Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
File: xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft (raw, json)
Hash identifier: AiXltX5mJeqCr6XM+EbU4RBN3cjG853PtPfFODM8eGg=
Subject key identifier: 43:FA:EF:DB:8F:9A:8B:E1:E3:8B:07:A3:A3:42:F4:ED:C8:C0:61:13
Authority key identifier: C6:3B:E7:53:74:67:8D:B3:A0:49:F6:A3:EF:2A:FA:B7:0D:4F:6F:27
Certificate issuer: /CN=c63be75374678db3a049f6a3ef2afab70d4f6f27
Certificate serial: 0197C500E4CA731C0C6DE470961D4D1E6393
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
Manifest number: 0528
Signing time: Tue 01 Jul 2025 08:00:59 +0000
Manifest this update: Tue 01 Jul 2025 08:00:59 +0000
Manifest next update: Wed 02 Jul 2025 08:00:59 +0000
Files and hashes: 1: e-ekxZnIJuci57HrEPz7zGue28s.roa (hash: 8H4l0N/E0NCOJoBHvZIBH7Jz+P9G/e+mdO0E4zzVLoo=)
2: xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl (hash: /oEeY5ivT2Gt1+8pNKn6nORCVpGatiNOQff1HxEw4rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 07:53:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c5:00:e4:ca:73:1c:0c:6d:e4:70:96:1d:4d:1e:63:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c63be75374678db3a049f6a3ef2afab70d4f6f27
Validity
Not Before: Jul 1 08:00:59 2025 GMT
Not After : Jul 2 08:00:59 2025 GMT
Subject: CN=43faefdb8f9a8be1e38b07a3a342f4edc8c06113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b6:45:06:a4:cc:0d:17:86:9e:04:b7:12:25:
27:8e:6d:78:a3:45:69:60:95:b0:a1:9d:b6:60:17:
ec:f7:d3:3e:aa:58:b0:fb:25:3c:fd:d7:3a:4a:bb:
9f:d8:5d:9e:fb:83:27:86:0d:9e:5b:38:9b:41:bd:
21:cb:f7:41:21:ff:d7:aa:a3:88:6a:84:1f:ef:af:
f4:d7:09:d1:3e:ab:23:bc:b7:a8:44:ed:a6:b8:44:
bb:c0:c6:bb:33:5a:f0:87:2f:d1:54:2b:11:ed:65:
6d:88:a9:00:89:7a:a5:e8:85:cb:ab:6a:28:32:51:
ff:75:96:0d:e2:35:69:8c:82:4e:3a:54:fd:cf:d8:
fe:c0:4a:51:4b:73:2c:98:86:dd:11:7d:c4:b6:02:
02:5f:c4:ba:72:87:6e:ff:00:55:3b:f6:ac:65:db:
ba:93:bd:e4:0d:a5:59:d2:84:53:55:2f:e9:82:49:
eb:24:7b:b2:f2:b4:80:11:19:c8:a5:2a:69:b2:fa:
2d:8d:55:5d:b9:39:7f:0c:a1:de:a9:e0:b5:df:6c:
bb:0b:2b:93:fe:e5:96:78:fa:f5:dc:4a:8b:b7:e5:
25:39:d6:09:81:cb:df:8c:45:d3:37:dd:c5:6c:93:
31:2c:da:8f:22:f0:30:f1:60:0a:1a:b3:19:c0:7d:
89:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FA:EF:DB:8F:9A:8B:E1:E3:8B:07:A3:A3:42:F4:ED:C8:C0:61:13
X509v3 Authority Key Identifier:
keyid:C6:3B:E7:53:74:67:8D:B3:A0:49:F6:A3:EF:2A:FA:B7:0D:4F:6F:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:49:1d:03:ec:31:79:03:f5:c3:25:5d:d3:3c:04:44:a3:4d:
70:be:b9:c9:5f:ac:2a:28:44:30:d5:26:76:3f:d2:b4:9d:e1:
7d:ef:2f:c3:40:30:e2:67:cd:fa:79:e1:90:ba:3f:a5:ea:66:
c0:70:d4:d3:68:ed:2b:ed:3f:72:f2:90:b2:aa:b8:0f:5f:7b:
87:67:10:e0:5c:4f:d6:c4:80:2c:59:52:91:a2:4e:04:7a:30:
04:ba:0d:cc:4a:64:2e:e6:40:31:5c:77:c0:b7:d4:4b:8f:03:
5d:6e:0a:f8:b5:62:d0:a9:ae:0e:d6:3f:6a:07:37:0d:b6:54:
00:48:08:79:85:e4:08:c9:0a:0b:a5:77:6e:10:72:e9:8d:23:
e6:aa:96:b0:ba:79:a8:39:c3:7c:83:3d:2b:40:7d:a9:26:14:
63:4b:eb:59:32:db:82:96:27:8b:63:a9:08:ef:aa:e7:1d:cb:
93:ca:b6:54:53:04:2b:84:88:ec:35:7b:3d:0c:76:5a:97:c9:
c1:07:86:70:d7:d1:b0:33:f8:3a:8d:2d:8a:8a:3e:b1:6a:3e:
93:df:35:35:7b:46:7b:5b:c5:77:bd:f6:76:e3:77:95:95:b6:
53:6c:95:45:a6:ec:e3:08:95:6f:24:8f:64:04:06:de:2c:12:
33:4c:e6:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 09:39:29 2025 by rpki-client