Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
File: xmJhwznF7fjYxIPwjka4SAqAXvE.mft (raw, json)
Hash identifier: P6FeVzlFNHaA4al+a/s5pDvcav3LkXtSoBZRIIdzGBM=
Subject key identifier: AB:19:30:37:10:12:D6:C9:FC:24:70:65:7C:86:98:1A:64:11:52:52
Authority key identifier: C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
Certificate issuer: /CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Certificate serial: 0197B6A1EB987A96EDC9D0A9599637711685
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
Manifest number: 14F1
Signing time: Sat 28 Jun 2025 13:02:34 +0000
Manifest this update: Sat 28 Jun 2025 13:02:34 +0000
Manifest next update: Sun 29 Jun 2025 13:02:34 +0000
Files and hashes: 1: n0PQVaq6lp0buyh71HmvCGJy3cY.roa (hash: QL9cb+VrnWZDKfgvQ3BKYLRd9xHYcd+B/V/qEKLIfgU=)
2: xmJhwznF7fjYxIPwjka4SAqAXvE.crl (hash: 5aK0mnSPxG8WlvfKzGYyBsgCd65rILJkw8NnayHfOXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:eb:98:7a:96:ed:c9:d0:a9:59:96:37:71:16:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Validity
Not Before: Jun 28 13:02:34 2025 GMT
Not After : Jun 29 13:02:34 2025 GMT
Subject: CN=ab1930371012d6c9fc2470657c86981a64115252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3a:19:bf:c8:2b:a6:01:50:d7:2f:09:ec:93:
4d:4b:64:4c:bc:ae:f5:0f:07:0e:27:4b:a8:9c:72:
9b:bc:00:31:a0:ef:9c:a5:d6:d4:7d:bd:05:0e:63:
65:bf:67:b0:45:3e:d4:b8:61:06:57:e0:34:4d:bd:
1f:43:52:5b:6f:44:03:be:69:0f:f5:b0:83:73:1b:
43:9a:d7:c4:c9:b3:19:c5:c9:af:e7:0b:85:3c:fa:
e6:cc:c7:f6:d6:98:8e:cd:02:a5:b1:6b:2c:db:03:
ee:c9:b3:6c:f6:97:06:1b:f8:70:bd:e0:1f:e8:8d:
f2:a4:b7:e6:f4:ba:6b:e8:b6:be:cc:dc:e8:41:10:
88:5b:be:88:57:3d:63:17:8a:2e:1d:c5:66:37:55:
6d:eb:a1:08:a2:52:06:5c:e7:8a:b0:17:7f:d7:de:
db:e3:bf:d0:fa:bc:69:34:a8:2b:08:30:43:f2:74:
aa:d4:52:ed:bd:a7:0b:b4:2c:7f:0b:0a:b9:38:2c:
bc:93:df:d1:ee:88:54:ff:92:55:92:eb:4b:1f:ae:
d3:cb:71:df:f8:bf:42:5d:9b:b4:06:84:dc:a3:09:
af:09:96:7c:a3:7c:e4:ce:d7:32:b1:be:8f:60:09:
b0:14:a7:09:2a:6c:cf:d3:3c:78:13:49:5b:e7:19:
cb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:19:30:37:10:12:D6:C9:FC:24:70:65:7C:86:98:1A:64:11:52:52
X509v3 Authority Key Identifier:
keyid:C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:7a:0d:7e:b7:b8:dd:b4:79:4c:37:7f:d1:6e:90:a2:2d:20:
79:7d:1f:47:f1:0d:91:91:f0:27:7d:cb:49:9f:48:50:70:07:
b9:7d:db:2c:ad:be:76:6d:f2:3d:28:42:40:04:b2:7f:33:9e:
d7:58:43:8c:4f:f2:67:1d:a1:92:b0:8b:72:85:82:8d:8d:f4:
9e:02:23:81:f2:95:db:36:12:74:7a:78:d6:cc:16:01:c1:6d:
e4:8c:f5:d0:8e:03:c5:cb:e9:5e:3a:6e:6a:dd:e6:de:c6:52:
c7:31:0f:1e:0b:a0:7a:57:13:da:21:4f:97:ee:b6:45:bc:04:
0e:a2:69:fd:23:32:c2:b2:2c:08:28:7b:5a:80:2a:96:2d:8d:
00:d5:20:a5:22:a1:c5:8c:13:bb:35:87:7c:81:fb:38:1f:67:
d3:fd:17:bc:01:74:2a:a8:f8:3d:4b:5d:83:44:87:bf:f8:4b:
38:40:7c:5e:8a:6e:a4:97:4c:9c:67:b8:0a:ee:32:94:8f:15:
56:83:fc:cf:97:a7:e7:40:b8:e9:a0:a3:e7:78:3d:3d:8c:ba:
9a:88:eb:e2:be:75:4d:50:39:9e:bc:37:bb:22:3f:4c:91:9a:
46:a6:62:59:98:d7:75:53:4f:45:12:c8:36:08:84:04:01:ff:
52:bf:46:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oeuYepbtydCpWZY3cRaFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2MWMzMzljNWVkZjhkOGM0ODNmMDhlNDZiODQ4MGE4
MDVlZjEwHhcNMjUwNjI4MTMwMjM0WhcNMjUwNjI5MTMwMjM0WjAzMTEwLwYDVQQD
EyhhYjE5MzAzNzEwMTJkNmM5ZmMyNDcwNjU3Yzg2OTgxYTY0MTE1MjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDoZv8grpgFQ1y8J7JNNS2RMvK71
DwcOJ0uonHKbvAAxoO+cpdbUfb0FDmNlv2ewRT7UuGEGV+A0Tb0fQ1Jbb0QDvmkP
9bCDcxtDmtfEybMZxcmv5wuFPPrmzMf21piOzQKlsWss2wPuybNs9pcGG/hwveAf
6I3ypLfm9Lpr6La+zNzoQRCIW76IVz1jF4ouHcVmN1Vt66EIolIGXOeKsBd/197b
47/Q+rxpNKgrCDBD8nSq1FLtvacLtCx/Cwq5OCy8k9/R7ohU/5JVkutLH67Ty3Hf
+L9CXZu0BoTcowmvCZZ8o3zkztcysb6PYAmwFKcJKmzP0zx4E0lb5xnLcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKsZMDcQEtbJ/CRwZXyGmBpkEVJSMB8GA1UdIwQY
MBaAFMZiYcM5xe342MSD8I5GuEgKgF7xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KaHd6bkY3ZmpZeElQd2prYTRTQXFBWHZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS81MjU5NTItN2FmYi00NDNkLWFmMGEt
NzdjM2UxYzhmNmRlLzEveG1KaHd6bkY3ZmpZeElQd2prYTRTQXFBWHZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS81MjU5NTItN2FmYi00NDNkLWFmMGEtNzdjM2UxYzhmNmRl
LzEveG1KaHd6bkY3ZmpZeElQd2prYTRTQXFBWHZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEnoNfre4
3bR5TDd/0W6Qoi0geX0fR/ENkZHwJ33LSZ9IUHAHuX3bLK2+dm3yPShCQASyfzOe
11hDjE/yZx2hkrCLcoWCjY30ngIjgfKV2zYSdHp41swWAcFt5Iz10I4DxcvpXjpu
at3m3sZSxzEPHgugelcT2iFPl+62RbwEDqJp/SMywrIsCCh7WoAqli2NANUgpSKh
xYwTuzWHfIH7OB9n0/0XvAF0Kqj4PUtdg0SHv/hLOEB8XopupJdMnGe4Cu4ylI8V
VoP8z5en50C46aCj53g9PYy6mojr4r51TVA5nrw3uyI/TJGaRqZiWZjXdVNPRRLI
NgiEBAH/Ur9Gsg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:06:07 2025 by rpki-client