Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
File: XBEKKwrrN_DJMqlr279-82whGXw.mft (raw, json)
Hash identifier: EeG0jBc/7TBoG2Lk5yUgCJphs3UI2xdJ+TeHfGSKOA4=
Subject key identifier: EF:9E:06:5D:F6:29:CA:8F:4F:6B:C6:AA:20:72:69:78:5F:F8:68:AF
Authority key identifier: 5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
Certificate issuer: /CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Certificate serial: 019748552F1128EE075221AE83A1E3201FB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
Manifest number: 10E8
Signing time: Sat 07 Jun 2025 03:00:31 +0000
Manifest this update: Sat 07 Jun 2025 03:00:31 +0000
Manifest next update: Sun 08 Jun 2025 03:00:31 +0000
Files and hashes: 1: XBEKKwrrN_DJMqlr279-82whGXw.crl (hash: LDkzvYNjqLjZ9vuvoLBLu1kHlXThZujK8EchpuqVqqE=)
2: kzlWeerWBpLQJUvq-zvqgpRgYGk.roa (hash: nVND6/0jbck+9wjQsXvYtJIdnT8gV1/CUuZluisEp4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:2f:11:28:ee:07:52:21:ae:83:a1:e3:20:1f:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Validity
Not Before: Jun 7 03:00:31 2025 GMT
Not After : Jun 8 03:00:31 2025 GMT
Subject: CN=ef9e065df629ca8f4f6bc6aa207269785ff868af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e6:38:5e:29:03:a8:4c:84:48:bf:da:f7:51:
0f:33:be:c6:04:97:35:73:65:c2:8d:30:18:95:3e:
6e:90:28:c8:14:3a:3a:16:75:b3:bd:09:81:dc:63:
13:88:2b:2f:85:fa:92:5b:5d:59:14:e0:a6:3a:36:
f6:13:32:8a:16:e1:6e:00:9c:6c:c8:ec:02:18:39:
ba:e3:a5:6f:69:bc:62:9e:42:e5:29:d8:74:39:f2:
58:39:41:70:8b:f8:97:5b:72:0c:a7:9c:bb:3e:13:
0f:75:55:83:2d:26:2c:2b:95:ed:ec:15:44:6c:05:
16:af:92:c3:cd:46:92:84:f9:75:49:f6:31:fd:09:
8e:a3:1c:17:f3:85:b2:f9:8b:be:86:cc:7d:6c:91:
22:88:cf:21:e5:e4:6a:61:8a:b4:63:ee:ac:e7:c2:
c7:d8:b1:83:27:8c:6d:d7:3d:cc:63:93:d3:e7:4a:
1e:d5:6e:e6:44:74:5e:75:99:3d:d9:ab:f9:d6:22:
d1:ae:71:39:ee:3f:60:63:1e:8c:f2:7c:4b:6a:02:
6e:4e:06:ac:8d:a9:e6:41:48:2e:93:2f:43:ef:9c:
e2:97:e7:a8:6b:5f:7e:0a:c2:b8:be:44:ac:81:93:
a3:3c:45:e1:9a:9e:e3:47:6f:e6:80:e6:a4:fc:a1:
63:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:9E:06:5D:F6:29:CA:8F:4F:6B:C6:AA:20:72:69:78:5F:F8:68:AF
X509v3 Authority Key Identifier:
keyid:5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:bd:13:90:9e:5b:9b:a3:93:c4:44:f8:2c:53:8c:f3:d8:45:
4f:37:2f:84:70:2c:eb:54:13:a6:75:36:ae:76:1a:40:ef:51:
