Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
File: xcgmUInL3eamxXnNd2tfgMD4rdQ.mft (raw, json)
Hash identifier: 0X0/uPHviafdXA+MqwB2P8zzUMImK3fl0TIg6e3G1ow=
Subject key identifier: 52:E6:0A:E7:8A:D6:94:E6:E4:2F:3F:BE:C1:3C:32:82:1A:BE:9B:94
Authority key identifier: C5:C8:26:50:89:CB:DD:E6:A6:C5:79:CD:77:6B:5F:80:C0:F8:AD:D4
Certificate issuer: /CN=c5c8265089cbdde6a6c579cd776b5f80c0f8add4
Certificate serial: 0197B7456DB3FEC91EC9CF262C0121405B71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
Manifest number: CD
Signing time: Sat 28 Jun 2025 16:01:09 +0000
Manifest this update: Sat 28 Jun 2025 16:01:09 +0000
Manifest next update: Sun 29 Jun 2025 16:01:09 +0000
Files and hashes: 1: HnXYP_nGkSYGI2gsUnR5joaBv0k.roa (hash: QHASI9erDv03GyXaVaSPKxwrTHTkAuv0FPn5tlS8GC8=)
2: xcgmUInL3eamxXnNd2tfgMD4rdQ.crl (hash: zcRYZ2COtMEK4YJMNaHbN2dMFgH190r3Zlox6roiBSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:6d:b3:fe:c9:1e:c9:cf:26:2c:01:21:40:5b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c8265089cbdde6a6c579cd776b5f80c0f8add4
Validity
Not Before: Jun 28 16:01:09 2025 GMT
Not After : Jun 29 16:01:09 2025 GMT
Subject: CN=52e60ae78ad694e6e42f3fbec13c32821abe9b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:9a:02:c2:68:7e:a7:93:08:4c:31:3f:94:04:
7d:fc:72:e4:e2:ff:45:59:7d:f2:cd:ec:ce:ed:b4:
8c:a4:56:c9:b1:c9:b5:77:85:b4:6e:7d:a7:91:b7:
73:f0:2b:f8:21:16:e6:61:e5:17:9d:d3:d1:b8:79:
90:08:7a:e9:14:4e:ff:fb:80:8a:fa:68:3c:30:74:
89:b3:b4:f9:da:fb:07:e5:cc:68:ed:50:60:f7:e1:
38:c8:d7:4c:31:66:83:63:38:ee:d9:de:05:4b:a6:
b2:a2:79:86:99:16:e4:04:7b:c2:05:b8:76:e5:e1:
9d:b3:9b:94:61:da:30:74:5a:0f:ad:c6:45:c9:16:
0e:d4:92:fa:56:5e:72:e6:b5:1c:46:7f:22:bb:61:
f4:14:0b:9e:da:0b:0c:30:f5:55:ac:fa:59:08:1b:
e8:d3:07:45:c3:90:42:28:8f:12:af:ce:f6:e1:97:
38:74:f6:2a:b4:b1:c0:fd:2a:b3:2c:a8:2b:48:c9:
0e:73:f1:a5:93:2d:c2:83:30:c0:4d:85:02:be:02:
33:f9:ad:f5:b4:1b:3f:79:5a:f6:b7:1a:d8:ed:41:
59:7b:70:b2:58:01:9b:8b:c1:26:eb:ad:fe:47:0b:
22:8a:29:2e:c9:46:88:d0:ea:3a:6f:d2:a5:03:80:
88:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E6:0A:E7:8A:D6:94:E6:E4:2F:3F:BE:C1:3C:32:82:1A:BE:9B:94
X509v3 Authority Key Identifier:
keyid:C5:C8:26:50:89:CB:DD:E6:A6:C5:79:CD:77:6B:5F:80:C0:F8:AD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:0a:bc:1f:55:da:d4:9e:f1:c0:ac:f5:0a:3b:d2:dc:fb:4c:
