Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
File: xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft (raw, json)
Hash identifier: FGzeiMqQyVwbmFx2tO04rzNzTI7bQjSmA2tk3lpjbxA=
Subject key identifier: E3:4B:A1:AD:CF:76:FC:2A:74:CA:FF:82:54:A3:92:F3:41:3D:0F:2C
Authority key identifier: C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4
Certificate issuer: /CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4
Certificate serial: 0197BAEB0B9458507A8E9944600BE1273FBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
Manifest number: 0607
Signing time: Sun 29 Jun 2025 09:00:55 +0000
Manifest this update: Sun 29 Jun 2025 09:00:55 +0000
Manifest next update: Mon 30 Jun 2025 09:00:55 +0000
Files and hashes: 1: gO1QQzQ8EJSK1sz9QVMIVflw4Is.roa (hash: XHDVuSMRNZ8ZK68EQ/rZiQRsF4JaubC5jLA4NaC8LBM=)
2: xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl (hash: myqua5XYjDlaiFgaDOPne6kKC1upMceRMSoMQhgqmGk=)
3: z5AaUIsCUfsHWnAtqAIr_d8n8do.roa (hash: rmzyF9COLH0iNSyMo0DleMzCkcEN6+9Om4xVkdPkL6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:eb:0b:94:58:50:7a:8e:99:44:60:0b:e1:27:3f:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4
Validity
Not Before: Jun 29 09:00:55 2025 GMT
Not After : Jun 30 09:00:55 2025 GMT
Subject: CN=e34ba1adcf76fc2a74caff8254a392f3413d0f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ec:ea:06:2f:2c:d5:44:79:2b:7e:f0:3e:70:
14:15:b7:06:0f:a4:fa:46:3f:9e:71:a8:ed:0e:e9:
2f:6f:7c:d7:ff:1e:a8:43:0d:78:6e:49:ca:64:2b:
5f:cb:56:57:eb:02:0f:cd:92:9d:42:ed:5d:06:6d:
b1:c4:eb:c4:91:d4:af:04:2c:88:a6:a2:c7:5a:e1:
f2:8f:a3:ae:2e:99:ca:80:38:88:b3:7f:c4:2b:79:
a9:21:60:07:84:0c:9c:ce:a1:5a:69:f4:e4:86:95:
82:1c:48:4e:ad:9f:05:a5:ac:0f:74:55:48:6e:ca:
c1:ac:26:af:5c:cd:72:3d:2b:a6:bb:59:ec:8e:0d:
4d:e6:7d:6c:8d:9a:33:a8:6e:26:12:0d:68:8e:49:
50:af:02:30:ef:ec:16:c7:91:ad:06:66:73:57:f2:
11:b6:44:05:df:77:f7:e1:0d:2a:2b:ac:99:4c:56:
a6:49:01:63:4c:8b:de:2f:9f:b7:ee:00:df:a6:a6:
a9:56:56:4b:6a:10:84:66:d8:44:dc:13:df:c4:46:
ba:a8:ff:10:47:19:07:ed:92:f3:cd:c7:d6:29:30:
07:24:40:0e:3d:e0:24:a2:8b:ac:6d:83:4c:e8:0f:
72:ef:00:aa:27:d0:07:fb:c1:9f:da:b0:c0:dc:b0:
5b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4B:A1:AD:CF:76:FC:2A:74:CA:FF:82:54:A3:92:F3:41:3D:0F:2C
X509v3 Authority Key Identifier:
keyid:C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:b5:1b:25:16:9a:0d:3b:c9:f2:a4:1e:ae:10:de:26:92:98:
77:82:cf:06:e8:da:c1:93:e1:13:3b:da:74:ac:d0:ee:ae:be:
fc:c9:d2:a9:e8:0e:aa:61:79:ce:ad:45:2f:84:81:86:82:68:
39:17:ae:51:31:9c:1c:df:cd:92:62:0f:53:0b:8d:c5:82:2a:
50:2c:93:0b:93:25:b6:d9:c6:5d:d3:c1:af:a9:43:85:3d:be:
ee:6b:a6:e0:d7:be:2b:c0:a6:c5:56:bb:15:f5:5f:62:81:ff:
00:5b:84:d6:86:f6:64:e8:50:3e:cc:68:c3:62:6b:39:74:66:
4e:9f:46:ec:d4:69:5f:b2:3b:e4:d7:c3:ad:80:57:4a:f4:53:
08:77:ba:e8:96:38:c2:cf:3e:c5:a3:c0:1c:0e:aa:2b:7a:36:
81:46:9a:de:6c:1b:fb:17:6d:e7:f5:70:20:1e:72:7f:87:cb:
bc:61:29:1a:85:b7:86:69:de:61:06:b0:6d:10:72:16:73:b1:
1f:68:49:f4:3b:26:66:64:92:99:c5:2f:34:03:1b:fd:b2:ef:
16:52:16:d2:b4:a9:47:5b:d2:f5:48:ec:c0:4d:af:d3:d9:8d:
97:84:6c:87:c0:c7:67:c3:1f:22:df:05:dd:8a:bf:d3:21:84:
e9:09:f3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:26:33 2025 by rpki-client