Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
File: XZxbcz-6cemMB-E7A6fFWrhMyO0.mft (raw, json)
Hash identifier: rszxfpZjv+XGRhveHeCndfcAFVYKxdVDbGhfXB+WLJo=
Subject key identifier: 32:99:48:00:33:B3:CF:C2:00:EB:37:A9:DE:43:F7:C1:BB:B7:F1:C5
Authority key identifier: 5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
Certificate issuer: /CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Certificate serial: 01974E8E6299D686FB271E5BC20952F0C1F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 08:00:43 +0000
Manifest this update: Sun 08 Jun 2025 08:00:43 +0000
Manifest next update: Mon 09 Jun 2025 08:00:43 +0000
Files and hashes: 1: XZxbcz-6cemMB-E7A6fFWrhMyO0.crl (hash: GrYEb4RMxT1lByHA0N5ZRIISBiSEvg6WFvp1iqWoW0w=)
2: tjHH92n144_2kyCpRlp025zS_60.roa (hash: ok5CTqSNJzdSSlXk4Sa58sv7A+s3smyB2E8BTCCRwo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 08:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:62:99:d6:86:fb:27:1e:5b:c2:09:52:f0:c1:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Validity
Not Before: Jun 8 08:00:43 2025 GMT
Not After : Jun 9 08:00:43 2025 GMT
Subject: CN=3299480033b3cfc200eb37a9de43f7c1bbb7f1c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f9:0c:50:dd:1b:42:de:37:d6:6a:57:d0:06:
a9:e1:5a:8b:ec:3c:5c:88:07:64:3a:88:25:85:64:
88:67:70:b0:9e:9a:1e:71:c6:40:2c:40:bd:57:28:
b6:9e:e4:94:e5:d0:a5:2c:b6:be:f7:ae:01:c1:f3:
e9:81:54:6a:11:c1:16:ed:aa:57:b0:38:7c:32:a9:
a4:56:78:76:5b:7f:19:ab:eb:6e:75:d4:25:88:f5:
ce:3d:a5:d8:12:32:4f:a3:6f:fa:9a:ea:aa:9e:0a:
f2:0f:b0:38:a8:6b:7b:2e:1e:d8:c4:92:42:fc:d8:
02:97:16:da:0e:3e:3b:2d:d0:ce:15:ab:04:bd:07:
98:a8:4e:8c:a7:9f:e8:61:0c:7b:a5:fa:59:61:43:
eb:08:e7:f1:4f:77:18:6c:6a:e4:e9:31:2c:12:d6:
16:6e:33:d2:43:9d:6f:86:9c:81:98:7d:fc:d6:cf:
bd:3d:c5:c5:fd:2b:06:a3:66:b0:69:e0:eb:6f:54:
38:9b:6a:5e:a4:36:bf:ad:39:2f:ce:fc:fb:64:ef:
70:eb:d3:56:4e:ff:ed:20:a4:7e:0e:4d:ba:b1:aa:
95:be:a0:fb:dc:b0:37:82:f2:31:b6:7e:3f:8e:fa:
e5:6b:2e:95:b9:5e:95:95:3f:93:2b:aa:75:ed:4e:
6d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:99:48:00:33:B3:CF:C2:00:EB:37:A9:DE:43:F7:C1:BB:B7:F1:C5
X509v3 Authority Key Identifier:
keyid:5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:93:31:5f:1d:8f:51:11:1a:4d:f6:d2:6e:e3:38:87:4c:3e:
ba:e8:b3:7c:b7:e5:05:ce:cf:27:bd:9f:0a:f1:49:1d:23:35:
04:9a:09:b8:e4:b8:56:c4:ff:96:64:d2:b5:e9:35:b9:45:bd:
6b:dd:10:6e:5d:60:d0:80:4c:fa:95:99:3b:8f:e6:9b:42:e2:
96:53:0f:77:ef:90:02:de:6b:7b:f5:9f:54:76:07:d4:1c:91:
bf:7b:a7:cb:4e:cc:bb:6f:18:90:59:ef:7f:62:eb:db:60:80:
47:f9:6d:45:5d:ca:15:1d:9c:b4:3f:28:fc:d9:15:9b:70:7e:
a1:a5:ce:af:2a:c9:c3:5c:39:e6:96:7a:6e:26:46:d6:03:96:
c3:c8:5d:7c:3b:1d:66:06:ad:d2:79:f9:8b:e1:38:e6:39:fa:
67:92:d7:cf:c8:c8:87:1b:1d:c0:ab:93:fc:63:f8:5b:7a:f0:
b7:ef:de:ee:d2:f8:85:b0:85:ec:fb:ed:c8:be:d1:29:b3:e4:
99:b5:61:ea:38:02:42:5b:8f:d2:85:1b:49:d5:9b:b9:c9:19:
bc:6e:5b:45:2b:7a:03:89:79:e8:35:43:11:f1:e2:d0:33:74:
b6:2e:51:25:1f:c4:e9:81:2c:2d:c8:80:ab:86:dc:14:d2:60:
4a:0b:08:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:25:14 2025 by rpki-client