Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
File: XWlT20hASwxmoV8Npu-n-sCpNp4.mft (raw, json)
Hash identifier: o6PFYl0ZEfHVWRZjiGPH604pNstRX1o57NwBT8eWzrU=
Subject key identifier: 32:CF:42:80:82:B9:28:67:91:9E:96:55:2E:DD:ED:9D:76:D1:35:2F
Authority key identifier: 5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E
Certificate issuer: /CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e
Certificate serial: 0197B6329ACA3F35555A3DDA022CEF4176CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 11:00:59 +0000
Manifest this update: Sat 28 Jun 2025 11:00:59 +0000
Manifest next update: Sun 29 Jun 2025 11:00:59 +0000
Files and hashes: 1: XWlT20hASwxmoV8Npu-n-sCpNp4.crl (hash: 5/NBsA4UPRg77KWaEG15HU65hVLtXmeGTgyTHKMqAh0=)
2: hC0t1cqhdoh6iyJ3cpDGc1N-nWg.roa (hash: PxIEeNMR+krZxWibCKKwK2CkVaApOYKXyBnr/5vAmac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:9a:ca:3f:35:55:5a:3d:da:02:2c:ef:41:76:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e
Validity
Not Before: Jun 28 11:00:59 2025 GMT
Not After : Jun 29 11:00:59 2025 GMT
Subject: CN=32cf428082b92867919e96552edded9d76d1352f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e7:95:b9:ea:f0:15:c4:72:9e:be:ae:09:19:
78:bf:85:7d:31:18:0e:8d:bf:49:28:d6:57:46:82:
d9:80:9a:6a:e2:db:d5:45:1a:02:f4:3c:71:11:26:
fa:27:f6:03:f0:14:ec:f3:28:71:1c:52:2b:1e:82:
1c:84:eb:ad:8a:7d:70:c8:7f:b1:e4:49:d3:24:30:
ef:e1:3c:c4:48:86:92:89:23:5e:aa:97:da:06:df:
10:ba:6b:ba:7e:3c:fd:29:0b:e0:61:63:c3:2a:8e:
a9:62:73:b2:61:4b:cf:6e:52:0c:21:98:8f:56:1b:
17:2b:9f:ab:91:fc:74:22:6a:6c:46:87:d7:0a:c5:
2d:ee:24:2a:c2:3d:3f:08:ce:b4:03:b2:c6:14:e9:
21:82:38:e9:f0:37:c6:30:62:ce:5b:38:8f:2f:b4:
9e:17:c9:6a:00:d6:de:59:28:4c:e5:e3:48:60:15:
83:03:0e:1a:33:17:5d:85:45:41:ac:08:5d:a6:3d:
df:f5:e2:f7:d7:30:39:66:82:a0:81:c3:b3:74:03:
c5:73:db:81:e6:99:dd:f8:66:e5:8e:ec:8f:ed:7a:
1b:bc:bb:79:04:67:20:56:b1:24:25:66:75:1b:22:
ec:5d:fc:01:f7:5e:bf:fc:34:17:a7:1f:b4:67:b0:
d8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:CF:42:80:82:B9:28:67:91:9E:96:55:2E:DD:ED:9D:76:D1:35:2F
X509v3 Authority Key Identifier:
keyid:5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:40:f3:55:b4:e4:db:b1:b2:26:ca:0f:97:c6:a2:d8:60:87:
53:0a:af:28:bc:b7:a7:42:b2:9e:c7:e6:74:dd:e0:da:59:0a:
9f:42:ff:d8:e0:80:09:8c:fd:bf:db:87:f9:aa:8d:9a:aa:7e:
ae:64:18:6b:0e:35:0a:f2:ea:33:26:e4:21:00:ff:d3:8b:19:
b4:c5:89:5a:00:0c:cf:4f:eb:7e:81:0f:8f:64:ab:9a:1b:c7:
5a:bf:d8:59:fb:a2:30:10:a2:51:b9:36:cd:15:88:46:ae:7f:
75:dd:9e:07:b9:ae:bd:4c:ed:bd:6a:d8:30:05:48:cb:3b:06:
c4:da:62:37:86:95:1b:cc:7a:e5:a4:be:c7:fb:5d:f9:a8:a4:
c4:65:29:02:78:e7:8f:a9:0d:e4:43:c6:52:3b:78:41:b7:4d:
96:c5:0d:9a:9c:fb:dd:3f:2d:4d:79:cd:aa:21:86:d2:a9:f0:
83:32:5c:62:61:a5:96:02:db:48:f1:78:01:80:42:9a:8e:b5:
01:62:52:ee:85:79:79:1d:97:56:24:86:05:75:6d:11:bc:54:
c6:4c:ee:63:91:7b:d7:8d:1c:f7:2e:05:42:a6:67:7f:e0:df:
1a:d2:b4:45:6e:47:f8:92:d6:1b:cf:7b:b5:90:31:49:a6:0a:
ee:51:3b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:03:01 2025 by rpki-client