Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
File: XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft (raw, json)
Hash identifier: 5vwGrQs4PNAvs4udYnfulKMQ11pAg1ddRiNHf7aNhtA=
Subject key identifier: FB:AD:02:A4:48:EC:41:9B:E3:72:79:96:A2:34:1D:78:DB:A5:71:15
Authority key identifier: 5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF
Certificate issuer: /CN=5e4098f206850488b72cdde8387c3181c63f8cdf
Certificate serial: 0197B6A1FA5AC9AC8265A4EB4BEEFB490FEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
Manifest number: 0365
Signing time: Sat 28 Jun 2025 13:02:38 +0000
Manifest this update: Sat 28 Jun 2025 13:02:38 +0000
Manifest next update: Sun 29 Jun 2025 13:02:38 +0000
Files and hashes: 1: XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl (hash: e3IC5I9VP0mQ467cpeZP/vnP4QFeuFub9Gak4opqvyc=)
2: Zalmb79lgnJ8ZqrgJMNHmIB0_a8.roa (hash: qT5QBRK21+1uxjdCx9gW03qYws/IDIrgYu8jrzg9fD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:fa:5a:c9:ac:82:65:a4:eb:4b:ee:fb:49:0f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4098f206850488b72cdde8387c3181c63f8cdf
Validity
Not Before: Jun 28 13:02:38 2025 GMT
Not After : Jun 29 13:02:38 2025 GMT
Subject: CN=fbad02a448ec419be3727996a2341d78dba57115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ee:ea:85:81:d7:41:98:49:56:4a:c6:22:49:
ba:65:de:45:83:eb:39:5a:b7:0a:c6:89:d9:ab:a1:
69:77:ab:6e:7c:63:1c:d2:4a:ab:d4:23:95:7b:2d:
06:3f:57:bd:74:f7:cc:60:81:22:bd:dc:b3:86:11:
ce:60:c8:52:6e:89:f8:37:7d:b4:3a:9f:87:f8:d4:
b2:c7:23:b3:a1:a2:69:31:f1:04:c8:8d:3b:77:d1:
52:04:1c:ed:4b:d1:b7:a7:fa:06:33:b1:8c:f4:e8:
82:9c:4d:e7:0a:c2:ab:0f:84:c9:51:d7:a0:9d:8e:
d1:0b:70:1c:1a:a3:f8:a4:96:70:ce:2a:7e:6e:e2:
ab:ab:c4:07:48:71:5a:4a:70:ab:ed:9b:e3:fe:a5:
ae:62:c2:6e:b0:66:98:4e:a4:4c:c2:12:46:4d:05:
06:f5:8d:62:a5:ce:65:80:6d:36:6d:e2:98:b4:2d:
51:94:76:0c:6a:5c:27:42:40:e7:fe:85:d8:2f:db:
43:65:fe:a9:92:4f:20:38:56:74:26:e7:82:b0:33:
8a:c6:69:72:ab:12:40:b7:ab:e5:c1:ec:63:86:4d:
f0:36:9d:67:5d:20:50:cb:8d:90:de:0f:d4:49:51:
b6:10:d3:c4:d2:73:44:17:49:e0:b7:76:7e:52:f5:
15:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:AD:02:A4:48:EC:41:9B:E3:72:79:96:A2:34:1D:78:DB:A5:71:15
X509v3 Authority Key Identifier:
keyid:5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:58:e7:c6:e0:bd:3e:49:81:67:6a:a2:2f:c7:a1:dc:8c:78:
ea:ab:b3:db:f0:d5:7b:d8:e7:a6:b8:75:18:e6:0e:56:69:d8:
ed:f4:9e:e8:db:ed:ce:3a:f4:a1:55:af:36:80:28:5d:ab:3f:
75:fb:ca:c8:5c:b7:ce:c2:3f:51:97:f4:5f:57:7c:e0:99:58:
b3:fc:ff:e1:0e:b2:9c:82:58:74:8c:7c:a1:3c:12:86:59:92:
c3:53:4b:4b:70:9f:ba:28:8c:7e:16:e9:7e:50:b8:f5:fa:37:
42:18:4d:8c:84:fd:f7:0b:1b:0c:8f:9b:63:7f:92:04:df:e9:
b5:c7:7d:04:a0:e6:13:50:1a:de:8e:b1:0f:7d:4e:4c:4d:7f:
cd:e5:25:5d:75:c5:03:9a:d1:10:78:d3:1a:bc:15:f7:24:90:
8c:71:f9:b0:9d:d6:d9:65:20:d9:97:87:92:7e:c8:e0:d7:88:
ad:57:ac:d4:4e:07:f7:ff:db:97:63:00:2e:78:b4:e8:bb:09:
3b:6e:a1:c2:d9:87:19:e6:99:a9:55:70:ed:16:e4:12:df:27:
fd:ec:f2:18:ba:e5:97:d8:11:16:90:87:37:89:04:64:8a:2d:
30:5a:39:5e:ae:37:fb:a1:b2:c2:7b:04:ad:fd:bd:8d:4e:86:
ba:16:d6:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:55:46 2025 by rpki-client