Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
File: _XjxP_qS8HTr5VfSotKa0Noz5dg.mft (raw, json)
Hash identifier: 1ubSFfWnE1P1p7en0+vWgt7G5TCmkWMH7/aVlYEFkSo=
Subject key identifier: D3:3F:35:79:74:9F:B5:B1:AF:88:81:9A:79:42:5C:FA:BB:91:51:D2
Authority key identifier: FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
Certificate issuer: /CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Certificate serial: 0197D398AC9DC64BE61D23476185B36DA037
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
Manifest number: 0B1C
Signing time: Fri 04 Jul 2025 04:01:27 +0000
Manifest this update: Fri 04 Jul 2025 04:01:27 +0000
Manifest next update: Sat 05 Jul 2025 04:01:27 +0000
Files and hashes: 1: IPVqTow4BPog0VgWrmL6j3UlRyc.roa (hash: yHocQSt6Dh1L30jflXp+Oc+mQ08tmbAfLa5FFYWt/64=)
2: _XjxP_qS8HTr5VfSotKa0Noz5dg.crl (hash: Zdi6XBzpwSLE53Q5zphNP9q0h5fIAckP8XpWBq7OP3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 04:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d3:98:ac:9d:c6:4b:e6:1d:23:47:61:85:b3:6d:a0:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Validity
Not Before: Jul 4 04:01:27 2025 GMT
Not After : Jul 5 04:01:27 2025 GMT
Subject: CN=d33f3579749fb5b1af88819a79425cfabb9151d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d9:25:a4:bb:d8:ed:8f:e8:f3:da:58:b0:ca:
3e:98:7b:65:1e:96:30:b9:4d:c0:5f:fc:14:ba:46:
a8:f6:17:39:0d:2b:16:d8:69:a2:0b:a9:81:29:5b:
d7:7a:db:bd:99:9d:0a:3a:7e:f1:61:50:7d:f0:9a:
fe:54:a0:14:40:3f:41:34:23:dc:d2:0a:92:d0:dc:
df:a2:0d:00:83:78:b0:1d:63:24:d5:a0:26:cd:21:
a3:b9:51:fa:56:a8:eb:ca:1f:df:3f:49:53:74:75:
64:f0:07:d2:f0:90:2d:01:fb:b2:1a:61:e0:d2:c6:
de:f2:ed:d9:20:fa:40:5d:88:2d:56:12:61:78:b2:
76:d0:ce:9f:5b:68:2e:45:f9:6e:85:3d:8a:2c:ce:
a7:90:62:65:7d:de:5c:44:95:2e:d4:6d:6d:7a:6e:
0f:5b:fa:d5:46:96:ab:df:e5:58:30:61:bd:04:8a:
dc:f2:30:ab:1d:33:00:a0:e7:73:00:5b:4d:f3:6b:
ca:48:73:c8:dc:2b:f1:0a:85:b3:9a:56:5b:80:cf:
a0:f9:53:c7:f1:8c:c2:62:34:f0:0c:d6:0f:b3:1a:
00:e8:db:05:0e:82:92:7f:3e:f2:fa:ed:34:c5:89:
51:4c:c0:d3:82:01:35:ea:c1:c3:91:de:e7:11:fa:
78:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:3F:35:79:74:9F:B5:B1:AF:88:81:9A:79:42:5C:FA:BB:91:51:D2
X509v3 Authority Key Identifier:
keyid:FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:5b:21:52:e0:49:4a:56:58:71:7d:01:32:99:fe:46:dc:7e:
f4:c0:12:a9:a8:ea:e4:31:73:2c:a8:53:93:22:be:c6:e9:80:
98:dc:52:4b:1c:4c:8b:ab:66:4a:49:01:50:7c:28:fa:5b:2d:
2f:62:f7:23:55:29:d2:81:37:9c:7b:78:ec:8d:8d:cf:98:83:
ad:2e:55:f4:4e:cc:1b:a1:58:01:ec:a5:9b:2c:f8:9b:68:fc:
19:aa:b5:af:4b:0e:ff:1c:c5:15:02:0b:fe:09:16:3a:58:6f:
dc:ec:93:67:22:bc:81:14:f6:9e:52:14:d5:38:d1:7b:f2:72:
76:f9:4e:11:fd:59:c0:46:40:e4:bc:51:9c:c8:4c:4f:87:fd:
44:86:67:e0:f5:ef:ef:bc:d6:11:b6:3b:ea:50:4a:45:2b:a9:
42:36:d7:1a:c7:bf:4b:db:99:a1:0c:a5:75:fd:92:f6:8d:2a:
89:be:fe:49:9d:8d:07:f9:b6:b0:99:8b:d0:5d:e8:a1:5c:88:
ee:e3:93:17:d9:da:00:6d:4c:35:e3:04:a2:a0:90:5e:a0:48:
ba:3c:ff:a3:5a:ce:cc:86:1a:e2:32:ec:94:4f:96:9d:bb:83:
e5:65:a2:2f:c5:7e:ca:c7:1a:7a:8b:7f:02:86:73:0d:89:80:
d6:0b:1d:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 10:34:44 2025 by rpki-client