:9a:6f:a6:49:b3:
65:f0:12:a2:a0:29:00:59:75:25:39:51:e5:75:9c:
61:8f:a1:2f:38:cb:d9:53:a3:de:4f:b9:24:36:7a:
69:39:f2:27:4f:e6:46:80:63:b8:a0:67:61:8a:1f:
d2:ff:5a:8c:ae:24:b6:2a:15:67:b1:a1:27:67:59:
13:f5:fe:d3:43:10:56:1d:96:b0:93:75:2d:e8:d7:
f6:99:98:90:78:d0:d1:25:23:43:e6:64:6e:7c:f1:
b3:46:93:f5:98:89:5c:8d:69:4e:a1:06:2b:65:29:
5e:cd:0b:88:24:d7:3a:f7:a9:83:57:dc:2c:93:eb:
71:b9:9f:b8:1d:e7:9e:c0:ea:87:64:67:cc:ef:67:
eb:0d:98:0b:5f:52:84:09:c6:24:56:d3:8a:ed:63:
6f:34:8e:e9:c9:b4:56:77:5b:55:8f:a0:f9:83:93:
77:07:b5:d8:9a:02:00:4b:ea:3f:1e:35:56:6e:87:
1b:3b:2c:3a:7c:e8:fd:a3:33:63:90:00:34:47:df:
0b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:0D:59:40:E3:C4:59:AB:53:CA:35:B4:7A:7F:CD:5E:35:E0:37:63
X509v3 Authority Key Identifier:
keyid:5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:1c:b5:e3:6b:91:e7:cc:8f:2b:24:3c:67:a7:ca:ea:bf:0f:
38:f2:0d:07:3c:c9:07:c0:d3:f0:dd:d8:59:b1:0d:ac:9a:d5:
29:8c:7d:a7:96:4d:a0:98:c9:ef:71:bf:62:ca:ad:8f:41:5f:
81:15:79:8d:05:cd:83:5d:62:e9:b3:96:dd:09:3c:f4:dd:7b:
2e:11:26:1b:6c:4e:63:33:34:30:49:49:ac:c8:8d:0a:30:63:
fc:84:62:79:f3:13:3d:88:bc:c2:67:ec:1c:1a:f0:f5:45:47:
e2:de:29:2f:ec:37:6d:e3:01:49:ef:d2:be:4f:d1:ac:04:b5:
cf:d1:32:5d:8f:12:0c:04:7f:ff:11:52:cf:17:d9:00:de:05:
4f:c1:f5:18:5c:78:58:6c:29:6a:51:5c:77:77:2a:a2:39:36:
83:3c:1b:0a:4e:57:ee:fb:29:8f:57:2f:a4:5d:84:e0:ce:07:
88:5f:61:f5:0e:d5:39:f5:84:f2:48:d6:e2:6d:67:fd:06:b8:
f8:e3:84:e2:df:13:53:b6:9f:16:73:f1:ba:e8:bd:2a:10:4f:
cb:0a:47:ba:d0:a7:d1:49:93:1a:84:70:0f:80:f0:0c:96:11:
24:31:ec:ef:a2:76:85:25:1e:54:5c:92:15:98:de:a7:7c:d2:
8e:eb:c6:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4kGcaRNKL5MIPQ2F8fpnnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYzg3MzA5ODc2Y2VjNDA0ZjAwN2JmNmRhMDQzNGMwYmRj
NjJkOGIwHhcNMjUwNjI4MjIwMjQwWhcNMjUwNjI5MjIwMjQwWjAzMTEwLwYDVQQD
Eyg5YjBkNTk0MGUzYzQ1OWFiNTNjYTM1YjQ3YTdmY2Q1ZTM1ZTAzNzYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOxv2cUrZidbaLdUYAY0O1v4zcn4
WJ+Tyq0DpJ+rH1qIFlaUEb5qhuEPtx/D5ciHZMDB84Uqmm+mSbNl8BKioCkAWXUl
OVHldZxhj6EvOMvZU6PeT7kkNnppOfInT+ZGgGO4oGdhih/S/1qMriS2KhVnsaEn
Z1kT9f7TQxBWHZawk3Ut6Nf2mZiQeNDRJSND5mRufPGzRpP1mIlcjWlOoQYrZSle
zQuIJNc696mDV9wsk+txuZ+4HeeewOqHZGfM72frDZgLX1KECcYkVtOK7WNvNI7p
ybRWd1tVj6D5g5N3B7XYmgIAS+o/HjVWbocbOyw6fOj9ozNjkAA0R98L2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJsNWUDjxFmrU8o1tHp/zV414DdjMB8GA1UdIwQY
MBaAFF3IcwmHbOxATwB79toENMC9xi2LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGNoekNZZHM3RUJQQUh2MjJnUTB3TDNHTFlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi80NGRkOWYtNDg5MS00NWFlLTkwMzAt
OGRhODMxN2RlM2Y2LzEvWGNoekNZZHM3RUJQQUh2MjJnUTB3TDNHTFlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi80NGRkOWYtNDg5MS00NWFlLTkwMzAtOGRhODMxN2RlM2Y2
LzEvWGNoekNZZHM3RUJQQUh2MjJnUTB3TDNHTFlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdhy142uR
58yPKyQ8Z6fK6r8POPINBzzJB8DT8N3YWbENrJrVKYx9p5ZNoJjJ73G/Ysqtj0Ff
gRV5jQXNg11i6bOW3Qk89N17LhEmG2xOYzM0MElJrMiNCjBj/IRiefMTPYi8wmfs
HBrw9UVH4t4pL+w3beMBSe/Svk/RrAS1z9EyXY8SDAR//xFSzxfZAN4FT8H1GFx4
WGwpalFcd3cqojk2gzwbCk5X7vspj1cvpF2E4M4HiF9h9Q7VOfWE8kjW4m1n/Qa4
+OOE4t8TU7afFnPxuui9KhBPywpHutCn0UmTGoRwD4DwDJYRJDHs76J2hSUeVFyS
FZjep3zSjuvG5g==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:17:22 2025 by rpki-client