Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: MRts6QucVNwaZyhj7aKQQTcUVCYDIGFJN+HnwNdiQik=
Subject key identifier: E4:B5:1F:16:D2:16:95:7A:61:83:6A:46:47:8B:18:3B:35:5C:D8:39
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 0197D217EC6E31D0BD4906436F2290891922
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 0A4D
Signing time: Thu 03 Jul 2025 21:01:12 +0000
Manifest this update: Thu 03 Jul 2025 21:01:12 +0000
Manifest next update: Fri 04 Jul 2025 21:01:12 +0000
Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: NwVMlbb/Z7xHlq3Wt2gIjVH/DPrszQKKmHJguszRciQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 17:39:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d2:17:ec:6e:31:d0:bd:49:06:43:6f:22:90:89:19:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: Jul 3 21:01:12 2025 GMT
Not After : Jul 4 21:01:12 2025 GMT
Subject: CN=e4b51f16d216957a61836a46478b183b355cd839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:71:db:04:e6:b9:06:b0:81:69:3d:50:be:ed:
5a:a2:dd:fd:a9:25:f0:31:6b:90:df:08:f6:65:c1:
91:7a:d3:98:38:f8:f0:b8:c7:b8:f8:3b:eb:d2:c2:
e4:e2:94:5d:44:84:06:82:93:b5:ba:44:91:de:ac:
9a:69:2e:37:50:f9:42:2f:8f:b3:c0:f2:d9:6c:85:
70:6f:99:74:28:fa:13:43:d8:a8:07:e1:22:7a:3f:
c5:80:e0:0b:f1:84:49:1c:bb:28:e0:42:65:fe:bb:
57:a1:d7:68:93:78:9f:98:8f:89:b1:e4:1a:1f:d1:
ff:68:c4:23:c2:86:97:36:e9:7a:a0:f3:c1:13:55:
a6:7e:a7:18:d5:a3:9f:f8:50:d7:08:a1:f4:47:b3:
a7:c1:9a:97:eb:35:97:73:5f:94:09:ee:58:71:66:
26:0a:2e:c2:ad:b2:f2:69:67:32:b7:d4:8a:c6:cf:
e2:c6:a5:8e:d1:57:91:9f:e9:2c:e4:19:e2:0f:4d:
8d:5d:15:87:b0:93:07:06:23:8a:a5:07:13:f6:02:
57:ba:ba:83:eb:c5:ee:e2:19:05:a0:89:23:df:62:
bf:a7:f8:c3:57:44:20:4b:3b:c7:71:12:a7:65:87:
94:c0:54:8b:ec:a6:ae:a8:ae:5e:9a:be:3b:0e:db:
c7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B5:1F:16:D2:16:95:7A:61:83:6A:46:47:8B:18:3B:35:5C:D8:39
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:da:09:05:15:3e:e9:c2:c6:86:82:a5:21:ce:c0:7b:67:d8:
70:44:63:98:0e:0b:2c:b6:fb:b5:61:5d:d7:48:dd:77:17:c6:
97:ba:d9:e5:cd:60:89:fb:b9:61:5f:eb:6f:ae:9f:b2:44:b9:
61:f1:6d:0f:14:a0:2e:55:d8:52:67:aa:a5:fb:de:f9:47:96:
90:3a:91:58:ca:12:30:ac:8b:38:54:a0:8e:cb:7e:10:16:3b:
f4:81:da:8f:79:7d:d7:57:1c:41:53:a0:f4:70:f1:60:20:f7:
b1:74:b1:7b:93:97:bd:4f:f9:fe:39:78:a5:fd:e7:67:b4:7a:
21:95:bd:2d:13:aa:36:c3:c8:dd:5c:a4:00:3a:9e:18:0a:39:
f9:01:14:cd:d7:b8:6b:0f:16:9f:3e:52:43:8d:06:ac:5a:c0:
76:06:cc:56:99:ad:ff:2b:ff:54:df:0c:c3:e6:3c:b4:c7:7e:
84:ab:cf:e9:2c:89:8d:97:c6:ee:f1:d8:7c:2e:83:4c:d6:a6:
a9:7a:97:12:72:bf:88:25:16:ba:b7:2e:dc:a2:1c:c3:65:58:
af:24:43:07:ef:45:c6:2e:99:07:7c:4d:77:b0:a7:eb:5d:fc:
d0:9f:b3:90:3b:a4:be:8b:4f:b3:0b:a5:1b:77:2d:9e:a0:34:
9a:fc:46:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 02:20:29 2025 by rpki-client