Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: z6WUFUTkA1zTRtXPSMw4zHulEss4iOz9msaAD/0y76U=
Subject key identifier: 07:FE:03:88:6C:2B:7F:8E:7F:B8:E9:CC:A9:97:1C:C4:F2:95:C9:B0
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 019749D59C9C648AFFDA17D667CAE584FADF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 0F27
Signing time: Sat 07 Jun 2025 10:00:25 +0000
Manifest this update: Sat 07 Jun 2025 10:00:25 +0000
Manifest next update: Sun 08 Jun 2025 10:00:25 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: FyMXWQIJoa4knSmYbcHINTFb4gcQLrTM5yA6nEgVTsw=)
2: BBc69UDcCnvJ9YXOkYKIegaNiDE.roa (hash: u/teCtCSqk7whi20Ul6NWhHZ26QmJCDD43T9Guz4eqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:9c:9c:64:8a:ff:da:17:d6:67:ca:e5:84:fa:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Jun 7 10:00:25 2025 GMT
Not After : Jun 8 10:00:25 2025 GMT
Subject: CN=07fe03886c2b7f8e7fb8e9cca9971cc4f295c9b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:46:42:6f:a9:54:7b:6b:b9:20:fa:66:96:ef:
90:d3:95:c6:42:a1:4d:00:69:92:f7:56:e3:6c:2b:
c0:f3:fc:8c:22:72:9e:5d:ee:17:f4:b5:9c:e0:d7:
48:05:d9:03:c4:58:84:e4:4c:d1:18:96:07:12:32:
53:d5:bd:ab:92:d7:e5:49:28:7d:29:35:2e:78:27:
50:92:bd:91:d9:b8:37:ac:f8:02:37:fe:10:56:7a:
f6:de:39:ee:ce:18:bc:36:c0:4e:ee:0d:4d:ef:84:
12:34:9b:28:52:22:bd:0d:82:6d:41:85:56:6d:29:
1b:6f:57:c5:a0:39:37:35:b2:45:61:09:ba:1e:5a:
6c:2a:b0:7c:17:5f:15:ee:f1:32:e4:d4:b4:00:97:
e3:6e:db:ac:0f:d7:da:95:ff:9a:cb:c7:5a:ec:2e:
38:18:db:08:87:3b:da:78:03:ef:23:b7:e5:34:c7:
38:36:60:a4:6f:eb:b9:8b:25:f0:07:53:c8:82:04:
af:1a:7c:01:16:df:76:f2:62:00:48:c4:8e:9d:b7:
73:7f:9f:b6:cb:15:d8:bf:e8:0f:2c:e9:31:ed:4c:
89:80:e6:79:2d:e3:c7:26:03:dc:4e:d6:0e:5b:ee:
91:b6:17:c0:7b:e6:4e:8f:bf:a6:dc:a6:d3:c3:82:
53:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:FE:03:88:6C:2B:7F:8E:7F:B8:E9:CC:A9:97:1C:C4:F2:95:C9:B0
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:8d:85:be:90:55:41:fc:6b:b5:4b:fc:a2:8e:62:bb:67:98:
d2:60:37:fa:2e:9c:7c:57:81:72:83:f5:03:4a:3e:db:3d:3b:
a7:7c:72:4b:4c:9f:66:a3:5c:82:9d:35:28:88:69:de:d4:bb:
41:ce:2a:b7:5c:04:de:65:5c:d9:f2:c2:24:16:87:4d:41:f3:
b4:8f:37:34:db:ba:7c:1f:49:18:26:bd:53:4d:84:e1:91:20:
97:f0:e3:c1:29:85:31:57:7b:ff:e5:bf:53:44:24:f1:23:4f:
5d:66:a3:b9:24:bc:6c:f6:05:30:d9:e7:55:56:50:0f:e0:ca:
cf:44:5b:e2:f4:08:a3:c8:3b:c7:5b:6b:fc:3b:39:27:85:f4:
ac:bf:73:8f:04:85:71:b9:eb:96:33:e6:83:28:9d:2d:7b:8f:
5a:91:14:25:16:4c:75:72:f4:06:d6:63:cf:62:47:b6:5b:6f:
25:84:60:13:58:66:88:5e:9c:59:28:d9:a8:32:10:c3:0b:c8:
99:c3:d7:50:ad:26:de:64:b2:4e:d4:fc:fc:cd:3e:1a:49:8a:
23:dc:00:0e:a1:06:ff:8b:d9:9d:63:b9:28:5b:bf:e1:40:1e:
41:89:9b:a0:e9:89:d7:e6:f5:a2:46:bc:7a:a6:8b:53:3d:68:
2f:34:d7:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:58:32 2025 by rpki-client