Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
File: XO56utwc1TZH4rILdg1aXHqxp8w.mft (raw, json)
Hash identifier: UsmeRJVZGdnrKllJiHzREI5HovR4hSeK1IQ4/0OwKTQ=
Subject key identifier: 9B:13:11:34:D8:41:89:B7:9A:4E:04:D2:8E:32:2A:D6:A2:D7:FB:2A
Authority key identifier: 5C:EE:7A:BA:DC:1C:D5:36:47:E2:B2:0B:76:0D:5A:5C:7A:B1:A7:CC
Certificate issuer: /CN=5cee7abadc1cd53647e2b20b760d5a5c7ab1a7cc
Certificate serial: 01975121CDC6C4B064B901B8CA663636FE31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
Manifest number: 6D
Signing time: Sun 08 Jun 2025 20:00:59 +0000
Manifest this update: Sun 08 Jun 2025 20:00:59 +0000
Manifest next update: Mon 09 Jun 2025 20:00:59 +0000
Files and hashes: 1: XO56utwc1TZH4rILdg1aXHqxp8w.crl (hash: POKP7RUjSXQ45W+V0DWJc0WjA/HgPVnB/YCbKtC20C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:cd:c6:c4:b0:64:b9:01:b8:ca:66:36:36:fe:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cee7abadc1cd53647e2b20b760d5a5c7ab1a7cc
Validity
Not Before: Jun 8 20:00:59 2025 GMT
Not After : Jun 9 20:00:59 2025 GMT
Subject: CN=9b131134d84189b79a4e04d28e322ad6a2d7fb2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fc:0a:ed:5a:d2:e2:9a:5e:d8:c6:65:48:e8:
b7:a7:82:a3:8a:49:bb:21:76:3d:b1:02:8a:55:d8:
d1:f7:d2:c0:ba:83:ee:46:8c:f6:05:af:1e:65:12:
14:78:65:96:9e:27:0a:71:3b:1a:92:ae:f7:f7:f6:
bd:e7:db:ae:5d:d8:bb:97:85:f2:ca:8d:c6:dd:2d:
66:c2:48:96:ee:5a:e7:f2:67:5f:89:c9:11:2e:1d:
89:c3:f5:32:03:2a:d2:5a:87:0c:f8:b6:f0:3a:5e:
69:4c:74:9e:ab:6a:e4:e1:be:2e:dd:90:9b:0e:1d:
1f:d3:af:5b:90:2b:4d:50:36:dd:10:bb:93:f2:42:
fc:82:e9:e3:db:b1:51:a4:08:39:47:56:60:52:47:
bd:a9:b3:62:af:d6:c6:f6:81:46:35:7f:f8:10:8f:
f5:66:d4:8e:65:a5:46:e0:c3:29:9d:31:2d:80:ee:
70:e0:03:8a:89:a2:a1:c7:24:0f:68:28:db:46:d7:
56:68:f9:b9:fb:04:c7:c3:31:a4:9c:4e:3c:df:37:
96:1e:7f:1c:eb:45:4c:14:04:33:bf:2e:27:80:6f:
47:a3:4b:61:68:6d:ab:55:01:a5:14:85:fa:9f:78:
ce:7d:54:ec:8f:14:20:40:d4:f7:1b:e3:f1:36:9e:
c3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:13:11:34:D8:41:89:B7:9A:4E:04:D2:8E:32:2A:D6:A2:D7:FB:2A
X509v3 Authority Key Identifier:
keyid:5C:EE:7A:BA:DC:1C:D5:36:47:E2:B2:0B:76:0D:5A:5C:7A:B1:A7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:a5:6c:f0:ba:f1:ce:0b:99:cb:e2:65:b4:af:10:ae:02:c8:
2b:3d:8d:ba:a1:8c:7f:fa:21:4c:1c:15:86:79:32:1a:37:8b:
