Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: Cfeu4TvTKKX2RcwaOQwlepDuiSf2OXXSK5VjNo1D3yM=
Subject key identifier: E8:EB:E6:BF:14:30:F1:12:D8:4F:29:54:B0:3D:AB:AD:69:EC:AC:21
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 01974C6995ABEAF92BEE8750D7A44C2CDD00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 108D
Signing time: Sat 07 Jun 2025 22:01:17 +0000
Manifest this update: Sat 07 Jun 2025 22:01:17 +0000
Manifest next update: Sun 08 Jun 2025 22:01:17 +0000
Files and hashes: 1: QGKSiFavp9LMElSoLZBhqzLqFMM.roa (hash: ip/2uYmlI+BKnaF8k1mqNHwsPmNtHEQrk8aTeSCdMUA=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: JS/Qs9RDTr1G34I5h/o1deBeLxb9PkJ4oc1MlsdLbug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:95:ab:ea:f9:2b:ee:87:50:d7:a4:4c:2c:dd:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Jun 7 22:01:17 2025 GMT
Not After : Jun 8 22:01:17 2025 GMT
Subject: CN=e8ebe6bf1430f112d84f2954b03dabad69ecac21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9b:e1:e2:55:cb:e4:f8:e2:ad:d5:df:71:c5:
0a:c9:9c:de:a5:d8:b9:ac:82:87:9c:68:7e:e1:58:
7a:5b:cb:6a:47:1d:f6:9f:2e:b3:29:8d:d3:56:1f:
85:32:35:c9:82:83:2a:e2:eb:b9:8e:3a:cf:32:88:
2e:d8:5a:e5:5f:f6:33:4d:5b:59:61:c3:e9:04:91:
37:82:5c:47:c1:64:92:02:89:f2:04:65:b5:9b:ef:
64:70:aa:ee:ba:26:5e:bf:1c:e8:e2:8d:96:b9:61:
bf:22:e2:5d:55:57:c1:ca:6d:a5:86:5e:44:50:ec:
05:e3:be:55:ca:d7:20:4c:87:60:46:0d:fb:2c:e8:
4e:aa:6f:5d:f9:92:a9:25:dd:1d:85:5f:70:47:e3:
a6:6b:fe:78:5f:45:da:fa:4e:83:3c:9c:34:0b:ff:
94:f7:e7:9b:df:53:48:78:a1:30:7b:82:66:e2:7f:
9c:f0:c1:3e:46:88:ae:a5:2b:8a:2e:68:2e:71:a8:
85:31:ff:00:b0:ad:a2:e8:9e:ea:d3:55:18:22:ce:
49:33:55:55:03:38:72:be:c7:e3:45:ed:75:33:1e:
be:7c:23:9a:4a:48:1a:85:ef:c1:2c:d6:c0:3d:b9:
44:d7:fd:a2:2a:a1:11:0f:b9:69:46:d6:27:61:1c:
31:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:EB:E6:BF:14:30:F1:12:D8:4F:29:54:B0:3D:AB:AD:69:EC:AC:21
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:85:b6:c3:03:f3:8b:85:0d:87:50:ee:50:97:aa:c8:5c:d1:
25:9c:ce:f0:04:16:96:33:73:a4:91:60:05:ea:d1:bc:d2:77:
1c:b8:af:26:c6:52:dc:bc:fc:6f:f6:a0:bc:64:ec:17:18:fc:
11:b8:71:a8:09:09:b9:7d:31:8a:fb:b6:28:7f:08:dc:d4:44:
8d:c8:aa:28:84:f0:7a:c5:52:e2:c9:26:e0:cd:6b:d6:3f:80:
77:1c:d8:93:e2:89:50:66:37:12:da:53:09:a9:bc:fd:ec:a8:
6c:b1:af:cf:31:b2:5f:16:22:3e:9f:8f:6e:35:a3:ea:0b:92:
af:bb:fc:65:e9:42:38:f5:72:ff:2e:af:9d:b9:e4:69:f3:d3:
ff:85:23:e8:04:90:2f:9e:5b:ed:99:04:4f:e0:65:2e:09:fc:
b3:84:ca:5c:ad:24:fb:3d:e4:fe:56:a8:16:50:c9:d7:e0:32:
3b:d7:ef:3d:a6:c0:b5:12:49:6f:d3:61:66:05:c5:ab:88:ba:
1f:ed:ee:44:c6:9d:b5:f2:81:dd:29:54:99:2b:ef:97:20:de:
aa:c9:2f:20:de:63:d8:5f:b5:c9:22:21:f6:8e:f7:ac:77:e1:
cc:bf:95:88:19:67:28:d8:54:79:5d:19:70:9c:99:4a:9a:7f:
61:72:7e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:50:25 2025 by rpki-client