Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
File: Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft (raw, json)
Hash identifier: tT3bKzGg9goEcdTPTQ20WDkO33tgv2pljh68M3sRVf4=
Subject key identifier: A2:23:E1:23:94:86:AC:D2:D9:32:D2:C7:C9:27:86:25:22:B2:B9:6F
Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Certificate serial: 0197B9A158E1B8E36FA16E76E0AA185DADAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
Manifest number: 0AA7
Signing time: Sun 29 Jun 2025 03:00:48 +0000
Manifest this update: Sun 29 Jun 2025 03:00:48 +0000
Manifest next update: Mon 30 Jun 2025 03:00:48 +0000
Files and hashes: 1: J8DHZy4tMi-CFo8AY9DJvx0HWac.roa (hash: 5pNADEij5vtMepG8+Pp6x2k3eZ8RSfQB0arADw8u/hQ=)
2: Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl (hash: s4AGqumjs9otzkFJ5iVZ+S/TTEFtltfiQBr0vGiunhI=)
3: bm8bVIPNaA-bltdEZPHxvRw4XQU.roa (hash: DdBeXwj6zhT54fs1VrM1Iq2GimR5mvINmSrgTPAY9tY=)
4: fcJb-6V4S8Ggt4XkeQ4z4NeOvBg.roa (hash: Ok0E8qecmwKHIVZlR2uj+ZosbjuqbuM99KMf84z3ECc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:58:e1:b8:e3:6f:a1:6e:76:e0:aa:18:5d:ad:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Validity
Not Before: Jun 29 03:00:48 2025 GMT
Not After : Jun 30 03:00:48 2025 GMT
Subject: CN=a223e1239486acd2d932d2c7c927862522b2b96f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e9:4d:73:98:b0:33:83:8e:0e:35:6f:87:e4:
30:ad:cc:76:1a:d5:dc:34:53:d3:7f:1d:cc:75:ce:
0a:cf:31:f3:6a:c2:41:7a:8a:2c:27:76:31:ae:ce:
03:19:82:6b:e1:81:a7:d0:79:da:53:fa:55:2f:31:
be:0c:22:5c:c2:25:10:25:e7:e2:dc:0b:8b:d1:26:
10:b3:22:d7:80:db:34:f1:d3:6c:c6:96:6e:19:54:
5a:c8:d2:51:dd:89:89:fe:f0:40:5a:91:31:c8:6a:
74:bf:47:7f:57:ca:69:c2:0d:8c:87:31:c0:91:6b:
fa:6b:b7:57:0d:b8:e8:f6:15:9b:d7:22:61:b5:ea:
85:64:a6:73:d3:84:54:49:83:ab:97:28:ef:be:65:
5a:71:09:55:cb:d6:c0:ff:4f:f1:26:5a:cd:29:ae:
51:71:bf:6a:4c:f0:09:79:b0:da:5a:a6:3c:84:2c:
2e:1b:ef:0a:ac:8a:55:90:ae:70:61:70:97:c2:ec:
ec:f9:b6:b0:33:f7:64:93:4b:69:f4:dc:a7:8b:a9:
23:48:96:8f:38:1f:e2:d6:04:72:dd:2e:f5:11:0e:
e5:fb:e5:9d:9e:aa:80:e2:b4:f7:7a:4c:60:4f:fa:
2c:c9:f3:95:a1:1a:d1:68:9c:4c:d7:d6:1a:e7:51:
5a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:23:E1:23:94:86:AC:D2:D9:32:D2:C7:C9:27:86:25:22:B2:B9:6F
X509v3 Authority Key Identifier:
keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:11:60:de:ac:23:0d:8b:c5:01:83:bd:e4:55:ae:9c:bb:1a:
5d:b1:49:70:4b:85:0e:15:f6:c4:ff:dc:83:8f:e5:b8:9c:68:
f9:12:da:fe:e7:de:0d:00:5d:92:e9:0f:fe:f6:e3:54:14:4d:
34:48:8b:56:7a:04:72:98:1e:05:d0:a5:08:eb:c2:e4:eb:ad:
bf:c1:9e:06:f0:ae:35:c4:6a:9b:70:01:99:98:0a:18:46:ca:
78:75:ac:68:2b:4f:fe:64:e7:1e:94:63:31:08:2b:be:52:0d:
b6:6b:f8:be:a3:e0:48:0b:dd:bb:8a:ae:bf:88:85:96:f6:00:
db:a6:90:d6:cd:ce:94:1f:a0:56:49:41:4e:0c:d3:0f:f1:e6:
7a:ca:0b:2c:57:90:3f:5a:66:3b:5c:f4:80:e6:71:7a:1b:b9:
4d:74:b8:5f:e8:e0:1a:68:4e:cb:5d:f9:8b:12:2c:e1:fc:1c:
c6:3d:79:e7:06:a0:28:5d:34:58:87:5f:f6:9a:92:ed:ab:43:
61:cf:99:1f:72:25:be:d7:a5:d6:c3:37:03:d7:34:01:e6:cd:
90:a7:48:68:b5:c1:b9:ae:29:70:c0:60:3f:cc:1f:03:ff:ba:
44:9d:7d:bb:f7:f7:c7:cd:bd:9c:f6:8a:a7:e5:85:5d:3a:d8:
5f:63:13:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:07:34 2025 by rpki-client