Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
File: XpNr6hsMOiCKuifYsQsnXkdN3iw.mft (raw, json)
Hash identifier: n1JeZgxkc2n3bmpQhx38CbHwBOCly/8wETso5g3lavg=
Subject key identifier: E1:7D:74:75:79:45:6D:3B:DC:01:0E:04:64:6D:4B:A3:5F:3D:D5:41
Authority key identifier: 5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
Certificate issuer: /CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Certificate serial: 0197B6D749AFEB8463C81E1D0EA3025D6853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 14:00:51 +0000
Manifest this update: Sat 28 Jun 2025 14:00:51 +0000
Manifest next update: Sun 29 Jun 2025 14:00:51 +0000
Files and hashes: 1: Nw7X2LCFZpQsGc2GoXyrFKElkBk.roa (hash: y5oQHHhbifcLGWzUQAXcT2e3MvPfBEuWSolqQY+gsts=)
2: XpNr6hsMOiCKuifYsQsnXkdN3iw.crl (hash: ATVE69FfnqqCanVRoaUwyKXqqY8Hv4N2JC4vsjONMDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:49:af:eb:84:63:c8:1e:1d:0e:a3:02:5d:68:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Validity
Not Before: Jun 28 14:00:51 2025 GMT
Not After : Jun 29 14:00:51 2025 GMT
Subject: CN=e17d747579456d3bdc010e04646d4ba35f3dd541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0a:da:d3:b2:92:a7:98:63:7b:ca:35:17:13:
74:b3:f5:fd:1a:6f:90:3f:e5:9f:c6:a3:f4:f2:1f:
94:eb:ac:b7:22:36:81:12:33:24:5a:99:f3:4e:7d:
96:9b:c6:fa:f3:db:c9:b4:f6:40:16:32:2d:30:21:
a6:c5:9d:da:7f:da:88:16:f5:fc:a6:ec:bc:ae:d1:
b2:09:3e:ed:40:3b:e2:5d:8d:be:65:3c:a4:ea:22:
5e:18:61:b6:74:a7:7a:5e:49:85:2b:d7:f0:c2:62:
f5:7c:ad:ea:a6:a4:73:41:00:52:38:17:29:bc:d5:
89:6f:a9:94:89:45:b9:cc:7c:00:ba:1c:e7:63:ed:
70:0c:59:ab:0d:b9:f9:e1:02:b9:d9:98:37:bd:ae:
68:d2:8b:a8:95:c4:f7:4e:dc:9f:5f:53:02:2e:cc:
95:f0:17:75:ea:a4:83:2e:13:8f:8e:1c:68:c7:83:
42:b5:bc:d2:8f:57:66:b4:18:22:81:ae:88:02:2d:
de:44:09:2a:1e:7a:79:15:ce:64:1f:c3:92:6b:9a:
d0:d6:1b:f1:26:e7:d6:29:d3:32:3e:90:b5:14:d5:
3c:1f:84:ac:2f:9b:72:22:0a:ea:3c:06:5b:fd:bd:
fb:86:b9:2f:48:68:bd:46:24:64:ad:2b:cf:5e:ac:
5f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:7D:74:75:79:45:6D:3B:DC:01:0E:04:64:6D:4B:A3:5F:3D:D5:41
X509v3 Authority Key Identifier:
keyid:5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:8a:db:dc:82:81:dc:e9:9c:cd:56:86:24:8b:2a:8e:ee:db:
2a:d9:2c:f2:98:17:2e:dd:06:1e:a3:1e:1e:08:88:13:bb:b4:
f4:ba:ec:73:46:e5:98:80:71:9d:df:df:76:3f:ee:f7:61:9d:
e7:e4:d6:60:f1:90:78:1d:c2:41:32:03:69:aa:f2:6f:05:2e:
69:73:9b:74:fa:79:54:00:fc:c7:38:ea:6e:79:84:72:ea:02:
83:be:92:e9:34:5b:0b:c5:56:f1:cc:19:00:c1:45:83:25:ce:
c1:47:87:40:20:6a:8d:18:64:71:6d:7d:fb:e2:de:dc:6f:ad:
08:71:08:2a:ed:aa:cf:c1:62:6d:d8:46:c0:ff:5f:23:ea:f1:
a7:f5:82:13:90:dd:06:aa:e7:ec:d8:21:85:af:e4:53:2b:e1:
fa:74:37:a1:19:41:26:bf:dc:e6:dc:ba:75:b0:00:27:b7:8a:
87:88:33:cb:74:60:50:55:0a:fe:a0:54:50:60:ad:5c:a8:14:
aa:02:29:0b:c5:89:33:01:e3:67:13:7c:e3:aa:f7:ba:e5:3a:
4c:ea:09:e4:01:2d:d0:f3:a4:cf:62:39:4e:dc:6d:4d:29:52:
2c:61:04:c5:d8:92:97:4e:54:cb:96:7e:19:25:7e:48:4a:1f:
6a:e8:3e:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:00:37 2025 by rpki-client