60:88:c9:33:d7:66:3e:62:2d:10:d9:49:1b:74:bc:84:99:2a:
3c:f8:3d:b1:e9:ef:22:85:f3:4c:0a:fa:85:cc:f7:81:9a:01:
15:d6:75:b4:55:21:13:56:f3:a5:1a:4a:10:6d:ff:b1:d9:dc:
bb:b3:03:31:21:4a:dc:81:be:da:84:87:e5:35:df:f0:cf:2c:
8e:a9:a1:76:53:37:58:61:60:26:4d:b2:ee:9b:7c:0a:4a:86:
b1:4b:12:ae:06:cc:b6:8f:75:27:02:75:7c:8a:57:c5:1b:85:
2c:c4:e7:74:f7:4a:68:e0:52:30:13:32:ec:4e:6f:74:31:ad:
35:1e:a8:57:24:15:b3:22:91:37:48:20:0c:46:c0:a3:58:68:
5a:df:6c:b5:2e:78:d6:0b:b2:23:af:03:11:99:bb:a9:27:e1:
e7:e5:bb:60:3c:8c:39:4c:6c:e5:7e:a7:0d:c1:56:da:ed:f2:
ca:9a:c6:4c:99:2c:8a:9c:0f:80:5a:c8:2a:b5:a8:90:60:2b:
0c:13:94:8d:e8:8e:40:c7:9a:0e:29:3c:10:5a:15:f6:6e:7a:
5e:0b:c8:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIVS8RKO4HUiGug6HjIB+3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjMTEwYTJiMGFlYjM3ZjBjOTMyYTk2YmRiYmY3ZWYzNmMy
MTE5N2MwHhcNMjUwNjA3MDMwMDMxWhcNMjUwNjA4MDMwMDMxWjAzMTEwLwYDVQQD
EyhlZjllMDY1ZGY2MjljYThmNGY2YmM2YWEyMDcyNjk3ODVmZjg2OGFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+Y4XikDqEyESL/a91EPM77GBJc1
c2XCjTAYlT5ukCjIFDo6FnWzvQmB3GMTiCsvhfqSW11ZFOCmOjb2EzKKFuFuAJxs
yOwCGDm646VvabxinkLlKdh0OfJYOUFwi/iXW3IMp5y7PhMPdVWDLSYsK5Xt7BVE
bAUWr5LDzUaShPl1SfYx/QmOoxwX84Wy+Yu+hsx9bJEiiM8h5eRqYYq0Y+6s58LH
2LGDJ4xt1z3MY5PT50oe1W7mRHRedZk92av51iLRrnE57j9gYx6M8nxLagJuTgas
janmQUguky9D75zil+eoa19+CsK4vkSsgZOjPEXhmp7jR2/mgOak/KFjvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO+eBl32KcqPT2vGqiByaXhf+GivMB8GA1UdIwQY
MBaAFFwRCisK6zfwyTKpa9u/fvNsIRl8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEJFS0t3cnJOX0RKTXFscjI3OS04MndoR1h3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9lNGM0MzUtZTZjZC00ZGEwLTllMzIt
YTQ0MjI0ZmFjM2ZmLzEvWEJFS0t3cnJOX0RKTXFscjI3OS04MndoR1h3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS9lNGM0MzUtZTZjZC00ZGEwLTllMzItYTQ0MjI0ZmFjM2Zm
LzEvWEJFS0t3cnJOX0RKTXFscjI3OS04MndoR1h3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsr0TkJ5b
m6OTxET4LFOM89hFTzcvhHAs61QTpnU2rnYaQO9RYIjJM9dmPmItENlJG3S8hJkq
PPg9senvIoXzTAr6hcz3gZoBFdZ1tFUhE1bzpRpKEG3/sdncu7MDMSFK3IG+2oSH
5TXf8M8sjqmhdlM3WGFgJk2y7pt8CkqGsUsSrgbMto91JwJ1fIpXxRuFLMTndPdK
aOBSMBMy7E5vdDGtNR6oVyQVsyKRN0ggDEbAo1hoWt9stS541guyI68DEZm7qSfh
5+W7YDyMOUxs5X6nDcFW2u3yyprGTJksipwPgFrIKrWokGArDBOUjeiOQMeaDik8
EFoV9m56XgvIcQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 12:50:38 2025 by rpki-client