Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
File: XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft (raw, json)
Hash identifier: uN+y5tApforXbJ+flUoo2spmaaIeNsKD9XREDUqnR0s=
Subject key identifier: 0F:4D:69:B3:5B:06:43:67:38:AC:52:DD:30:70:7E:89:79:50:06:56
Authority key identifier: 5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
Certificate issuer: /CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Certificate serial: 019754239CE4F4DC4EB36C954446E0C044EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
Manifest number: 015F
Signing time: Mon 09 Jun 2025 10:01:49 +0000
Manifest this update: Mon 09 Jun 2025 10:01:49 +0000
Manifest next update: Tue 10 Jun 2025 10:01:49 +0000
Files and hashes: 1: X7HkSzc73grEKj4u4ebonuY_N3k.roa (hash: OyEQG3xPXjnpnin1BNjI7sPjB8DI9jWlTT019Ki3K7k=)
2: XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl (hash: F2GQkk6wZUCJOgiEqCmtqYW1RiH0zRcKNhqkdEALglY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:23:9c:e4:f4:dc:4e:b3:6c:95:44:46:e0:c0:44:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Validity
Not Before: Jun 9 10:01:49 2025 GMT
Not After : Jun 10 10:01:49 2025 GMT
Subject: CN=0f4d69b35b06436738ac52dd30707e8979500656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f9:97:11:d3:18:e0:2c:da:1e:5f:0e:3a:4f:
5d:7d:b6:86:8e:97:1a:b6:12:5a:fd:d4:ac:09:f6:
a5:f3:09:1e:ac:ff:27:e7:b1:18:45:db:b4:b5:b0:
f3:56:5d:b7:b1:a5:46:d8:ef:f0:7b:85:85:a9:0b:
2a:5f:c3:e0:83:ce:1b:07:52:18:2d:a8:cd:22:fd:
0e:e0:b6:f8:ff:d5:22:c0:19:1d:86:d2:c2:fc:cd:
cb:ba:ec:fa:78:0d:13:33:fc:19:fd:2b:ad:f0:04:
68:b9:8d:f1:90:5e:70:c8:18:56:a4:c1:dc:c6:d0:
6a:f6:18:15:79:14:b2:85:7d:ae:e3:79:b5:29:86:
88:dd:09:67:5b:5b:07:14:97:75:71:97:e2:64:cb:
22:3e:a3:d9:d1:97:37:f2:28:a6:20:60:d7:a0:50:
9a:54:9b:6c:e7:a4:5c:24:9f:86:29:25:68:e9:ec:
8b:4a:fb:5f:4a:f5:40:22:35:d7:e1:bd:0b:0d:d5:
ed:31:8c:76:53:65:58:46:af:12:34:c0:a4:08:c5:
cb:fb:9e:a2:54:aa:89:ba:2a:9e:0a:b6:1f:e4:93:
a5:45:59:ed:cf:4c:d3:22:01:6e:68:c9:a9:82:50:
3b:ee:a3:2f:d2:db:95:e9:45:f2:3f:50:5f:ab:27:
58:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:4D:69:B3:5B:06:43:67:38:AC:52:DD:30:70:7E:89:79:50:06:56
X509v3 Authority Key Identifier:
keyid:5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:5f:9d:c0:80:76:e3:ba:f9:db:92:2c:cb:c5:fb:7b:71:dd:
4a:b7:35:2f:dc:bb:ed:19:e4:4c:f0:51:86:17:02:23:b9:45:
16:de:5d:c2:2d:ab:1a:68:e3:ef:63:90:49:7d:d9:6d:90:8a:
bb:ff:86:4c:fd:3e:0e:c0:21:12:94:47:3b:f9:65:5f:a2:8b:
bd:f5:fb:3a:7f:ed:66:74:09:22:f3:bc:bf:f9:e9:b4:4e:44:
cf:eb:08:8f:ef:24:3d:6f:49:07:cb:3f:e4:c4:8d:88:66:85:
be:46:5a:cc:2d:de:a9:6d:26:ca:b3:93:96:9b:2c:a5:db:de:
6d:7e:ad:85:2b:01:21:d6:9a:9d:54:f9:66:b3:5a:02:9d:81:
de:00:5b:97:cf:0a:b7:59:82:f6:2b:f2:83:31:c9:84:19:8c:
d3:48:60:66:0f:56:28:04:f2:0d:f8:6c:b3:c1:76:6b:7f:cb:
e8:4a:47:df:db:5d:65:b9:db:39:a3:57:35:70:5d:95:c5:6b:
9f:df:d6:dd:a1:3a:fc:1c:16:c6:3c:86:a4:32:e5:ed:07:26:
e9:77:69:6a:5c:5a:46:51:85:2c:3f:7d:1e:4f:be:3f:c9:5d:
82:cd:ef:af:ba:88:37:34:9f:fd:ab:f5:18:ff:7b:1a:43:3c:
be:02:21:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 11:54:39 2025 by rpki-client