Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
File: X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft (raw, json)
Hash identifier: 9n7YJ6DrQNr9uWkptQr9XwrKrvVvX5VDMYuYOf4iRPo=
Subject key identifier: B9:02:15:8E:5B:CB:70:CB:AB:AE:08:8E:8C:8B:52:67:CA:A7:B3:09
Authority key identifier: 5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67
Certificate issuer: /CN=5fdd1e8c2394d18e876c2d57016e7ed89805a667
Certificate serial: 0197B7452AEA7E109AFD3BCED1DE7D4678F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
Manifest number: 0D75
Signing time: Sat 28 Jun 2025 16:00:52 +0000
Manifest this update: Sat 28 Jun 2025 16:00:52 +0000
Manifest next update: Sun 29 Jun 2025 16:00:52 +0000
Files and hashes: 1: X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl (hash: fGyXEjtogvJbQTs7nMMHvBu64vWXzGxihltxTIkBBf4=)
2: d0esey8AL3oqWdpXKQi0WyV7ktQ.roa (hash: J4cOoBAYf62aaAeG5Hi7u+/pYelZ41GqNxwzMAQ75xY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:2a:ea:7e:10:9a:fd:3b:ce:d1:de:7d:46:78:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fdd1e8c2394d18e876c2d57016e7ed89805a667
Validity
Not Before: Jun 28 16:00:52 2025 GMT
Not After : Jun 29 16:00:52 2025 GMT
Subject: CN=b902158e5bcb70cbabae088e8c8b5267caa7b309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2e:d0:78:e0:b1:98:bf:c0:a6:df:d8:b2:f5:
e4:2c:f6:a9:e6:f2:96:98:e1:d8:2a:9a:ba:ca:7b:
a6:51:7c:06:71:b2:96:87:d1:04:9e:53:e0:bb:cf:
29:c6:8f:ee:ac:be:7e:4e:67:93:b1:9f:ec:d7:10:
19:43:34:f5:a3:44:69:f0:4f:07:03:46:16:ae:e0:
ae:72:26:8b:4a:4d:60:8d:48:02:44:f4:89:25:89:
ab:fe:45:32:9f:52:52:3c:ff:96:29:7f:fe:99:dc:
7c:cc:c2:aa:5c:79:35:2c:a0:1f:7d:e2:78:dd:e1:
30:5f:8f:3b:d3:28:c2:f1:ec:08:97:89:66:b2:61:
0a:28:6b:28:37:76:12:97:5e:92:5e:b8:26:9d:dc:
90:87:99:60:2f:88:f5:ce:32:b5:ac:63:f8:8a:22:
c5:19:fa:32:33:13:53:9b:10:63:f9:54:43:56:17:
94:e7:8e:78:82:ab:ef:23:f6:86:c8:09:03:8e:0a:
cf:04:fa:10:0a:fa:26:4d:24:3f:90:1d:5c:f9:61:
0f:91:b0:7b:c5:d8:08:ee:9e:c8:9c:16:80:dc:c1:
78:98:ce:af:70:14:af:92:15:2d:6f:a7:44:cf:fb:
a5:0a:4d:b0:c2:fb:e3:ad:65:2e:0d:0f:55:d5:b6:
77:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:02:15:8E:5B:CB:70:CB:AB:AE:08:8E:8C:8B:52:67:CA:A7:B3:09
X509v3 Authority Key Identifier:
keyid:5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:35:df:cc:0d:e1:6e:89:11:c5:b8:18:89:3e:f0:d9:03:f9:
2e:70:a7:56:8e:12:99:ac:c0:fd:8d:91:82:59:6c:a4:75:95:
68:2f:1d:86:d4:e8:27:59:32:97:b6:cf:da:8b:45:a1:af:af:
7c:b6:8d:b5:a6:74:55:4e:cb:f6:cb:66:15:6f:d9:43:83:e7:
b8:ae:87:50:28:e8:74:d3:69:e9:b2:5f:e4:00:f0:db:ba:50:
4c:a2:41:a9:15:55:a9:89:be:1c:7b:f1:d7:3d:1f:9f:e5:54:
de:7d:94:0a:bb:f7:51:c0:45:3d:7c:c1:61:07:fe:37:1a:fc:
a2:62:c0:c7:9a:b9:4d:d7:ac:23:96:42:88:a7:98:24:e6:25:
7f:b2:d4:1b:a0:01:ed:23:e7:12:ea:07:dc:2b:d7:40:19:1d:
71:23:e8:f4:53:54:ff:98:35:40:3a:4e:6a:75:d4:80:90:93:
ed:80:77:47:e7:fe:5a:b1:59:a1:4c:8c:cd:17:26:8f:e0:68:
21:89:3d:e0:60:55:55:d7:7b:b5:ee:7f:97:ae:70:80:a7:36:
70:41:66:80:b8:dd:81:56:9c:0a:43:07:17:35:54:5b:75:ba:
62:0a:b2:3f:1e:12:3f:0e:09:f9:cb:d4:11:2c:4c:6f:34:69:
e6:d6:68:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:54:11 2025 by rpki-client