Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
File: XiZI8SkNRHG821C4K-TtkyADCU0.mft (raw, json)
Hash identifier: EieWlFhplGb8jslzLxi3+sNVm87fOqv76XPzloM0JG4=
Subject key identifier: 76:72:CC:6D:F3:32:B1:C2:BD:BE:C6:4B:ED:1D:1A:91:08:5C:52:31
Authority key identifier: 5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
Certificate issuer: /CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Certificate serial: 01974967C97FF5A8E0579498885D976CCE68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
Manifest number: 150E
Signing time: Sat 07 Jun 2025 08:00:27 +0000
Manifest this update: Sat 07 Jun 2025 08:00:27 +0000
Manifest next update: Sun 08 Jun 2025 08:00:27 +0000
Files and hashes: 1: BECHjRO1sNTrECspSOXRaHeMWRM.roa (hash: CUP2bSCGR2R7pQJIeBFSspVhJwtI4r06AoqaZ9LnrhQ=)
2: XiZI8SkNRHG821C4K-TtkyADCU0.crl (hash: vKR3iK06XR0DhJMU2G3hAkrfVBJWLUK/cxSRR6v7280=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:c9:7f:f5:a8:e0:57:94:98:88:5d:97:6c:ce:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Validity
Not Before: Jun 7 08:00:27 2025 GMT
Not After : Jun 8 08:00:27 2025 GMT
Subject: CN=7672cc6df332b1c2bdbec64bed1d1a91085c5231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b8:07:fa:c6:82:26:91:2d:7e:b2:8b:a2:8e:
c5:48:b3:73:59:23:7f:b5:9e:82:10:95:f6:39:05:
20:96:e0:62:ce:de:78:02:e2:4e:2b:eb:a4:82:25:
75:2c:73:55:37:77:f3:94:90:11:39:67:45:79:82:
37:11:84:f4:ba:75:ba:8f:bd:24:e6:6e:48:d7:ee:
fa:c4:40:4b:23:67:1d:13:1e:e2:45:7c:a4:8e:de:
74:6b:30:2e:15:ee:dc:15:a8:bb:23:ec:4c:78:0e:
a2:11:d0:3e:bb:a4:c2:20:eb:41:04:95:7b:52:54:
21:f7:9d:a8:5d:34:23:c2:23:36:ba:61:fc:0b:4b:
cf:26:c0:57:11:ae:d0:19:42:b8:82:2c:c1:e7:db:
6a:37:7d:2f:6e:ec:8d:87:ce:9d:4d:23:56:a1:71:
3a:43:11:b1:c7:52:fc:70:87:d4:22:7f:af:2a:da:
8b:90:b5:17:ad:3d:98:2e:2e:af:16:a3:15:b9:b7:
ff:9b:e9:db:03:87:83:a0:a3:84:23:8f:a4:96:1b:
1a:bf:87:4c:d5:53:70:83:c3:0a:f2:db:6c:3e:2e:
bf:b4:67:b4:23:f0:5b:ff:3d:67:28:ea:6e:a8:59:
76:4f:31:58:ad:fe:c5:2d:2f:19:d3:a3:ba:d6:59:
63:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:72:CC:6D:F3:32:B1:C2:BD:BE:C6:4B:ED:1D:1A:91:08:5C:52:31
X509v3 Authority Key Identifier:
keyid:5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:cc:bf:ee:75:d8:ac:00:88:56:a0:cd:b6:3f:0a:f7:b2:c0:
88:76:8b:93:a1:aa:0d:4f:96:b6:64:f8:66:58:49:7f:5b:0b:
6b:f5:cd:b3:6d:2f:fe:5a:da:6c:98:db:8c:7f:1d:4d:dd:72:
38:4c:4a:b3:a1:a8:8a:f8:89:e2:0f:76:1a:72:7a:ed:bf:84:
4c:c8:40:7c:fb:c3:0a:b9:b6:4f:e2:65:ef:5e:0b:37:47:da:
64:95:ae:d2:e2:2b:eb:d0:97:5e:b2:09:b5:51:ab:9f:8a:3f:
be:36:b7:c6:9b:de:2a:e0:2d:fd:90:79:a8:76:44:6e:ae:29:
31:35:e3:71:63:e2:e4:f2:fc:d7:5d:cc:10:35:f8:de:4a:e3:
2b:ae:a5:1b:97:90:85:5d:66:f3:ff:b3:4f:3b:bf:a1:ac:5e:
8a:2a:50:1c:d5:5a:4a:b9:ee:c1:71:1a:a1:27:a4:44:ce:63:
40:fc:36:4b:0a:7e:0f:f1:db:6c:96:8e:b6:46:40:2f:da:36:
82:4a:48:66:8d:af:81:4b:78:a4:d2:5c:e7:38:af:d9:98:96:
3d:1e:7e:80:a0:58:36:16:fe:7c:8c:29:b8:c5:22:3d:17:f4:
e9:32:0d:81:1c:44:68:17:a3:66:02:4a:94:d7:ff:79:54:37:
36:5a:e6:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:28:32 2025 by rpki-client