Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: N5cVl8c1IFwZh/TsdMw7K6l875SFDA2Q6OP1mi/Wx9M=
Subject key identifier: 3C:BF:4C:7B:44:65:38:4E:BF:34:61:D3:D9:9D:78:F0:C7:91:E1:DD
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 0197B9A18903C3BDED8DD1E71FF686503582
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 15B2
Signing time: Sun 29 Jun 2025 03:01:00 +0000
Manifest this update: Sun 29 Jun 2025 03:01:00 +0000
Manifest next update: Mon 30 Jun 2025 03:01:00 +0000
Files and hashes: 1: kMIoPYj99g2K5sWXNcD0fsxHkHM.roa (hash: FopABAV6PSptIp6OTBNiTRgtYU723NWq9ChEZhzR3FM=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: gsO0SQ8a+Lc+cmIZL0KrXHAE1YN3SJ6PKVeoX9Opk30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:89:03:c3:bd:ed:8d:d1:e7:1f:f6:86:50:35:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Jun 29 03:01:00 2025 GMT
Not After : Jun 30 03:01:00 2025 GMT
Subject: CN=3cbf4c7b4465384ebf3461d3d99d78f0c791e1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2b:0e:0d:9d:2a:3f:bd:96:0d:91:35:bb:c1:
99:d9:15:4b:49:80:70:52:77:79:fa:df:2f:b1:2f:
0d:84:12:45:48:64:d6:e8:55:1e:00:c6:ca:1e:10:
90:c8:45:7f:35:60:9a:dc:b5:56:f4:c4:d9:1b:44:
b0:e6:70:c9:14:f2:b0:b1:b5:bf:21:22:b9:b6:3b:
a8:c0:01:9e:d1:e5:2c:43:14:4a:ba:68:13:ea:6f:
df:20:80:14:56:68:a4:e0:d4:8d:47:6f:14:c3:cc:
a9:71:21:00:76:a2:fb:68:39:79:fe:10:98:f3:97:
95:75:ab:9e:0a:2f:8c:77:13:d9:f9:80:fd:fe:b1:
1a:61:25:ee:35:a0:24:a8:80:3e:cd:6e:13:3e:39:
0e:62:fa:9f:23:fa:c3:2e:ca:51:ce:49:b3:7c:48:
58:a8:b4:74:45:8c:b9:c9:10:e6:53:df:0c:e7:0c:
c9:36:68:32:bd:84:21:95:e2:89:79:f7:2b:b2:68:
5c:ef:c2:5a:a1:a8:2b:7f:87:77:e8:b4:79:aa:8b:
83:6c:9a:57:f3:12:16:3b:76:57:89:ad:d3:b0:7f:
b9:3c:b7:a7:00:ca:31:6d:12:72:f8:3a:a6:65:7e:
3a:68:c6:c8:f8:5c:d9:35:4d:13:35:ac:ee:01:e9:
45:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:BF:4C:7B:44:65:38:4E:BF:34:61:D3:D9:9D:78:F0:C7:91:E1:DD
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:c5:28:3f:44:97:c0:ff:b0:90:26:fd:74:e7:02:5d:d7:9a:
78:e4:1a:2f:bd:62:64:04:8a:2e:7a:85:2a:57:63:0e:35:03:
8c:40:e0:f2:e0:1a:42:87:32:19:43:d1:0e:d5:cd:49:50:c7:
ba:6f:93:7c:f3:f1:5c:d4:30:ac:3f:4c:f0:38:3e:99:fc:82:
09:1e:b7:a8:44:d3:40:c7:14:55:71:ac:fb:c8:dd:0f:60:74:
b8:73:77:44:b3:77:ce:98:06:fa:7c:69:3a:e2:eb:e3:e4:2d:
17:2c:12:0c:8e:6f:09:8a:25:9e:fe:3b:a3:a6:80:3f:5c:13:
0c:ce:a9:cf:fd:66:93:a1:cc:8a:42:d5:48:38:d6:25:86:ce:
7c:34:7a:bc:7c:3e:46:51:5d:dc:39:f4:1c:5a:5d:f1:9d:66:
6f:e6:cf:77:58:af:3c:94:ab:30:e4:07:e2:71:e8:96:f8:d8:
16:43:17:3d:ad:5b:c9:42:de:5f:8e:80:fd:f2:ff:20:ec:d1:
24:3d:0a:c6:53:2a:ba:0e:7d:15:c0:b7:65:e5:58:07:8a:46:
95:5d:7c:2d:fb:ab:5e:95:c4:ae:30:fa:83:d4:c4:7e:d5:4f:
8a:13:5b:a8:43:02:c4:29:0c:b0:20:01:1c:64:29:de:b7:ce:
fe:01:93:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:29:49 2025 by rpki-client