Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: yw15+kZ0EkY0mAKKRAMOu9hYQ8GcJ6IRvwvrf/AXFlc=
Subject key identifier: E5:6E:35:27:43:54:75:49:05:EB:A3:2C:19:48:63:2B:73:9A:02:91
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 0197B6A139BB0383EBA615385F6AD9590FF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 04B3
Signing time: Sat 28 Jun 2025 13:01:48 +0000
Manifest this update: Sat 28 Jun 2025 13:01:48 +0000
Manifest next update: Sun 29 Jun 2025 13:01:48 +0000
Files and hashes: 1: S6aYdrXE8VeCcP5w8D7hhhcOGoc.roa (hash: csN/l/mC6C7LyFwDFQUEKU3wX0HgZWqjImlEztzBO3Q=)
2: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: rfPdAF5yfFCNl20pIYfFSxSgxWF0EXyVJ83Sv/UI574=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:39:bb:03:83:eb:a6:15:38:5f:6a:d9:59:0f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Jun 28 13:01:48 2025 GMT
Not After : Jun 29 13:01:48 2025 GMT
Subject: CN=e56e35274354754905eba32c1948632b739a0291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:75:b3:f6:19:5d:28:aa:0a:fa:f1:bc:d8:27:
7f:99:68:69:c2:58:31:70:3e:c0:00:65:fd:b4:ca:
cf:f6:cd:7f:c0:de:41:31:d5:ca:94:18:29:24:6c:
b5:14:3c:51:3d:e1:9e:bf:65:19:04:c7:54:06:85:
5f:1e:de:1a:6d:13:5d:27:22:79:c0:90:9a:73:5f:
01:8b:7b:7e:97:70:b5:8c:80:39:3e:3e:44:9a:20:
0f:f1:1e:e9:d8:20:69:dc:52:5a:e6:f5:d9:01:61:
df:a7:18:3a:09:cd:3d:5c:56:61:0c:8c:41:f9:aa:
68:ee:6f:ed:dc:c3:0c:21:f3:49:96:59:f3:16:ab:
69:a7:9e:ee:bf:81:eb:85:72:e9:41:6a:94:78:db:
bd:51:f7:b8:87:77:c5:3d:70:25:11:57:a7:20:37:
28:0d:38:32:b4:fe:43:9d:1c:46:b4:23:aa:ed:a4:
f2:7c:58:b1:94:21:c5:8b:b0:db:67:0a:bf:34:a9:
78:52:b0:46:d6:8b:71:38:26:f3:e7:66:3b:92:02:
35:92:2a:18:56:66:5c:b1:df:39:6c:b0:60:a3:fc:
cc:44:05:b8:e0:df:33:1a:b8:b3:64:d4:07:1a:65:
fc:f1:71:f6:06:e5:07:d5:97:73:d8:b0:9f:aa:fb:
8e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:6E:35:27:43:54:75:49:05:EB:A3:2C:19:48:63:2B:73:9A:02:91
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:f1:89:6a:27:e0:12:26:1b:b7:4e:e9:93:ed:cb:5c:2b:eb:
1f:6f:68:9a:7e:35:62:42:e7:1d:2e:ea:83:d9:eb:fe:9d:0a:
24:40:55:82:4f:af:07:24:11:1c:21:58:3e:37:dd:c8:c3:5a:
ca:1c:fc:39:59:2d:59:0d:34:6b:57:a1:c2:3a:d9:44:f2:f4:
1a:d1:af:59:83:6d:b3:0a:c4:4b:51:b5:9f:52:64:f7:a9:1f:
da:dd:5f:ae:c3:c2:83:55:66:0e:4d:6e:19:69:83:2d:36:0e:
9e:c8:92:de:4a:43:60:07:ea:86:01:8c:d2:9c:cb:86:51:63:
c0:7b:18:97:e3:4a:e8:4e:e9:c3:5c:76:c8:ad:a0:6a:2d:3c:
7b:e2:e8:af:fc:75:5a:f6:85:ce:10:4d:1b:b1:ea:68:3a:9f:
c1:ff:e2:4b:99:48:db:bf:08:17:0b:67:e2:55:58:fb:76:39:
b9:42:ce:f1:3b:b7:ce:c4:db:1e:fa:bd:e5:f4:17:68:7e:a5:
be:d7:54:22:e2:7d:db:ac:0f:2b:b3:83:7f:a7:bd:39:a8:c4:
5f:14:d1:88:61:d7:76:c8:7b:29:93:c3:c1:7f:8a:83:4c:b2:
d5:2b:86:5f:7e:11:c9:10:5c:82:b1:36:3c:9e:4e:86:5c:57:
30:0c:30:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:55:45 2025 by rpki-client