Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: Oa7JFSIqAMYwG1kOlbng/3tnOPeP71JA9h0KSw2FIZ8=
Subject key identifier: 0B:F2:ED:19:F4:22:42:38:1A:60:B2:B2:C4:FC:C0:EE:64:37:D6:40
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 0197B6A1D3CC50018119EE0B6BDBE69FA92C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 12F9
Signing time: Sat 28 Jun 2025 13:02:28 +0000
Manifest this update: Sat 28 Jun 2025 13:02:28 +0000
Manifest next update: Sun 29 Jun 2025 13:02:28 +0000
Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: wr6WCZ6rO1UYQhpROb/H+V6bAErGBFfa+BDKyfDLzFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:d3:cc:50:01:81:19:ee:0b:6b:db:e6:9f:a9:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Jun 28 13:02:28 2025 GMT
Not After : Jun 29 13:02:28 2025 GMT
Subject: CN=0bf2ed19f42242381a60b2b2c4fcc0ee6437d640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d0:c6:74:b4:ee:06:57:3e:4b:f5:19:05:26:
31:6a:ec:31:b1:8f:0b:7f:ec:12:8b:f5:99:16:2a:
8d:65:15:94:59:4c:41:0a:44:83:c1:71:67:92:53:
e2:8e:fe:e2:9d:8b:e0:37:b8:af:1d:fa:1d:0d:84:
01:85:2f:95:78:45:a5:5d:7d:9c:cc:f9:fe:37:24:
96:0c:26:89:2e:13:09:60:9d:e3:8a:40:2c:e1:bd:
e0:62:d9:72:b3:a1:19:d9:23:ca:39:7e:90:78:b9:
ed:73:95:7a:c5:26:03:f1:1a:c1:10:88:d6:e4:dd:
6b:62:00:fd:01:ed:fb:01:6c:da:77:e0:12:90:61:
c2:e7:8c:e8:ed:ee:70:12:24:c8:7a:59:11:29:ed:
4d:6c:3e:7c:cc:87:da:4b:ec:69:7a:de:b1:93:71:
bb:82:e5:1a:78:c7:af:80:4b:71:2f:72:eb:78:5c:
fd:53:6c:f3:0c:9a:88:1b:46:db:7f:2a:74:1a:cb:
71:e2:33:74:dc:08:07:3f:dd:57:82:6d:8a:23:c5:
ac:cc:7f:f8:13:4c:06:1a:33:9c:65:af:82:4a:81:
42:12:13:e2:c3:c3:f4:74:7b:0c:38:79:c2:1f:92:
da:8f:6c:35:49:12:b9:a1:3a:0d:e0:92:96:02:34:
17:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F2:ED:19:F4:22:42:38:1A:60:B2:B2:C4:FC:C0:EE:64:37:D6:40
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:a8:4f:a6:b9:8b:20:95:33:17:36:82:ba:31:72:00:14:0e:
ff:9a:fc:2f:f0:53:29:c6:a1:6c:02:3c:77:9a:c2:9a:90:6e:
18:05:ef:e3:7d:8c:c6:e5:95:7f:72:98:f6:88:ea:41:da:2b:
a0:3c:76:0d:06:67:3e:b6:da:d4:7e:f6:00:4e:e0:d5:a9:a6:
f7:2e:f9:21:c3:56:e3:f3:c0:54:a6:0f:f8:8f:40:5b:2a:95:
dc:1d:14:c5:28:a1:87:e3:7e:47:78:ad:47:74:79:b5:54:46:
83:cb:ac:5e:88:85:97:6d:ad:50:35:c0:c3:bd:5c:14:ec:57:
70:d9:eb:c2:8e:12:fa:15:5d:6d:33:56:46:ee:5b:d5:89:45:
fe:b7:8f:2f:57:85:45:56:c4:cb:f4:4c:57:c3:a7:fe:0c:c3:
97:82:dc:ea:f3:86:31:76:6c:76:82:3f:47:c8:01:2a:ae:69:
4e:af:b0:41:92:4c:c0:f8:47:da:fe:7c:03:56:9e:c7:56:3e:
6e:0f:dc:0e:c5:84:94:d5:f6:4a:72:20:ab:80:1d:4a:87:41:
31:f0:4e:7b:a9:95:b2:15:34:07:9f:e0:e6:a2:61:41:dd:31:
13:c5:5e:82:6f:cc:d6:ea:ac:0d:76:c5:aa:87:5e:c4:84:b6:
72:81:c8:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:51 2025 by rpki-client