Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
File: xN8L0EqoQ-aAgvbezgeYcytviDI.mft (raw, json)
Hash identifier: 3Q3iGPjcEnjmvJEdDh0PCvOH1Mv+aH5Om20Ea1L0VLg=
Subject key identifier: 3D:51:83:5C:CA:ED:D3:BC:F3:90:40:0E:0C:92:58:C2:F4:55:35:8A
Authority key identifier: C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
Certificate issuer: /CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Certificate serial: 0197CE71E12F5FC55BB9AE03CAD00E94BBC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
Manifest number: 1553
Signing time: Thu 03 Jul 2025 04:00:59 +0000
Manifest this update: Thu 03 Jul 2025 04:00:59 +0000
Manifest next update: Fri 04 Jul 2025 04:00:59 +0000
Files and hashes: 1: 0PsILassVkdjO3YLqLzhDep43F0.roa (hash: BTuwwmqm+lVoIfqGdzicWWpXk8ZLAGxFDZrA6HPrjFA=)
2: T00AB9xipsEuuuK1wmFSrgJa6EQ.roa (hash: h2lLCAhcvRlcJCiD1oieS2PrcXQxs+tKUD+48vFOxxo=)
3: ZB1bFwuNv6eWdiv8dDMsMnuoFfs.roa (hash: +Mo9nvZ4p8mpAlYTdnVEDmvUa5mEw+oncE82//f49Ts=)
4: j4_7U96IEPffvwOTiMn9moiTZAE.roa (hash: Z8Hyt/Bq5aoXLuGUE36BT9I0Ee4e3qh5AvVB4wMCsaI=)
5: xN8L0EqoQ-aAgvbezgeYcytviDI.crl (hash: 61+OACO2nUKLUYnLCSJIPb0tlZcHzXD01VmwFbCbN9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ce:71:e1:2f:5f:c5:5b:b9:ae:03:ca:d0:0e:94:bb:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Validity
Not Before: Jul 3 04:00:59 2025 GMT
Not After : Jul 4 04:00:59 2025 GMT
Subject: CN=3d51835ccaedd3bcf390400e0c9258c2f455358a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:30:b7:07:45:47:d7:ba:5a:e2:c2:de:f6:07:
40:b8:59:23:9a:bf:a3:c7:b0:83:e6:0b:e5:77:1a:
cb:1b:fd:78:7e:d5:df:a9:9e:f6:63:3b:18:a9:7b:
ab:be:c6:3d:3a:b7:44:8b:6e:86:7a:3e:9a:f5:28:
67:97:f2:01:58:87:b5:22:6d:ee:16:61:07:82:c1:
13:59:47:6a:61:e7:1c:0b:74:20:f3:aa:dd:85:78:
0c:cd:6a:22:69:0f:33:97:ba:5a:9d:46:d4:40:82:
cc:3c:83:c0:7a:d1:69:08:c7:47:1b:73:cb:cf:c3:
4c:1b:6c:43:43:3e:e2:0c:2f:77:c6:31:48:c4:b0:
29:47:0c:f9:64:53:7f:07:0d:39:cb:48:7c:38:e9:
67:45:c7:8d:f5:19:08:a5:44:1e:b2:8d:d9:36:0b:
ef:b6:d7:72:13:85:07:55:33:14:c5:2f:dc:cd:74:
53:08:97:08:23:63:aa:c9:6b:51:5b:7b:b3:22:f4:
89:85:71:a3:b8:2d:dd:96:83:c1:b4:30:fe:14:18:
09:bf:1d:be:f4:cc:04:f6:36:9a:fe:57:82:f8:70:
dd:40:10:91:94:45:96:d0:83:8a:a1:cc:66:a4:ae:
01:b4:12:cf:23:0e:e2:b4:1e:9c:bd:2e:fa:7f:36:
60:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:51:83:5C:CA:ED:D3:BC:F3:90:40:0E:0C:92:58:C2:F4:55:35:8A
X509v3 Authority Key Identifier:
keyid:C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:66:c8:5b:ca:ec:34:b1:a7:d9:79:2e:36:5b:77:1a:8e:a9:
bb:37:a9:ec:bb:af:e1:16:de:b2:7d:c0:f2:2b:01:c7:fd:ab:
c1:68:d7:13:b1:47:eb:64:11:88:20:a8:16:87:d7:3c:18:ef:
25:2c:56:2a:0a:8f:bc:82:96:63:1a:8e:e1:b3:70:56:a7:c9:
e8:70:18:fa:3e:11:33:74:57:23:58:1f:e4:f5:ae:4d:d7:3e:
d5:b0:8b:d3:89:37:81:aa:f7:bc:fb:9f:e6:85:7b:2d:1f:09:
25:5d:0d:4a:dc:75:1b:cf:f4:e0:7d:e3:0f:6c:d4:fb:9b:86:
12:d3:95:e4:7c:4e:39:56:f1:e5:c8:d4:0a:ca:aa:96:e7:85:
19:35:50:ba:67:d2:a2:ca:6b:72:a6:fd:4b:7d:58:83:d1:fa:
ec:96:32:40:2e:f5:8d:66:3d:2f:50:9d:0a:82:ea:35:dd:60:
ff:c3:b4:8a:40:7a:eb:e4:69:8f:89:c5:c2:82:03:1d:76:4a:
99:a5:0d:cd:ea:4f:21:fd:33:12:68:81:45:ff:1c:24:f3:3a:
76:71:8d:f0:e0:4e:01:61:77:ad:74:41:32:dc:47:ac:64:9e:
c4:fd:c5:30:f5:ef:63:ff:c6:3b:6d:1c:4e:58:d2:46:c6:98:
e3:80:b5:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 09:42:17 2025 by rpki-client