Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
File: xVFHJIBoPGGXD2BfsZnuturhIYs.mft (raw, json)
Hash identifier: uYwKLfFq1UKaD+8kAXGWLgGeBEpJjzFTojAajbttiUQ=
Subject key identifier: 1A:A4:CD:ED:FB:32:48:3D:23:F2:D6:F2:95:4E:7B:BA:DD:21:8B:C3
Authority key identifier: C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
Certificate issuer: /CN=c551472480683c61970f605fb199eeb6eae1218b
Certificate serial: 0197B6A0BE81352D893EBCBA32E43CF4E702
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
Manifest number: 12B7
Signing time: Sat 28 Jun 2025 13:01:17 +0000
Manifest this update: Sat 28 Jun 2025 13:01:17 +0000
Manifest next update: Sun 29 Jun 2025 13:01:17 +0000
Files and hashes: 1: 7CZAgUvQPu-wrbV-N9bEd3CgOWs.roa (hash: sMayzuz7AI9s61a/aq9HH1Cc6asWKL5qDPVUoL1bHKQ=)
2: xVFHJIBoPGGXD2BfsZnuturhIYs.crl (hash: meCElOI7oqAQG5a77oLE/SDdsziGnSao4Rswc1YYt8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:be:81:35:2d:89:3e:bc:ba:32:e4:3c:f4:e7:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c551472480683c61970f605fb199eeb6eae1218b
Validity
Not Before: Jun 28 13:01:17 2025 GMT
Not After : Jun 29 13:01:17 2025 GMT
Subject: CN=1aa4cdedfb32483d23f2d6f2954e7bbadd218bc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:81:fe:49:41:f8:61:1e:a6:e6:19:ae:7c:20:
18:50:65:b3:2d:5a:fa:3a:85:b4:38:21:6f:c3:3a:
df:f7:7d:4e:b9:2f:11:9d:9d:61:57:1d:12:9e:db:
8d:9a:3c:84:14:0c:9d:b4:0a:fd:66:56:c1:d1:1a:
6c:08:90:d0:fd:6e:17:e7:5d:fc:c1:2e:c0:dd:28:
2f:2f:54:82:1d:6e:fe:30:ac:42:60:ac:a7:50:87:
e9:7e:bb:5c:90:cb:e4:ef:80:1d:2e:1d:eb:6d:51:
e8:19:4c:a3:c8:37:46:0e:1e:10:a0:fd:ec:9d:84:
b3:a3:a1:a5:77:05:9d:ba:44:82:da:c2:26:09:02:
5c:2b:d4:98:3e:59:4f:3b:23:25:2b:92:15:01:8a:
98:da:5b:4f:ce:53:39:87:68:dd:64:98:0e:a2:c6:
33:95:97:78:ed:b7:20:ae:23:06:06:3f:4e:4d:a4:
9b:d5:17:b2:c8:25:6e:31:c0:c0:0d:aa:53:0d:a4:
b1:63:57:2c:ea:1f:4f:c1:f7:dd:51:10:7a:27:c6:
1f:f0:99:8e:32:4d:04:3c:ac:d9:bc:57:30:89:7d:
29:06:d3:5c:65:03:95:54:12:b1:79:f3:de:94:48:
71:af:78:8d:a6:28:39:3d:8d:0f:09:45:99:9f:4d:
11:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A4:CD:ED:FB:32:48:3D:23:F2:D6:F2:95:4E:7B:BA:DD:21:8B:C3
X509v3 Authority Key Identifier:
keyid:C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:b9:2f:d2:ca:c0:14:5b:cc:23:72:7d:86:54:7b:bc:e7:02:
6f:e8:62:46:54:6e:e1:c6:d1:5b:11:1d:74:84:54:49:e7:4b:
bc:dd:f8:17:35:98:d6:cf:44:15:57:f9:2e:55:36:5a:6e:cb:
c0:c9:24:2b:62:89:68:28:81:0b:c9:ce:f9:46:85:dc:6a:26:
24:cb:be:91:1d:e6:d2:9d:43:ce:ee:68:e0:d8:56:0e:3e:1b:
83:d8:da:6f:03:17:9d:d5:4d:70:cc:65:f1:08:58:9b:89:0b:
47:b4:d8:c7:62:8f:d9:3b:aa:de:65:c9:05:74:d4:dd:c1:c0:
b2:7e:de:c0:67:c4:d1:c1:dd:1c:48:60:c5:46:6b:8d:71:b1:
4f:10:1b:2e:b6:94:9f:d2:1c:c6:99:4d:0f:9d:c5:b4:8a:c9:
9c:81:f0:62:2b:d7:ad:2e:b4:38:e5:49:c6:ad:78:e5:87:ae:
e2:b5:92:12:79:a1:30:d4:ab:7c:7e:d6:3c:4c:28:6d:fc:42:
25:8d:e9:81:2c:b9:3a:98:0f:94:30:16:b5:11:b3:97:61:bb:
2e:98:69:73:72:6b:69:4a:43:1c:f6:d7:1d:da:9a:2e:18:36:
2f:88:7f:d4:0b:de:04:02:29:6a:c5:36:35:fe:19:f0:35:12:
78:d2:74:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:29:05 2025 by rpki-client