Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
File: XTJb79i36F40cQQgbYwKuKbg-04.mft (raw, json)
Hash identifier: IU5xvOYyONp8o72xEHMC0ssXFGkK38tNAABEZSNpUBA=
Subject key identifier: 4D:3E:2D:FF:C0:4C:B6:BC:45:96:09:43:C0:43:10:D8:21:FE:9D:1E
Authority key identifier: 5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
Certificate issuer: /CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Certificate serial: 0197B7454463BA4E2B9C3E6C4FFB38DC829A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
Manifest number: 138F
Signing time: Sat 28 Jun 2025 16:00:59 +0000
Manifest this update: Sat 28 Jun 2025 16:00:59 +0000
Manifest next update: Sun 29 Jun 2025 16:00:59 +0000
Files and hashes: 1: 1-odAb-HXEiGLPx5y_PADnZMBf0g.roa (hash: 4z0B6lGqXvXr1EDmabK3iy+SlaX1WPh7Y1Hx0zBd0iM=)
2: XTJb79i36F40cQQgbYwKuKbg-04.crl (hash: sJwg6ZgekpVBQSi8EPWFKAFMZRiybJkIrZSrbuXlPF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:44:63:ba:4e:2b:9c:3e:6c:4f:fb:38:dc:82:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Validity
Not Before: Jun 28 16:00:59 2025 GMT
Not After : Jun 29 16:00:59 2025 GMT
Subject: CN=4d3e2dffc04cb6bc45960943c04310d821fe9d1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6a:c0:c0:e4:8b:13:d5:20:5c:9c:04:9a:9b:
ae:04:49:18:1d:c8:e1:ec:b3:49:29:7c:a7:22:c8:
20:79:83:15:9b:0d:36:83:6d:0b:9a:1c:64:d1:e4:
18:29:1d:0a:0e:7c:82:81:c8:bb:3c:b8:6f:8a:fd:
0f:d4:5a:75:e1:f5:e6:0f:86:06:32:48:07:61:fe:
e6:96:b6:93:e0:79:2d:c9:8a:19:d3:c1:a0:fa:e2:
e0:8e:2d:d1:48:14:e6:62:ee:f4:f2:9c:84:03:72:
12:ab:0c:b4:2f:af:9d:10:19:12:ef:a4:9b:3c:63:
69:55:11:7b:a1:36:43:8e:5f:8f:01:c9:c9:18:7e:
60:c7:ca:a5:ad:95:3d:ae:18:fe:bb:c7:ff:7e:0e:
1c:6b:e5:af:1c:e0:85:04:e0:db:a7:0f:2e:85:67:
cf:6b:ba:fd:f6:4f:91:71:91:84:f7:52:c0:27:fd:
81:af:30:51:2a:a9:bf:7e:e6:97:f5:9a:ae:4f:0e:
fe:9e:8b:1c:60:2a:6c:d7:5f:20:c2:56:2c:46:8f:
3d:ff:3b:3f:db:a1:24:f4:50:29:54:3d:29:91:f6:
73:6b:9e:54:44:eb:4d:b4:6f:80:22:e8:5b:d3:1b:
d7:f8:5f:f3:d4:3c:fa:76:48:3c:bc:29:dc:b9:16:
87:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3E:2D:FF:C0:4C:B6:BC:45:96:09:43:C0:43:10:D8:21:FE:9D:1E
X509v3 Authority Key Identifier:
keyid:5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:37:04:12:15:31:eb:76:56:a9:6e:70:a7:ab:cc:60:cf:36:
c9:c3:6a:92:e2:a8:7e:70:ea:5c:a0:22:f5:04:53:04:11:9f:
37:16:56:98:ed:88:4c:e8:ef:db:a3:23:08:9d:cf:d3:4c:ea:
5d:5c:a8:5f:66:f4:4d:5c:19:7a:3f:6a:2d:e4:e5:1b:51:cd:
11:72:77:a1:97:f7:aa:27:75:67:30:ef:0c:38:5a:ee:5e:9a:
fd:d4:b4:fc:cf:ca:e5:c9:da:a8:cd:55:ec:75:a8:9e:31:e2:
aa:18:ba:f3:94:12:5e:7d:1d:69:bc:84:fb:67:c7:55:4b:b5:
f5:28:91:8e:34:c7:c2:29:c9:ae:87:41:68:6d:7f:aa:8e:f0:
4c:1c:d9:4b:05:55:39:5e:4b:dc:59:c7:36:46:9a:99:a6:d6:
0e:69:15:3b:ea:22:2b:49:48:58:85:93:59:70:39:aa:8c:05:
d5:4c:09:fd:74:ba:31:59:e9:54:76:33:e5:3e:05:ab:4e:7a:
47:5a:c4:c6:a1:03:15:4a:61:0f:77:90:d8:d3:03:29:11:7c:
01:c4:51:29:68:1a:82:73:fb:94:2b:05:d2:b6:ba:8f:79:e6:
e5:4c:09:aa:c5:37:5e:71:f1:e4:11:52:38:15:56:fe:40:9e:
45:19:4a:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:40:22 2025 by rpki-client