Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
File: xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft (raw, json)
Hash identifier: l0DbFcBPUzMU1a8Tjl+Wz0FWzKMNVj0mGzbosmIhzMw=
Subject key identifier: 86:06:AC:F0:AE:8A:C0:27:2A:AF:D8:D2:5E:79:FC:6C:59:69:F8:5F
Authority key identifier: C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
Certificate issuer: /CN=c59c41daf0092b703bc059ba1353f071ed12199b
Certificate serial: 0197CACCBE8FE3A1EE0483F51FE33D13577B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
Manifest number: 1552
Signing time: Wed 02 Jul 2025 11:01:45 +0000
Manifest this update: Wed 02 Jul 2025 11:01:45 +0000
Manifest next update: Thu 03 Jul 2025 11:01:45 +0000
Files and hashes: 1: cGueQe1h8duehogXBQfbjMf187c.roa (hash: SeygR9MEl7TBvHViQ7GiY7qErcMbLwgXcJ9lbMPWx3c=)
2: xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl (hash: TA0RH0Ln+H2Oey6uN1wzHsXNp3vfo8TQN/pqhD4qqaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:cc:be:8f:e3:a1:ee:04:83:f5:1f:e3:3d:13:57:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59c41daf0092b703bc059ba1353f071ed12199b
Validity
Not Before: Jul 2 11:01:45 2025 GMT
Not After : Jul 3 11:01:45 2025 GMT
Subject: CN=8606acf0ae8ac0272aafd8d25e79fc6c5969f85f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2f:17:11:6a:91:b1:4b:98:a5:b3:e6:51:f3:
e8:e8:60:2d:1f:3c:af:01:e6:93:67:1f:90:c6:aa:
1a:f0:b3:66:ad:86:b3:40:dc:c9:c5:0b:a6:19:9c:
ff:b0:6e:29:bd:e7:26:5b:01:7d:1b:80:de:78:9c:
27:c1:43:a8:ea:db:06:b3:65:6b:b5:29:da:22:2a:
77:6e:1a:cb:d5:79:64:b3:19:d8:bd:11:b0:10:7a:
30:bf:da:90:cc:71:6f:9c:be:00:62:b3:ac:02:17:
84:68:07:64:89:81:23:21:1b:98:69:c2:82:1e:44:
01:85:4b:34:53:23:24:7f:8b:a2:0c:70:40:27:99:
bc:b5:f1:db:17:ce:d3:35:80:a5:6e:80:1f:18:f6:
d1:20:13:d5:8f:c7:48:78:20:e5:ef:bb:8a:81:48:
cc:61:29:84:ac:95:14:74:da:2e:fa:09:24:59:2c:
fa:d8:5f:8a:25:93:73:e2:17:78:96:2b:33:de:9c:
08:63:ab:77:5f:a7:82:03:5c:cc:fe:25:ce:6c:b6:
6c:8c:d9:e8:aa:c8:4b:a6:85:62:42:50:f5:43:f1:
d6:e2:10:5c:0f:40:9a:0e:b6:1f:37:47:68:eb:20:
d8:c8:37:d3:f3:70:f9:02:e7:25:de:d4:e3:07:8a:
d7:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:06:AC:F0:AE:8A:C0:27:2A:AF:D8:D2:5E:79:FC:6C:59:69:F8:5F
X509v3 Authority Key Identifier:
keyid:C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:55:00:75:72:f2:d8:66:32:fc:f2:24:39:52:65:e2:09:7c:
