Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
File: xJkOwgER9C-2LzmoHHOSqSGVW_I.mft (raw, json)
Hash identifier: 6L9Tjc4z89b8X6obSlELL+K/BuDZZYFyQ3JoXI7ioKA=
Subject key identifier: 72:BB:DC:E6:5E:50:AF:11:4B:9B:77:3F:A7:6D:EC:28:B6:53:69:A0
Authority key identifier: C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
Certificate issuer: /CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Certificate serial: 0197B70E999434DFFE3E324883CC5A387567
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
Manifest number: 0216
Signing time: Sat 28 Jun 2025 15:01:16 +0000
Manifest this update: Sat 28 Jun 2025 15:01:16 +0000
Manifest next update: Sun 29 Jun 2025 15:01:16 +0000
Files and hashes: 1: S6SgkEKXXupg9NGyg85ew2MKuNo.roa (hash: Ccy6wkPiSmvGfzLUcrIC/arlCjWDtB/tLTVQ150opBk=)
2: xJkOwgER9C-2LzmoHHOSqSGVW_I.crl (hash: 1jYg4X0GFuFfGY4pP6EL98GeOBpVFlTfMsIL9iDDwqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:99:94:34:df:fe:3e:32:48:83:cc:5a:38:75:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Validity
Not Before: Jun 28 15:01:16 2025 GMT
Not After : Jun 29 15:01:16 2025 GMT
Subject: CN=72bbdce65e50af114b9b773fa76dec28b65369a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:aa:0a:40:98:45:f6:b0:6f:90:2d:11:bd:03:
b2:4c:1e:fb:87:37:88:e9:fa:37:66:81:64:0a:b0:
d2:2d:6e:b1:75:ca:ea:b5:d8:6d:8b:b4:0c:2b:14:
bb:57:4a:67:dd:27:0d:dd:ec:17:96:c1:a0:20:9b:
9f:2a:ad:08:d6:10:b3:5e:45:f8:a2:e1:01:a3:02:
47:dc:c2:f7:31:7c:bb:bc:3c:59:a1:23:7b:dc:77:
90:d3:be:35:53:6e:12:f2:b3:c2:cb:bc:90:21:b2:
f6:f4:38:c8:99:4a:b1:f6:f3:e6:09:59:b3:33:3e:
10:c7:c7:7f:7b:b2:41:48:c3:92:90:81:06:50:0b:
93:e7:fc:ec:f2:4f:34:5f:60:f8:4b:3d:1b:e3:27:
62:5b:d2:26:36:75:26:4d:6b:5b:2a:74:f4:36:2c:
98:c0:33:af:3c:aa:ee:de:47:4a:23:b1:ea:cd:18:
e8:bd:83:bb:8b:0e:87:33:72:ba:86:a5:bd:6c:20:
c3:aa:95:f4:7f:3f:8f:c7:fc:c1:fe:14:37:91:60:
17:85:a8:54:10:69:c5:ae:9d:dc:4e:fd:64:98:68:
c8:86:fb:e2:2a:4a:19:00:d9:50:36:ba:6b:db:a2:
9d:c3:f7:78:bd:f5:d1:c0:85:24:c6:84:4b:4c:63:
6e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BB:DC:E6:5E:50:AF:11:4B:9B:77:3F:A7:6D:EC:28:B6:53:69:A0
X509v3 Authority Key Identifier:
keyid:C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:29:cf:7b:a6:8d:96:2c:54:f7:7f:b2:1a:d5:dd:fd:94:18:
0c:fc:8b:99:50:4e:b3:60:26:c7:52:98:68:fc:2f:ac:c4:0c:
07:37:e0:2e:bf:db:ae:8d:38:af:16:29:74:eb:f1:3b:54:31:
e4:6a:6e:26:74:71:77:4a:e2:51:8e:81:9a:87:1c:e9:70:1e:
04:e2:69:bf:d0:d1:24:a7:28:dd:5d:ab:5c:7f:07:1e:7e:fa:
aa:00:f7:39:08:a8:49:36:40:dc:c4:a9:f0:80:73:47:da:35:
b0:6b:16:7e:96:1f:b5:c9:ae:12:73:01:4d:37:51:44:92:bf:
93:2e:18:d0:55:5c:f5:e3:ea:32:d9:f8:db:26:7a:f6:ca:82:
ad:99:0a:6c:68:c8:17:0f:06:28:ba:d0:ba:ac:e3:45:34:da:
a6:58:63:9d:67:a9:01:be:18:fe:00:01:5c:dc:f9:32:c8:cd:
d6:66:98:0a:81:cf:d3:29:e3:28:72:3f:0d:18:26:a3:e9:28:
dc:bb:c4:d1:a0:68:99:da:ae:64:36:07:ca:e4:5c:94:f8:3f:
64:9f:e0:45:a6:9d:f8:04:ca:5f:c7:e0:a4:67:a2:11:85:9c:
55:17:06:43:2b:dd:44:28:d7:30:eb:ca:3d:dc:22:3c:fa:56:
9d:e3:88:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DpmUNN/+PjJIg8xaOHVnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0OTkwZWMyMDExMWY0MmZiNjJmMzlhODFjNzM5MmE5MjE5
NTViZjIwHhcNMjUwNjI4MTUwMTE2WhcNMjUwNjI5MTUwMTE2WjAzMTEwLwYDVQQD
Eyg3MmJiZGNlNjVlNTBhZjExNGI5Yjc3M2ZhNzZkZWMyOGI2NTM2OWEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6aoKQJhF9rBvkC0RvQOyTB77hzeI
6fo3ZoFkCrDSLW6xdcrqtdhti7QMKxS7V0pn3ScN3ewXlsGgIJufKq0I1hCzXkX4
ouEBowJH3ML3MXy7vDxZoSN73HeQ0741U24S8rPCy7yQIbL29DjImUqx9vPmCVmz
Mz4Qx8d/e7JBSMOSkIEGUAuT5/zs8k80X2D4Sz0b4ydiW9ImNnUmTWtbKnT0NiyY
wDOvPKru3kdKI7HqzRjovYO7iw6HM3K6hqW9bCDDqpX0fz+Px/zB/hQ3kWAXhahU
EGnFrp3cTv1kmGjIhvviKkoZANlQNrpr26Kdw/d4vfXRwIUkxoRLTGNuIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHK73OZeUK8RS5t3P6dt7Ci2U2mgMB8GA1UdIwQY
MBaAFMSZDsIBEfQvti85qBxzkqkhlVvyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS85YzdjZTQtMmNkNC00ODU0LTg4NDAt
YjBmZTkyMjFlZmI3LzEveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS85YzdjZTQtMmNkNC00ODU0LTg4NDAtYjBmZTkyMjFlZmI3
LzEveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABynPe6aN
lixU93+yGtXd/ZQYDPyLmVBOs2Amx1KYaPwvrMQMBzfgLr/bro04rxYpdOvxO1Qx
5GpuJnRxd0riUY6Bmocc6XAeBOJpv9DRJKco3V2rXH8HHn76qgD3OQioSTZA3MSp
8IBzR9o1sGsWfpYftcmuEnMBTTdRRJK/ky4Y0FVc9ePqMtn42yZ69sqCrZkKbGjI
Fw8GKLrQuqzjRTTaplhjnWepAb4Y/gABXNz5MsjN1maYCoHP0ynjKHI/DRgmo+ko
3LvE0aBomdquZDYHyuRclPg/ZJ/gRaad+ATKX8fgpGeiEYWcVRcGQyvdRCjXMOvK
PdwiPPpWneOIyQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:06:55 2025 by rpki-client