Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft
File: XtGkql_QUBs-ptafQzwvFkIRYIk.mft (raw, json)
Hash identifier: ejmYNKxw8/WAd9RXFISZSQPiD3pY8c4ZSADa55b8OhQ=
Subject key identifier: CF:1B:F5:71:7A:BC:32:38:C8:D1:DA:A2:18:EF:98:17:26:33:31:E5
Authority key identifier: 5E:D1:A4:AA:5F:D0:50:1B:3E:A6:D6:9F:43:3C:2F:16:42:11:60:89
Certificate issuer: /CN=5ed1a4aa5fd0501b3ea6d69f433c2f1642116089
Certificate serial: 0197B70EF9FB5AAEF9B730B5275260C5DE7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft
Manifest number: 15B0
Signing time: Sat 28 Jun 2025 15:01:41 +0000
Manifest this update: Sat 28 Jun 2025 15:01:41 +0000
Manifest next update: Sun 29 Jun 2025 15:01:41 +0000
Files and hashes: 1: XtGkql_QUBs-ptafQzwvFkIRYIk.crl (hash: 3WldvdMxDd/J70LDr+wAFK25jbteaTd5PT71oNXgbHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:f9:fb:5a:ae:f9:b7:30:b5:27:52:60:c5:de:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ed1a4aa5fd0501b3ea6d69f433c2f1642116089
Validity
Not Before: Jun 28 15:01:41 2025 GMT
Not After : Jun 29 15:01:41 2025 GMT
Subject: CN=cf1bf5717abc3238c8d1daa218ef9817263331e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0a:57:33:d3:65:dc:29:3b:b8:18:53:60:e8:
2b:af:fa:d8:08:d8:f2:02:04:5a:00:b9:67:e0:4e:
06:a9:0f:65:f3:3b:0b:19:13:03:f8:83:ec:b9:9e:
ae:99:df:9e:ab:d4:03:cc:1c:d6:c7:4f:f4:1e:29:
65:37:05:1c:6a:7a:e0:e4:a0:59:03:9d:75:5c:56:
f9:49:20:d8:1e:72:02:98:d5:22:bd:ec:fe:46:b7:
fb:90:b4:eb:68:4b:f9:83:de:01:db:f8:cf:2f:ce:
b0:e0:c6:c6:9f:31:6b:d2:d9:5e:aa:03:42:6e:ac:
75:40:1d:af:f2:92:23:e8:57:01:69:1f:ad:51:f0:
d0:a9:71:66:1a:98:7a:91:d7:1c:1d:42:5e:7b:22:
85:01:27:bf:b4:5e:34:f6:79:47:45:e6:57:57:0c:
92:7a:70:63:af:d7:8e:6a:2c:ab:5e:5f:8f:35:82:
9b:7c:85:ea:32:e3:23:bf:84:7a:6d:03:d6:11:5d:
99:29:9c:eb:e6:93:97:16:83:fd:66:8c:28:90:dd:
5d:4f:c5:86:99:6d:c1:e7:93:52:4c:92:1c:d0:ec:
93:0c:02:61:31:fe:91:4f:6a:77:e7:1a:a8:59:d0:
64:51:ad:56:2b:b2:4c:8c:71:4e:30:89:6e:24:b2:
fd:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1B:F5:71:7A:BC:32:38:C8:D1:DA:A2:18:EF:98:17:26:33:31:E5
X509v3 Authority Key Identifier:
keyid:5E:D1:A4:AA:5F:D0:50:1B:3E:A6:D6:9F:43:3C:2F:16:42:11:60:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:51:6f:1c:22:b9:5e:e5:6d:2d:06:de:d4:9d:dd:59:35:d7:
0c:ac:51:86:9a:b0:c3:31:a2:3a:09:3f:f0:c8:4f:78:ae:eb:
33:8d:52:01:fa:6d:78:99:16:fa:f4:97:a6:92:dd:55:f2:9e:
45:51:0c:e7:1a:2e:44:15:ce:ee:ea:da:1d:0c:0c:52:e5:a1:
bb:3f:ec:de:62:ad:29:08:e7:16:a1:c4:2c:05:4f:72:84:0b:
7a:9d:81:ed:1e:a3:fb:d4:ab:a3:0c:0b:39:e9:1b:59:9c:1a:
e6:5b:33:41:71:8e:91:35:d6:08:d4:ac:f0:90:65:e7:9c:2e:
aa:37:78:e1:21:75:28:04:d7:85:55:74:4d:fd:9a:84:71:38:
11:69:89:a5:63:f4:3d:57:02:c0:fe:48:7a:9a:45:fa:26:3e:
a8:93:ea:16:cc:8e:0a:05:94:e6:a5:91:3a:a1:8e:d8:f1:d9:
84:09:b9:e2:cb:4e:c3:3e:20:b8:a6:34:22:71:1f:ce:8e:41:
63:ae:6e:a8:83:0b:05:54:6b:19:f1:9e:6a:17:5e:9d:96:f2:
07:82:0f:87:c0:60:8e:6d:32:6d:7e:79:e4:fb:a4:c5:f2:0e:
62:00:42:57:8b:a5:3c:05:e8:ea:32:93:19:c0:d2:1c:87:25:
04:07:5e:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:00:11 2025 by rpki-client