Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
File: Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft (raw, json)
Hash identifier: S7RUlmKEBWYjnD5MhZBcsn03su9fZpaSr6XIcAnL2ak=
Subject key identifier: A0:B1:A8:D7:03:D5:14:DC:D7:DD:E8:CF:4B:DF:7D:F6:6E:1B:C2:EE
Authority key identifier: 5E:4F:1A:32:A3:7E:08:39:00:AB:A5:61:70:8E:52:AB:23:4E:3A:38
Certificate issuer: /CN=5e4f1a32a37e083900aba561708e52ab234e3a38
Certificate serial: 0197B6A121C0C4E5DE234E3C49D7DF537A25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
Manifest number: 0573
Signing time: Sat 28 Jun 2025 13:01:42 +0000
Manifest this update: Sat 28 Jun 2025 13:01:42 +0000
Manifest next update: Sun 29 Jun 2025 13:01:42 +0000
Files and hashes: 1: MjurembtvVeEftl3x1ofb2bHb8o.roa (hash: LMEfB1EahjyEN1vkkgX4Rq92rZ+ObZyJ1Ue8yFCn1Pk=)
2: Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl (hash: cULBqMm82yiyVUCOw4mR0OtknSiS/R0N+ZTdo/1Oqfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:21:c0:c4:e5:de:23:4e:3c:49:d7:df:53:7a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4f1a32a37e083900aba561708e52ab234e3a38
Validity
Not Before: Jun 28 13:01:42 2025 GMT
Not After : Jun 29 13:01:42 2025 GMT
Subject: CN=a0b1a8d703d514dcd7dde8cf4bdf7df66e1bc2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8a:7e:25:aa:86:a5:fe:b8:58:fc:8d:e1:76:
eb:f0:de:c2:db:ec:75:4c:2a:a4:7c:7c:f0:97:25:
d8:be:db:0b:4c:b2:9a:48:63:40:a3:2d:65:47:bb:
d9:0b:3f:98:64:5d:a0:2b:21:c7:6f:9e:1e:af:d7:
7a:c5:0d:a5:54:b5:27:81:26:c0:55:b5:a1:ec:d8:
ce:4a:e3:72:90:9c:f4:b5:52:0d:21:a7:01:b2:1b:
d4:e3:27:d5:f7:3b:d5:90:33:18:c4:a6:f0:02:47:
ee:9e:37:7f:1b:08:94:f6:c4:68:0b:94:6f:5a:8f:
89:a3:8f:cd:d2:01:4d:80:be:0f:9a:ee:e3:69:db:
ab:6e:76:86:bc:92:24:e9:09:99:6f:82:12:71:14:
1d:b6:cc:10:41:75:bd:8d:f3:07:3a:41:13:d1:4b:
b9:3c:1b:00:ad:aa:73:56:df:9a:95:fc:08:30:a5:
89:d0:12:75:c6:0f:56:7c:34:f7:67:2c:2a:42:7e:
28:50:75:e7:32:3f:61:9b:41:af:fa:ed:9f:fa:9b:
e7:d2:58:a0:b6:2d:2c:ec:a0:f0:af:fe:39:a7:1f:
8c:3e:d7:64:14:7a:3b:ba:7e:52:c3:a3:20:29:f7:
b8:c4:bb:e3:af:6f:6f:dd:93:3c:5d:cc:ec:16:ff:
93:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B1:A8:D7:03:D5:14:DC:D7:DD:E8:CF:4B:DF:7D:F6:6E:1B:C2:EE
X509v3 Authority Key Identifier:
keyid:5E:4F:1A:32:A3:7E:08:39:00:AB:A5:61:70:8E:52:AB:23:4E:3A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:0b:0a:d0:d2:55:36:a4:2f:99:7e:1c:b3:03:09:e0:3f:e9:
bf:fe:84:10:66:0b:d5:10:20:b9:bd:67:19:da:77:2f:93:5f:
db:d8:cb:f7:04:a5:0a:a4:02:b1:12:d5:32:b4:84:7d:15:11:
ae:f9:c1:19:ca:50:1d:50:8f:ec:b1:a6:b4:33:18:24:e1:0f:
dd:7d:db:e1:6e:83:ca:f8:e9:b0:2b:8f:71:d4:d0:00:c9:22:
38:c2:5f:af:cb:98:7d:9c:90:b5:22:c2:8a:a5:36:4f:0e:06:
00:17:64:67:74:f5:dd:2b:16:33:0f:7d:fc:06:e0:ba:0f:94:
4b:c4:eb:4a:d4:0f:4f:a5:03:83:e2:11:d0:90:01:43:34:01:
d1:bd:d7:88:e0:2e:87:70:f6:e5:8c:f1:a1:6e:36:8a:1c:3b:
0c:80:6a:cf:b2:40:c3:26:8a:4a:04:ff:3f:6f:c9:1a:fb:df:
81:3e:72:05:2a:38:46:5a:82:19:e1:60:6d:27:0a:bc:db:ec:
f7:80:21:32:27:b7:56:4f:45:30:c9:bd:1a:bd:29:a2:82:9d:
cb:1c:1b:f6:7d:ba:f1:cb:8d:9f:c2:f9:f2:9b:d8:6b:86:bc:
40:e4:84:70:ff:33:9c:5d:d4:75:23:c7:19:2d:c4:6a:6e:62:
b3:10:d8:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:54:20 2025 by rpki-client