Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
File: XQwn-FWB4ue94MmPvVS-HUlnBRc.mft (raw, json)
Hash identifier: +YFMExzPbXTruAk33PmHfPR/bktVSparBDp9t9f88tU=
Subject key identifier: 38:80:EA:D3:A6:17:DC:1D:E1:51:96:C9:C9:3B:95:BC:CF:06:9D:FF
Authority key identifier: 5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
Certificate issuer: /CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Certificate serial: 01985231B49322D00FED843C308FF851BEA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
Manifest number: 1606
Signing time: Mon 28 Jul 2025 18:00:45 +0000
Manifest this update: Mon 28 Jul 2025 18:00:45 +0000
Manifest next update: Tue 29 Jul 2025 18:00:45 +0000
Files and hashes: 1: 5lc5ZmxcIf_S-qtTdxwVFYdfw74.roa (hash: nWQ6LzHmMcNUWFVJjD8F6A2IBDinnQ/3GkZ+tOcMhcc=)
2: XQwn-FWB4ue94MmPvVS-HUlnBRc.crl (hash: IXoM0mkhmFYSlSgmstADljNObbSBc5xmBIUpJ9q+U98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 18:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:52:31:b4:93:22:d0:0f:ed:84:3c:30:8f:f8:51:be:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Validity
Not Before: Jul 28 18:00:45 2025 GMT
Not After : Jul 29 18:00:45 2025 GMT
Subject: CN=3880ead3a617dc1de15196c9c93b95bccf069dff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a5:8e:b9:43:95:ee:93:93:2a:99:9a:6f:c4:
76:f7:55:f8:74:23:17:d8:88:29:b9:ec:3b:81:48:
e3:37:23:3d:49:35:73:b7:b3:43:62:b9:1b:89:12:
10:41:7e:af:c4:a3:12:0a:f8:aa:09:98:77:85:f4:
80:79:7b:2d:67:75:fc:3f:8d:8b:dd:a2:0b:62:b2:
0a:1e:69:c2:e1:9a:38:f0:a2:21:08:47:9d:0a:7d:
65:da:9e:f4:e3:1e:1a:d7:d3:0d:1f:a4:21:e0:ba:
f4:52:3b:06:b9:ef:51:15:33:ff:79:3a:9b:7c:66:
2e:fc:bc:d9:0b:a0:47:bf:e8:e9:ed:87:82:f1:53:
c6:17:3d:df:33:f4:40:62:49:b5:f8:83:83:44:88:
38:bc:2f:fc:95:62:a3:25:72:ae:86:a1:be:3e:7b:
f8:bd:d7:13:1c:a8:48:64:17:50:cb:4e:f7:28:9e:
f9:8d:1b:29:55:77:c7:b9:97:ce:de:c4:20:16:a0:
48:cd:d5:0d:75:87:5f:ba:13:2d:77:cc:dc:9b:47:
16:3b:70:0b:28:56:4f:7a:9c:49:fe:73:9c:8e:b2:
bb:64:5e:fc:3b:72:0e:11:69:41:19:49:d3:70:09:
e0:57:a8:f1:01:a6:43:7d:5f:f2:76:3d:65:e4:5d:
e0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:80:EA:D3:A6:17:DC:1D:E1:51:96:C9:C9:3B:95:BC:CF:06:9D:FF
X509v3 Authority Key Identifier:
keyid:5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:16:56:f8:cd:32:8e:6a:29:ea:6c:70:c8:30:0f:f6:76:41:
c2:0a:a7:a4:25:d6:a3:52:4f:2a:69:91:e3:f3:dc:79:b5:0d:
bf:4f:64:7f:3b:ec:ff:93:78:57:78:26:80:3e:00:bb:e2:5a:
57:0f:b3:6b:6c:13:3e:b9:1e:5c:75:14:80:d1:b4:98:4a:06:
63:f8:cc:cb:c6:4b:75:d4:c3:06:12:fb:92:e1:9e:95:49:36:
ad:3d:c1:71:9e:5b:a4:cc:2b:29:b9:a0:9c:db:32:d0:cb:19:
3f:70:9a:5d:41:13:b2:b3:ce:38:df:74:01:84:6a:d6:42:8c:
f5:9d:9b:65:b3:d9:f6:47:ca:3f:f0:84:1c:f8:3c:11:e1:99:
da:48:4d:40:d1:8e:40:97:30:00:6c:5a:bb:6d:aa:e8:e3:78:
e0:90:ce:ec:c4:f4:6e:e2:20:85:32:0c:17:75:2f:6e:5c:29:
2a:4f:61:ba:6c:66:d6:01:c3:16:95:20:35:8a:a0:fc:ae:ce:
34:23:ca:b1:67:42:41:39:59:97:f5:3a:ca:75:b2:64:e7:a4:
5a:ab:8d:74:94:2f:d6:c8:44:a1:85:59:bf:5d:a2:25:93:53:
6c:22:45:50:6f:e1:f1:fa:dc:db:92:23:57:ca:4a:7c:79:ba:
9a:de:a8:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 03:42:21 2025 by rpki-client