Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json)
Hash identifier: TonP+0RI3QS9We9JrN6IyqnGGp2vwXkNwQsmCoS/gBU=
Subject key identifier: DC:37:13:7E:C4:65:63:10:AE:C1:21:E3:89:C8:02:33:2F:8F:15:CA
Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Certificate serial: 0197D2BC9771C896FA6AD6086C9BF22162C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
Manifest number: 15C7
Signing time: Fri 04 Jul 2025 00:01:04 +0000
Manifest this update: Fri 04 Jul 2025 00:01:04 +0000
Manifest next update: Sat 05 Jul 2025 00:01:04 +0000
Files and hashes: 1: nEhO-4IOflDc16smasjo46yXDrU.roa (hash: TGudjeK9/qruL2a7Ja97DNoAnaGXmeBxOzedTAd1+AI=)
2: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: M2nZgW1GlidjpvuKyr4J3I5cERJ8EoZd/XMgy/LCZ98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d2:bc:97:71:c8:96:fa:6a:d6:08:6c:9b:f2:21:62:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Validity
Not Before: Jul 4 00:01:04 2025 GMT
Not After : Jul 5 00:01:04 2025 GMT
Subject: CN=dc37137ec4656310aec121e389c802332f8f15ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:75:7f:12:8c:f0:9e:40:15:f8:50:76:67:4e:
08:ec:62:9e:58:02:0f:da:03:ae:3e:0e:51:a0:f8:
20:11:fe:04:3e:03:64:53:ff:33:c7:36:84:fc:57:
1d:b4:d9:28:cf:e4:d7:25:a5:d2:ed:5d:c0:f2:97:
a5:4c:a8:85:7a:07:cc:64:80:5b:ec:88:1a:1b:4c:
0b:e9:d6:11:e6:d1:f0:e3:8a:f5:39:36:86:45:91:
7c:01:86:94:42:8b:08:43:36:df:12:fc:29:f0:2c:
df:30:77:71:6c:01:8b:24:e6:62:8e:4f:ee:2a:64:
c4:3e:7e:dc:d9:3e:b6:f0:b1:d3:31:a0:7b:47:c0:
10:c4:f3:d5:ef:55:56:88:92:b5:b6:07:17:d9:4e:
b5:0f:0a:3d:46:62:24:1f:36:24:8e:96:00:27:0c:
48:70:fa:36:0a:4b:eb:c0:a7:18:a2:20:69:d0:1a:
dd:1c:1f:ac:44:65:0e:48:c0:fe:e7:ac:31:ac:05:
7a:58:27:10:ae:3a:cc:86:c5:22:6d:be:99:23:5a:
c2:76:53:11:21:7a:5b:30:d8:ea:22:ee:3a:79:79:
33:96:d7:4f:e7:22:94:66:b4:54:03:ac:12:cc:92:
3c:1e:15:e1:82:37:06:6f:0e:39:8e:a2:cf:78:c8:
d0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:37:13:7E:C4:65:63:10:AE:C1:21:E3:89:C8:02:33:2F:8F:15:CA
X509v3 Authority Key Identifier:
keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:86:f1:b0:80:ad:01:b5:61:40:65:22:c4:b4:05:d8:e6:8e:
83:5a:b8:43:c4:e4:58:d4:d8:5c:10:b3:fa:91:f5:e9:d7:b5:
f7:d0:bb:05:71:d0:7b:02:50:86:5e:79:21:2e:fe:72:66:69:
d8:98:9b:fb:e5:01:6d:e7:75:a4:fc:ee:5c:71:9d:31:d8:ba:
bb:af:2e:ca:a3:31:0b:66:13:e9:60:ae:1c:81:dd:95:54:21:
32:ed:b9:4d:39:05:4e:59:99:ef:96:32:54:1c:cb:05:7d:1d:
66:ae:84:fb:fc:cc:94:12:9b:e1:05:2a:0b:1b:34:9c:ac:1d:
97:2e:1c:87:ea:17:a7:89:21:5b:b9:6e:0f:72:b6:30:37:e5:
9d:12:b5:70:42:83:9d:7a:bf:69:92:f2:e0:67:f6:c1:7c:19:
71:ab:7a:37:87:4c:6e:9a:87:0f:28:ec:90:63:6c:12:49:e9:
4d:f2:f8:23:33:10:1b:1f:bc:3b:bf:74:c5:ae:aa:fb:4b:24:
67:5c:52:95:8f:1d:17:ea:c9:88:e6:51:c0:1b:71:fd:d2:65:
f7:8c:51:fc:18:fb:5a:66:c2:5d:c4:14:68:8e:ae:3b:6b:a5:
9f:16:a5:7e:43:82:d4:9d:1c:92:46:cd:d2:ff:db:fc:ec:86:
7d:5c:be:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 07:07:06 2025 by rpki-client