Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
File: XasLCOUfgYIkYp-zohHYPVvjVEA.mft (raw, json)
Hash identifier: fP94Eymm+P1Iod5q8KwpZpYrMqk9H8ZXIbg65lDN8lg=
Subject key identifier: 7A:08:3D:3F:7F:F7:82:07:BC:41:BB:9B:3A:19:D2:1F:68:F4:C3:C5
Authority key identifier: 5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
Certificate issuer: /CN=5dab0b08e51f818224629fb3a211d83d5be35440
Certificate serial: 0197BA0F71BE0F456D10E1E9C2F7C0549ABC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
Manifest number: 13C4
Signing time: Sun 29 Jun 2025 05:01:03 +0000
Manifest this update: Sun 29 Jun 2025 05:01:03 +0000
Manifest next update: Mon 30 Jun 2025 05:01:03 +0000
Files and hashes: 1: J3IfRy5hJG3sO5FFR3klCa0Rmag.roa (hash: y8cOLwfC28T1Q/CwomIs12ZpdB8agP1zP7ErrJL2HLM=)
2: XasLCOUfgYIkYp-zohHYPVvjVEA.crl (hash: viqi7J4fWAUP70Y/OYDfN/S3ZxMgoPVsc9EzZ80yaAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:0f:71:be:0f:45:6d:10:e1:e9:c2:f7:c0:54:9a:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dab0b08e51f818224629fb3a211d83d5be35440
Validity
Not Before: Jun 29 05:01:03 2025 GMT
Not After : Jun 30 05:01:03 2025 GMT
Subject: CN=7a083d3f7ff78207bc41bb9b3a19d21f68f4c3c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c9:18:b6:02:a1:d0:a9:e2:a7:14:67:75:64:
93:3e:a6:df:d2:83:6d:4e:9e:9b:76:c9:ef:d5:d1:
a6:96:f9:4b:f7:40:6d:28:ae:1a:7b:2e:59:30:c0:
c1:94:59:f5:ef:4f:cc:b5:c8:bc:47:3f:1b:05:89:
dc:a8:a7:e7:f9:a9:8c:61:ef:36:73:44:da:bc:ef:
fb:2a:92:d0:37:0d:f2:09:d2:fc:4b:ad:ef:2c:e4:
8a:33:d3:4f:d4:1f:7d:bf:39:b3:23:85:95:66:54:
46:9a:12:9d:27:d9:c5:ba:23:c5:06:d3:59:46:3e:
72:45:4b:89:50:6b:e8:c2:b2:b6:f2:01:b3:68:d7:
57:78:c2:b9:87:ab:80:24:f7:c6:ec:10:75:fc:c9:
ef:f5:2d:0b:0b:6c:45:47:96:2a:7b:38:f2:9b:3b:
b0:e3:52:95:41:23:55:57:5d:80:c5:fe:db:0c:ee:
e5:22:81:74:99:11:7c:0d:4e:15:4d:e9:bd:5f:a1:
3b:85:8d:84:07:49:69:4f:58:39:a4:a2:c9:95:10:
45:1d:0b:bd:32:82:30:3a:56:da:03:f5:c6:6b:8e:
47:14:6e:ae:23:75:a3:9a:d3:69:e9:be:81:f0:78:
16:51:4c:7f:19:db:b6:02:b5:11:32:de:9d:e5:ce:
81:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:08:3D:3F:7F:F7:82:07:BC:41:BB:9B:3A:19:D2:1F:68:F4:C3:C5
X509v3 Authority Key Identifier:
keyid:5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:08:cc:a5:f1:ee:ee:ea:35:34:fa:c3:38:33:13:62:a8:78:
b3:5d:4b:76:e5:62:2f:8c:35:cb:37:70:e7:d3:4d:0c:06:bb:
23:8d:a4:47:33:53:9d:e5:6c:f9:6b:27:19:6e:a3:07:07:12:
cb:de:fe:2e:13:d1:19:4a:7b:77:7a:a7:98:21:61:5f:19:12:
05:47:ad:6b:95:d8:c2:ad:33:1d:8d:37:9b:60:f9:40:ae:4d:
38:2d:b2:84:8e:a4:4c:78:63:a8:95:ba:e4:1c:25:3d:fe:5d:
9d:99:ff:34:56:76:e2:60:38:75:21:01:d8:18:16:a4:d9:4e:
52:04:17:34:49:18:18:87:f8:ed:ec:af:7b:90:76:68:4b:c8:
e0:30:eb:30:ae:9f:c7:19:d2:7d:c6:fa:3a:bf:8e:99:50:18:
a0:3e:19:12:cd:84:4c:d9:32:ab:21:2c:98:0a:50:cf:f6:69:
0f:02:81:25:eb:4e:36:01:46:37:48:6a:24:35:ed:60:8b:dd:
13:80:77:93:ea:e4:33:e9:44:3c:fb:d7:d5:e7:8e:6b:3c:5c:
43:19:aa:44:96:04:ca:6c:41:a7:01:73:7c:0a:7f:11:7c:27:
1b:2b:6e:d5:a2:0e:55:70:43:65:57:fa:1e:b6:0c:27:8c:0c:
de:9a:b7:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:15:01 2025 by rpki-client