a7:72:49:64:ef:95:ff:61:b8:99:c5:04:b4:53:bb:9c:90:03:
b3:53:7b:bf:f3:85:de:52:8e:4f:46:bb:e5:2e:8f:16:b5:0f:
a6:c8:cf:4d:21:6d:4b:c8:63:81:23:46:ad:38:2f:a7:de:cf:
71:c7:55:c7:8b:a3:96:96:bc:c3:e5:7a:07:4f:82:d1:ae:cf:
f0:5a:05:1b:87:cc:c7:06:a4:af:bd:36:e0:30:8a:8e:91:9a:
29:e5:26:cd:42:9a:cd:e2:44:bf:a9:ac:45:ea:63:b0:fc:e8:
e3:e5:51:39:42:f0:36:85:54:c4:1e:60:5c:bc:c9:3b:3d:4e:
8d:55:a9:ae:20:f7:4a:dc:99:44:61:87:75:5f:84:48:1b:77:
83:85:c9:34:90:4b:7f:7d:7a:62:69:05:84:d8:12:5d:7f:0c:
4e:78:7e:df:a7:04:e8:26:7b:35:27:f9:ec:f7:0a:0a:8a:ee:
fb:97:25:14:a0:36:8d:51:60:d2:9e:45:12:09:5c:39:dc:8b:
c6:4d:ae:d0:0f:a9:71:4e:29:83:64:6b:65:e0:d7:fc:08:83:
3b:12:10:7c:ac:6a:8b:01:d4:75:e9:4f:a0:41:05:57:b3:e0:
54:53:ac:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RW2z/skeyc8mLAEhQFtxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YzgyNjUwODljYmRkZTZhNmM1NzljZDc3NmI1ZjgwYzBm
OGFkZDQwHhcNMjUwNjI4MTYwMTA5WhcNMjUwNjI5MTYwMTA5WjAzMTEwLwYDVQQD
Eyg1MmU2MGFlNzhhZDY5NGU2ZTQyZjNmYmVjMTNjMzI4MjFhYmU5Yjk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ZoCwmh+p5MITDE/lAR9/HLk4v9F
WX3yzezO7bSMpFbJscm1d4W0bn2nkbdz8Cv4IRbmYeUXndPRuHmQCHrpFE7/+4CK
+mg8MHSJs7T52vsH5cxo7VBg9+E4yNdMMWaDYzju2d4FS6ayonmGmRbkBHvCBbh2
5eGds5uUYdowdFoPrcZFyRYO1JL6Vl5y5rUcRn8iu2H0FAue2gsMMPVVrPpZCBvo
0wdFw5BCKI8Sr8724Zc4dPYqtLHA/SqzLKgrSMkOc/Glky3CgzDATYUCvgIz+a31
tBs/eVr2txrY7UFZe3CyWAGbi8Em663+RwsiiikuyUaI0Oo6b9KlA4CIEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFLmCueK1pTm5C8/vsE8MoIavpuUMB8GA1UdIwQY
MBaAFMXIJlCJy93mpsV5zXdrX4DA+K3UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGNnbVVJbkwzZWFteFhuTmQydGZnTUQ0cmRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi80OGM3ZWMtMGM3NS00MWM0LTg1YWEt
NDM4ODIwZmJhMjU0LzEveGNnbVVJbkwzZWFteFhuTmQydGZnTUQ0cmRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi80OGM3ZWMtMGM3NS00MWM0LTg1YWEtNDM4ODIwZmJhMjU0
LzEveGNnbVVJbkwzZWFteFhuTmQydGZnTUQ0cmRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXAq8H1Xa
1J7xwKz1CjvS3PtMp3JJZO+V/2G4mcUEtFO7nJADs1N7v/OF3lKOT0a75S6PFrUP
psjPTSFtS8hjgSNGrTgvp97PccdVx4ujlpa8w+V6B0+C0a7P8FoFG4fMxwakr702
4DCKjpGaKeUmzUKazeJEv6msRepjsPzo4+VROULwNoVUxB5gXLzJOz1OjVWpriD3
StyZRGGHdV+ESBt3g4XJNJBLf316YmkFhNgSXX8MTnh+36cE6CZ7NSf57PcKCoru
+5clFKA2jVFg0p5FEglcOdyLxk2u0A+pcU4pg2RrZeDX/AiDOxIQfKxqiwHUdelP
oEEFV7PgVFOsWA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:24:08 2025 by rpki-client