e2:ef:dc:f1:19:a1:54:f0:29:d5:b6:a1:b7:0a:a6:79:20:3f:
ca:8e:18:6c:4b:63:5e:f1:46:e5:6a:7f:2c:a5:48:2f:38:8d:
ad:e5:c4:3a:49:38:ce:51:02:69:b7:37:9a:13:4c:51:ef:cc:
32:9f:29:cc:69:87:57:33:b0:0a:17:9e:38:cf:64:67:20:80:
db:8e:d7:69:77:2b:0f:46:a9:c6:c0:14:f8:7b:3b:aa:e5:cb:
38:c5:d2:0e:77:f9:a9:2e:49:c9:dc:cb:04:23:2c:55:29:3f:
74:1c:9b:ee:36:b5:e4:7c:85:8d:53:d5:f2:a1:36:55:9b:30:
cd:1a:a7:9d:87:a8:fb:39:f0:89:97:cb:fe:f8:40:95:e4:59:
36:b3:3e:56:83:7d:02:b0:2f:8d:44:d0:c1:63:a9:75:fb:42:
f7:95:69:a5:1e:32:fb:15:4e:22:ed:ae:c9:0e:12:ab:c2:ba:
38:5e:02:18:98:d0:fb:6c:6b:b9:fb:97:5b:c2:bd:2c:33:65:
1f:45:58:b5:96:0b:d0:cb:53:3a:76:ea:57:79:3f:b1:6c:51:
57:42:37:49:be:6c:53:96:83:59:ca:52:67:3b:2f:6f:95:93:
ab:b5:1e:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfKzL6P46HuBIP1H+M9E1d7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1OWM0MWRhZjAwOTJiNzAzYmMwNTliYTEzNTNmMDcxZWQx
MjE5OWIwHhcNMjUwNzAyMTEwMTQ1WhcNMjUwNzAzMTEwMTQ1WjAzMTEwLwYDVQQD
Eyg4NjA2YWNmMGFlOGFjMDI3MmFhZmQ4ZDI1ZTc5ZmM2YzU5NjlmODVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmS8XEWqRsUuYpbPmUfPo6GAtHzyv
AeaTZx+Qxqoa8LNmrYazQNzJxQumGZz/sG4pvecmWwF9G4DeeJwnwUOo6tsGs2Vr
tSnaIip3bhrL1XlksxnYvRGwEHowv9qQzHFvnL4AYrOsAheEaAdkiYEjIRuYacKC
HkQBhUs0UyMkf4uiDHBAJ5m8tfHbF87TNYClboAfGPbRIBPVj8dIeCDl77uKgUjM
YSmErJUUdNou+gkkWSz62F+KJZNz4hd4lisz3pwIY6t3X6eCA1zM/iXObLZsjNno
qshLpoViQlD1Q/HW4hBcD0CaDrYfN0do6yDYyDfT83D5Aucl3tTjB4rXywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIYGrPCuisAnKq/Y0l55/GxZafhfMB8GA1UdIwQY
MBaAFMWcQdrwCStwO8BZuhNT8HHtEhmbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kNTRkMmItMjEyNi00NTQyLWE1ZTQt
YzU0OTNmZTgyZTI2LzEveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9kNTRkMmItMjEyNi00NTQyLWE1ZTQtYzU0OTNmZTgyZTI2
LzEveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAClUAdXLy
2GYy/PIkOVJl4gl84u/c8RmhVPAp1bahtwqmeSA/yo4YbEtjXvFG5Wp/LKVILziN
reXEOkk4zlECabc3mhNMUe/MMp8pzGmHVzOwCheeOM9kZyCA247XaXcrD0apxsAU
+Hs7quXLOMXSDnf5qS5JydzLBCMsVSk/dByb7ja15HyFjVPV8qE2VZswzRqnnYeo
+znwiZfL/vhAleRZNrM+VoN9ArAvjUTQwWOpdftC95VppR4y+xVOIu2uyQ4Sq8K6
OF4CGJjQ+2xrufuXW8K9LDNlH0VYtZYL0MtTOnbqV3k/sWxRV0I3Sb5sU5aDWcpS
Zzsvb5WTq7UeVg==
-----END CERTIFICATE-----
Generated at Wed Jul 2 19:35:47 2025 by rpki-client