eb:c6:a1:65:79:97:f9:42:46:9a:68:6e:6c:21:bd:25:f0:8f:
27:cf:a0:e6:4d:2f:15:98:8b:c9:96:a6:84:7b:2d:0a:62:f1:
73:f6:41:5c:2d:b2:f7:b4:d6:c3:b9:14:dd:65:15:22:43:a7:
8c:18:5a:ee:03:69:3e:44:eb:39:d4:67:53:b6:de:ba:8d:10:
06:48:12:98:6d:49:e2:d4:59:64:cb:a9:97:0f:f7:d3:cc:f6:
fa:70:7c:a6:2f:d2:12:21:46:d6:86:a1:30:94:11:ff:90:a5:
43:52:c5:90:62:41:24:a2:4e:2e:cf:5c:5f:aa:6b:53:ba:6e:
c4:de:e4:56:9a:e9:69:12:ff:50:1a:11:71:85:ef:a3:08:d1:
db:f3:97:58:00:f2:27:7e:4b:f4:24:8e:c5:b8:87:41:2a:ba:
a3:83:bb:b5:5b:71:e6:2d:53:98:23:86:37:19:66:74:46:e6:
b3:b1:5b:67:40:f2:08:db:e5:81:5b:cf:fd:52:89:94:de:92:
74:92:94:53:14:f9:d3:ea:4a:c7:05:ba:07:d8:b4:33:aa:24:
75:c8:1c:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdRIc3GxLBkuQG4ymY2Nv4xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZWU3YWJhZGMxY2Q1MzY0N2UyYjIwYjc2MGQ1YTVjN2Fi
MWE3Y2MwHhcNMjUwNjA4MjAwMDU5WhcNMjUwNjA5MjAwMDU5WjAzMTEwLwYDVQQD
Eyg5YjEzMTEzNGQ4NDE4OWI3OWE0ZTA0ZDI4ZTMyMmFkNmEyZDdmYjJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvwK7VrS4ppe2MZlSOi3p4Kjikm7
IXY9sQKKVdjR99LAuoPuRoz2Ba8eZRIUeGWWnicKcTsakq739/a959uuXdi7l4Xy
yo3G3S1mwkiW7lrn8mdfickRLh2Jw/UyAyrSWocM+LbwOl5pTHSeq2rk4b4u3ZCb
Dh0f069bkCtNUDbdELuT8kL8gunj27FRpAg5R1ZgUke9qbNir9bG9oFGNX/4EI/1
ZtSOZaVG4MMpnTEtgO5w4AOKiaKhxyQPaCjbRtdWaPm5+wTHwzGknE483zeWHn8c
60VMFAQzvy4ngG9Ho0thaG2rVQGlFIX6n3jOfVTsjxQgQNT3G+PxNp7DTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJsTETTYQYm3mk4E0o4yKtai1/sqMB8GA1UdIwQY
MBaAFFzuerrcHNU2R+KyC3YNWlx6safMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE81NnV0d2MxVFpINHJJTGRnMWFYSHF4cDh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi81MGMyMDUtMjE4OS00NzM0LTk2NDgt
NDg2YThjZGRkYmU4LzEvWE81NnV0d2MxVFpINHJJTGRnMWFYSHF4cDh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi81MGMyMDUtMjE4OS00NzM0LTk2NDgtNDg2YThjZGRkYmU4
LzEvWE81NnV0d2MxVFpINHJJTGRnMWFYSHF4cDh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPqVs8Lrx
zguZy+JltK8QrgLIKz2NuqGMf/ohTBwVhnkyGjeL68ahZXmX+UJGmmhubCG9JfCP
J8+g5k0vFZiLyZamhHstCmLxc/ZBXC2y97TWw7kU3WUVIkOnjBha7gNpPkTrOdRn
U7beuo0QBkgSmG1J4tRZZMuplw/308z2+nB8pi/SEiFG1oahMJQR/5ClQ1LFkGJB
JKJOLs9cX6prU7puxN7kVprpaRL/UBoRcYXvowjR2/OXWADyJ35L9CSOxbiHQSq6
o4O7tVtx5i1TmCOGNxlmdEbms7FbZ0DyCNvlgVvP/VKJlN6SdJKUUxT50+pKxwW6
B9i0M6okdcgc8A==
-----END CERTIFICATE-----
Generated at Sun Jun 8 23:12:01 2025 by rpki-client