Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
File: xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft (raw, json)
Hash identifier: 7iEGOCQyd3L8ZQMAm2L8m/HL9H3Q5E/ntUtyIj+EiCU=
Subject key identifier: AD:42:E6:03:DF:07:A5:11:61:65:C6:A6:5F:F5:18:65:2C:64:31:9B
Authority key identifier: C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
Certificate issuer: /CN=c5721737651598f56cf7195120777d7b5316f552
Certificate serial: 0197B6D7B69BF74C4CBF5D219871468E9E92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
Manifest number: 1318
Signing time: Sat 28 Jun 2025 14:01:19 +0000
Manifest this update: Sat 28 Jun 2025 14:01:19 +0000
Manifest next update: Sun 29 Jun 2025 14:01:19 +0000
Files and hashes: 1: nB0wD2NbLIcgL4wuuaNReH2xdaw.roa (hash: PmwRmIsMv3KSkKaHz3D8VpJ1Kt0x35JTg65eBK0T3+k=)
2: xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl (hash: j5S/dQyEh7Cq2FvZ/zu7lLIm6+I8v5DWoJUvW89COII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:b6:9b:f7:4c:4c:bf:5d:21:98:71:46:8e:9e:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5721737651598f56cf7195120777d7b5316f552
Validity
Not Before: Jun 28 14:01:19 2025 GMT
Not After : Jun 29 14:01:19 2025 GMT
Subject: CN=ad42e603df07a5116165c6a65ff518652c64319b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:81:38:bb:7d:ad:06:e1:9e:5c:be:66:0b:42:
68:37:61:30:2f:bf:88:1d:e6:dd:8f:51:e9:6b:ad:
a9:ae:a4:d0:3a:46:ce:5e:0b:09:c7:4f:02:5b:68:
e1:fd:b5:0c:3d:a2:de:c4:f3:5f:e0:2e:c9:9e:5b:
bd:c1:b8:bb:9a:eb:6b:7a:82:66:9d:2a:99:29:36:
99:f2:3c:25:e8:69:3c:6e:cc:13:03:63:d5:c7:cd:
9b:07:6a:db:fa:48:ad:0d:89:ab:4a:af:61:75:d3:
94:29:01:b2:27:7e:21:09:0a:bd:46:83:7a:e0:dc:
8e:f3:75:9e:1f:84:f8:2a:d0:4c:41:5d:83:22:0e:
2f:fc:e2:fc:d1:94:54:8c:fb:a7:f9:9e:1d:9d:3c:
15:f6:b0:86:1d:ba:ae:c0:6a:61:76:00:2d:9e:ff:
a7:33:0d:89:6a:25:2b:f3:77:7a:8d:40:8e:6c:5a:
b4:9f:b0:cb:8a:f8:4c:50:a8:fb:e9:96:90:53:fd:
cb:bb:e8:1c:99:a6:ca:13:ca:c5:22:e1:ad:9b:2b:
ab:fb:ee:72:17:35:54:50:77:ab:aa:73:61:e8:2e:
92:53:e2:e6:33:55:9e:50:40:6a:7f:ea:6f:5d:03:
7a:f1:cc:66:82:d8:02:32:22:82:66:e2:06:71:b0:
28:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:42:E6:03:DF:07:A5:11:61:65:C6:A6:5F:F5:18:65:2C:64:31:9B
X509v3 Authority Key Identifier:
keyid:C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:29:f3:af:2c:fc:cf:97:e1:73:1e:9c:fa:46:6f:64:92:2e:
07:27:15:cc:52:04:d0:d1:75:60:95:a9:c0:c3:29:e5:04:ec:
d7:1a:22:6e:b5:32:bf:ac:3e:a5:13:d4:bb:cc:b4:cb:3a:95:
ee:af:56:c6:ac:ad:51:09:e3:c1:64:a4:69:13:4e:99:21:5c:
2f:96:e4:53:1a:cf:81:4c:f3:d2:4c:7a:c5:b9:56:29:bb:00:
86:30:5c:83:47:3d:dc:88:f3:49:61:8a:70:a5:94:39:38:08:
a4:97:43:01:79:27:79:df:ed:7c:3e:3f:60:55:62:e0:6a:df:
c0:d9:32:68:2f:5c:90:79:af:39:80:c7:12:36:e0:54:ac:e7:
db:bf:35:78:31:3f:a7:94:ee:da:99:7b:30:1c:fa:99:84:e7:
4f:96:31:4c:0f:ba:71:fb:a7:1b:3f:d6:fc:1d:63:35:e1:9f:
69:24:ab:12:db:37:16:5b:b7:18:54:cf:2f:a9:7c:78:0e:8d:
f3:ad:28:ca:64:28:6e:57:a2:bf:34:1c:b1:ba:be:eb:c6:c6:
49:11:40:38:0c:dc:52:41:95:a0:a0:16:a7:54:3b:1d:1a:1f:
79:ac:d7:48:70:47:21:32:fd:a7:3a:3a:56:11:5d:ad:0c:f4:
b9:3a:58:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:45:29 2025 by rpki-client