Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json)
Hash identifier: vI7USYir0zrQvJiFOllp+h+F9I4wqhErwna2yDwLH+8=
Subject key identifier: CB:2C:58:09:82:DC:82:7C:04:2F:ED:C1:50:E1:D3:23:C4:E4:22:FC
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 01974742DE317BBD329F35E3D0D70CE20AED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
Manifest number: 0D2B
Signing time: Fri 06 Jun 2025 22:00:53 +0000
Manifest this update: Fri 06 Jun 2025 22:00:53 +0000
Manifest next update: Sat 07 Jun 2025 22:00:53 +0000
Files and hashes: 1: 8rSm2TYmCggVgedhJYf2d5mO9bY.roa (hash: u5F6NWnwd9MOKoxteUtWCw1+tPwzMsMfG5qFtnCO6pk=)
2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: dr2Q+iDFkN3SQZUuaVYr2OnlqgxVMSuYeBBHBWB49bw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:de:31:7b:bd:32:9f:35:e3:d0:d7:0c:e2:0a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: Jun 6 22:00:53 2025 GMT
Not After : Jun 7 22:00:53 2025 GMT
Subject: CN=cb2c580982dc827c042fedc150e1d323c4e422fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9c:95:c4:7e:8b:60:8d:07:8a:75:20:81:31:
e5:ef:37:7d:67:76:5a:f7:96:68:1c:8d:4a:15:5f:
45:29:57:a3:d0:a1:b2:76:50:19:2e:08:92:a6:16:
f6:53:3f:55:07:3c:8f:25:43:db:b7:1b:a9:56:e4:
93:8a:c8:6a:72:80:08:02:9d:3b:03:14:1c:99:80:
c7:13:3b:9a:06:d8:20:a6:ad:5f:b5:71:ec:b9:92:
3c:67:e7:d5:ee:a0:22:e3:57:60:28:57:f4:e3:65:
5f:4a:a7:dc:da:75:a9:69:2e:03:f3:14:a5:f0:22:
2c:14:56:42:30:dc:ef:54:a1:28:fe:29:07:61:99:
67:99:94:27:7c:ae:96:2c:a8:26:be:82:3a:a7:2f:
56:07:98:7c:8a:c4:9e:e6:34:c5:b8:0e:ba:4b:f1:
5c:48:c7:81:9d:37:c8:fe:6b:9a:ae:62:41:e9:4b:
ae:5a:1c:34:18:43:c4:c4:20:36:15:34:fb:b9:ff:
8e:5d:c4:98:4d:26:c2:2f:4d:c1:47:07:30:a7:2b:
20:8c:05:7f:af:95:c4:ce:64:b2:b6:b3:33:4e:01:
0d:99:56:ab:5d:88:0f:9f:cb:95:15:4d:16:c1:78:
0c:8f:60:f7:11:e4:09:ad:69:ed:f2:76:9e:c2:25:
c8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2C:58:09:82:DC:82:7C:04:2F:ED:C1:50:E1:D3:23:C4:E4:22:FC
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:48:41:d0:77:4c:4b:e2:8c:93:c4:0a:f1:e6:3c:98:0b:8d:
ad:ce:63:78:e0:a1:a1:7d:b3:d3:4a:eb:e0:1e:a3:34:7f:54:
3d:1d:02:70:de:c0:93:aa:c5:33:7c:7e:3a:7e:4c:fb:04:93:
3b:47:a5:1d:eb:6e:cf:05:66:02:88:85:06:42:e7:23:fb:44:
05:72:d5:95:65:c1:41:60:e2:0a:1c:8d:51:6e:de:9f:06:bd:
01:57:77:d2:73:96:0c:35:a9:d1:85:49:58:34:24:3b:9d:0a:
5d:c1:5c:0d:fb:f5:9c:3c:30:da:ec:15:65:3d:6d:6a:25:00:
ba:27:ae:fe:2a:53:1d:1f:8c:9e:b6:3f:36:52:ca:60:75:b3:
2f:fe:fa:82:a4:44:b9:e4:f0:45:c0:e9:c1:52:37:0a:30:2f:
3f:3a:4f:5e:6e:52:5e:27:ac:59:6a:df:7e:b8:f2:50:b5:15:
1a:8a:3a:5e:ca:2e:15:fb:39:8f:f8:19:9f:21:34:6f:7b:c6:
5b:c1:be:62:c8:91:1a:1b:e0:ae:eb:50:03:6f:de:54:85:07:
e9:1e:e0:a6:d9:2d:d9:76:39:5e:ea:08:d8:76:ae:7c:45:50:
e1:b2:92:8b:ba:31:44:44:4f:5b:e7:bb:4a:ad:f7:9b:36:16:
be:d1:0d:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHQt4xe70ynzXj0NcM4grtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjYjNhMjE0NWY5YjRkNDY2MDU4MmFkYzZiNzM1NDk2OWUw
ODljYTkwHhcNMjUwNjA2MjIwMDUzWhcNMjUwNjA3MjIwMDUzWjAzMTEwLwYDVQQD
EyhjYjJjNTgwOTgyZGM4MjdjMDQyZmVkYzE1MGUxZDMyM2M0ZTQyMmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjJyVxH6LYI0HinUggTHl7zd9Z3Za
95ZoHI1KFV9FKVej0KGydlAZLgiSphb2Uz9VBzyPJUPbtxupVuSTishqcoAIAp07
AxQcmYDHEzuaBtggpq1ftXHsuZI8Z+fV7qAi41dgKFf042VfSqfc2nWpaS4D8xSl
8CIsFFZCMNzvVKEo/ikHYZlnmZQnfK6WLKgmvoI6py9WB5h8isSe5jTFuA66S/Fc
SMeBnTfI/muarmJB6UuuWhw0GEPExCA2FTT7uf+OXcSYTSbCL03BRwcwpysgjAV/
r5XEzmSytrMzTgENmVarXYgPn8uVFU0WwXgMj2D3EeQJrWnt8naewiXIkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMssWAmC3IJ8BC/twVDh0yPE5CL8MB8GA1UdIwQY
MBaAFFyzohRfm01GYFgq3GtzVJaeCJypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9kMDY2MWMtY2ViYi00ZTIyLWIxOTct
MTM5ODAwYThjNzVmLzEvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi9kMDY2MWMtY2ViYi00ZTIyLWIxOTctMTM5ODAwYThjNzVm
LzEvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR0hB0HdM
S+KMk8QK8eY8mAuNrc5jeOChoX2z00rr4B6jNH9UPR0CcN7Ak6rFM3x+On5M+wST
O0elHetuzwVmAoiFBkLnI/tEBXLVlWXBQWDiChyNUW7enwa9AVd30nOWDDWp0YVJ
WDQkO50KXcFcDfv1nDww2uwVZT1taiUAuieu/ipTHR+MnrY/NlLKYHWzL/76gqRE
ueTwRcDpwVI3CjAvPzpPXm5SXiesWWrffrjyULUVGoo6XsouFfs5j/gZnyE0b3vG
W8G+YsiRGhvgrutQA2/eVIUH6R7gptkt2XY5XuoI2HaufEVQ4bKSi7oxRERPW+e7
Sq33mzYWvtEN5w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 05:54:10 2025 by rpki-client