Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
File: _XF_OrY5RaG-c5wrOiWJvqVd224.mft (raw, json)
Hash identifier: YobOjqS+LESkJX/MXiQRcrnpClCKCP7VleGItH6aEBI=
Subject key identifier: CA:81:38:D6:52:31:A7:7B:CE:3D:B0:3E:4E:BD:BF:A0:AD:04:E5:35
Authority key identifier: FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
Certificate issuer: /CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Certificate serial: 0197B7B32190BA6905158765C6C94D55D1F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
Manifest number: 0B67
Signing time: Sat 28 Jun 2025 18:00:59 +0000
Manifest this update: Sat 28 Jun 2025 18:00:59 +0000
Manifest next update: Sun 29 Jun 2025 18:00:59 +0000
Files and hashes: 1: _XF_OrY5RaG-c5wrOiWJvqVd224.crl (hash: eoq+eMEZ22MjzbjAyymmFmSczZDCtv4DcourH43a1fs=)
2: gzdyy5qInnSa0M6b956pVUzgC-k.roa (hash: 2Ow3V4pucXvBImXLn02gpmIFTSdf3VU+/V7SnyCKOjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:21:90:ba:69:05:15:87:65:c6:c9:4d:55:d1:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Validity
Not Before: Jun 28 18:00:59 2025 GMT
Not After : Jun 29 18:00:59 2025 GMT
Subject: CN=ca8138d65231a77bce3db03e4ebdbfa0ad04e535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:42:f7:af:4c:27:6e:e1:01:c7:59:42:16:fa:
7d:2b:79:03:30:da:92:b2:2c:3d:7d:6a:f9:e4:ec:
44:ca:95:a5:57:aa:db:d0:cd:11:0f:f7:b9:6a:59:
f3:1b:fd:42:b3:d1:4e:3b:30:35:71:a3:1d:23:48:
b2:49:2e:7b:1b:48:3d:00:93:96:4b:31:3b:b6:af:
15:79:15:e5:b1:68:fe:43:cf:1c:6b:25:b5:17:87:
3b:08:e3:f4:5a:14:19:1a:13:ad:f5:54:16:c2:a7:
85:3c:7c:b7:a3:a0:13:3a:b4:94:a2:95:e3:93:31:
88:d3:22:c7:e7:6c:18:4f:99:bb:01:98:c9:c3:8b:
b2:0d:82:93:10:4c:c7:27:66:5e:b0:dc:77:9e:dd:
fc:a8:cf:9f:e7:f1:c6:72:2c:20:a2:53:90:8a:fd:
43:5e:9e:b2:89:c2:c4:d0:2c:f6:6b:fd:da:0f:b0:
bd:72:c3:93:f2:b6:97:ad:b8:d5:ca:df:d0:07:ef:
0a:0d:7a:f2:88:10:e0:40:44:81:64:f6:fb:a8:8d:
43:ab:b0:29:e8:df:78:bc:ad:f6:1f:ea:b4:52:55:
fa:b7:1c:4a:f9:6e:d2:bc:fc:5a:40:1d:ee:cc:64:
a4:1d:ec:45:7e:21:d8:01:5e:3b:5a:90:40:c3:32:
b6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:81:38:D6:52:31:A7:7B:CE:3D:B0:3E:4E:BD:BF:A0:AD:04:E5:35
X509v3 Authority Key Identifier:
keyid:FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:4a:e3:40:31:8f:30:4e:c5:76:73:19:d8:ee:df:2a:14:97:
b1:00:fe:a0:24:a2:41:cf:e6:2b:fe:3f:4f:c3:c7:7e:50:0b:
82:3d:bc:12:54:fc:01:15:d2:8d:f2:96:cd:5e:82:7a:ea:f7:
a6:6d:25:df:05:bc:04:78:b9:9c:67:6a:3d:3c:07:94:8b:c7:
b6:6b:7e:d1:ec:dd:66:10:25:49:1a:66:34:f9:f5:e6:0a:8d:
3d:85:71:64:ca:92:1a:cf:34:f7:f1:8d:95:59:4b:f3:2b:1e:
32:06:31:e7:4c:57:ba:5f:5d:cb:ed:be:63:bd:4f:d5:82:5f:
7d:a2:40:c1:e6:df:a6:51:15:62:17:ec:a0:30:34:76:82:7b:
72:53:d0:24:57:92:2d:83:8e:25:b3:6d:74:09:28:bc:00:0b:
af:9d:9a:c7:39:85:73:98:4d:08:57:95:c4:e5:d6:b1:49:4e:
d6:04:c8:d8:66:72:2c:b9:d6:95:51:b5:94:ed:d5:9c:96:3c:
8d:80:3e:e1:cf:4c:14:3f:ff:9c:3b:c8:c0:39:41:33:09:16:
93:c4:0c:d5:ff:ad:f5:b6:6b:3c:e1:71:5d:e0:6f:72:64:77:
ae:d2:68:ca:32:5b:58:bc:dd:0e:86:16:de:bb:3b:40:5f:a4:
b8:26:96:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:42:24 2025 by rpki-client