Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json)
Hash identifier: fwCPZdp9FVeA/sj52KIxBh+I5Cj7su7/r82fs04GEoo=
Subject key identifier: 34:2A:5F:69:ED:1E:28:AD:9E:52:38:DE:76:01:70:8A:ED:D6:E9:DD
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 0197BAB45E2AFCC7CDFA4F9A64D368C5511C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
Manifest number: 15CA
Signing time: Sun 29 Jun 2025 08:01:12 +0000
Manifest this update: Sun 29 Jun 2025 08:01:12 +0000
Manifest next update: Mon 30 Jun 2025 08:01:12 +0000
Files and hashes: 1: 4SxEa8qHfL0SdS-yvynVjEWywI0.roa (hash: ed273NQ5dggxiwmHaUzsS7LYiMx/0KEG21fx026Qijc=)
2: 57zAUxjN80d98_hrUg6wNGuh-LQ.roa (hash: qIcET8+9I+XlvyugPkuqmk4yArAibC2n8LmahOzKwL0=)
3: D8TVIpbhKokDS9trBBqJHsFT1UQ.roa (hash: buVD8eTr7vS6C640rVcFTDAjpCVFYAxsjVTpolrqfNA=)
4: V-G5n9JBF2fuQBXkHR943IM1SJk.roa (hash: PktwOhATCRnu/fMCAW8Roob3cNUQ8DCkE9sG1tOGfQ0=)
5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: I1cHTSOacIK+zUoAFaniMDw+Nf7NkjOBysDhOzyO7mQ=)
6: rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa (hash: 65NB0UfxYYmSvSLb5gS9zELjlvrzXWC3McdcTIR7Hxk=)
7: tIc5dJ9row9Jpwnimlce4tYbp44.roa (hash: ouwAo45RW/R/dO1EFuBCaboweb6Z3RjFTDf5e9DgnQU=)
8: xv_S9Q_lixnhLdeB2FeY6-83q40.roa (hash: fpHqpuP8WhUb/qgqx71BT4D9l/LEKw+tKbvv5QvJ1WU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:b4:5e:2a:fc:c7:cd:fa:4f:9a:64:d3:68:c5:51:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jun 29 08:01:12 2025 GMT
Not After : Jun 30 08:01:12 2025 GMT
Subject: CN=342a5f69ed1e28ad9e5238de7601708aedd6e9dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c2:bd:2b:6e:6b:ff:31:83:9e:ab:57:c6:d1:
a3:01:27:07:a1:26:7e:f9:4a:74:60:86:1c:fe:f8:
17:f5:ac:a2:fa:e3:7f:c5:40:19:9f:a9:90:52:fd:
3b:cd:07:e6:03:7e:b1:79:7a:37:b2:5a:cb:67:d0:
e6:99:d5:e3:4c:4a:9b:44:7f:ed:f6:e4:62:86:40:
10:78:76:f9:bc:27:cd:b4:dd:7e:58:cc:1e:c4:b6:
96:62:65:9f:ed:81:d0:f2:be:52:09:9d:76:f3:57:
69:2d:14:66:34:01:f3:80:79:1f:33:d4:08:97:26:
e3:b6:f3:de:58:50:46:f8:a3:bb:78:29:59:2f:4a:
87:05:2a:a3:6a:a9:3e:49:1b:71:cc:79:76:56:e1:
7a:b6:0b:e2:15:f3:df:27:b9:c2:69:6a:0f:1f:a9:
07:72:b1:d4:8d:6c:be:f4:dc:75:ae:60:2a:ff:a5:
31:3a:73:64:ef:a2:c5:ef:91:27:4b:b9:0e:72:46:
c8:39:c0:38:04:5b:38:4e:55:14:cf:b2:76:ee:28:
ad:a4:17:92:83:60:0f:d1:9f:0a:fa:cc:88:33:f2:
62:28:ea:d3:f2:f9:60:02:f8:dc:c4:3d:66:19:83:
e9:64:f4:b8:9e:ce:db:a6:3c:72:f2:9d:2b:da:7d:
2f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2A:5F:69:ED:1E:28:AD:9E:52:38:DE:76:01:70:8A:ED:D6:E9:DD
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:a4:fd:58:6e:e5:78:0c:ef:5d:8d:73:b1:3d:1a:02:e7:15:
89:14:eb:b1:5f:9a:55:7f:e2:b0:2b:9a:e2:58:96:a4:d2:24:
67:c0:fa:5f:b1:1b:f9:29:83:f2:de:08:1f:c3:c4:3c:22:08:
55:ff:64:a8:b2:75:59:74:03:3b:4a:01:da:a8:5a:15:7b:4f:
34:15:15:b2:63:22:62:58:f5:8f:40:51:cb:89:e8:06:be:53:
f1:52:36:9c:de:e4:f6:29:80:9c:bc:0c:8d:a0:c4:6b:37:0e:
51:ef:18:3a:ee:c2:47:08:17:6a:4e:9a:c8:a5:26:50:64:3e:
67:18:05:3c:7b:ad:2a:52:d6:f1:a1:0b:44:f2:ac:a7:2e:99:
bd:b7:32:15:3d:09:33:0b:9d:24:97:31:b4:8a:15:71:72:9e:
23:eb:7a:a5:d8:3e:a7:b4:7d:55:b2:e5:61:04:52:b7:6f:e2:
a7:84:c2:86:79:39:e9:3e:d9:b7:a4:75:58:1d:dc:9b:68:a5:
24:b9:a5:74:90:4d:23:3d:86:af:73:a9:a1:9f:d4:81:a0:57:
71:4a:eb:46:6b:8c:e8:e2:a9:7a:bb:5e:b5:1d:8e:74:aa:36:
86:ca:4e:79:cd:26:2c:be:7a:fe:ab:b0:38:fe:66:d7:9e:ce:
08:87:1f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 11:25:00 2025 by rpki-client