Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
File: xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft (raw, json)
Hash identifier: 8fXXx64jkiEHG8DIXINyWgLkYpfr2phPHE6zqNfYDRo=
Subject key identifier: D9:3D:CF:10:1C:EE:AB:C3:F0:AF:4F:C8:C4:36:76:5C:FE:47:78:CA
Authority key identifier: C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
Certificate issuer: /CN=c722ad43471b606bcc853bba11b8ed663c151882
Certificate serial: 0196BE5C78AD94A95526FEB808421D835C55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
Manifest number: 0C21
Signing time: Sun 11 May 2025 08:00:53 +0000
Manifest this update: Sun 11 May 2025 08:00:53 +0000
Manifest next update: Mon 12 May 2025 08:00:53 +0000
Files and hashes: 1: G5_4IPMG5NHZjmfzPhI-Ht0hMBo.roa (hash: UQfSOOWEfVsgKWPp7JPv9q8rf4PIS8Inp9Mcfn7NDVc=)
2: xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl (hash: Gdw7aejOdmv62xyqGjCpxc1CbHrgOsezBYFk2XVU3ic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:5c:78:ad:94:a9:55:26:fe:b8:08:42:1d:83:5c:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c722ad43471b606bcc853bba11b8ed663c151882
Validity
Not Before: May 11 08:00:53 2025 GMT
Not After : May 12 08:00:53 2025 GMT
Subject: CN=d93dcf101ceeabc3f0af4fc8c436765cfe4778ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:fd:0e:0b:f4:ef:cd:19:fe:2a:5e:e4:01:90:
01:33:e6:8d:48:f1:0e:07:17:e6:b9:40:40:6c:6c:
8b:92:cf:6a:19:b6:06:2f:63:02:19:da:54:74:22:
9b:4e:55:78:3c:b2:78:f6:81:8b:79:b5:61:75:58:
42:ba:36:a6:96:7d:cb:be:b8:73:91:d3:11:08:dc:
3c:2c:95:12:d3:2b:3b:e7:f6:7a:2b:f5:ed:11:ce:
07:91:2e:04:cb:44:63:20:e1:c2:6f:c4:eb:d2:54:
56:56:6b:e2:e7:01:42:e3:a0:38:fc:75:4c:5f:0c:
b2:7e:81:7d:5c:32:39:0b:19:b2:dc:16:7d:02:89:
93:c3:52:ff:6f:ac:2d:2e:ad:ca:cf:24:ce:57:73:
c2:98:dc:76:92:3b:e3:04:76:da:54:e7:e2:a9:cc:
ee:14:34:72:82:f9:27:1b:f1:fc:00:97:67:5c:16:
b8:61:81:73:cc:c3:42:ff:29:5b:7f:9f:c7:cf:ee:
bd:94:d2:51:61:a6:4a:69:52:ef:4a:20:c6:da:e6:
09:f5:78:f6:0e:3d:f7:07:47:0c:7a:4b:5e:bb:3a:
55:5f:c9:ff:5d:5f:57:c3:e1:0b:19:bd:d5:3e:e1:
05:ca:88:2b:f4:90:0f:26:72:73:b6:fc:7f:0a:da:
d9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:3D:CF:10:1C:EE:AB:C3:F0:AF:4F:C8:C4:36:76:5C:FE:47:78:CA
X509v3 Authority Key Identifier:
keyid:C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:0e:00:b5:fc:b3:75:33:4b:33:13:54:0a:38:1d:f8:9a:39:
cb:05:20:07:10:ba:4a:bd:5d:02:2a:d9:1f:3b:e3:e9:38:7a:
fe:d9:7b:4a:15:99:9d:8b:0f:4a:6d:ed:3c:eb:05:61:f1:65:
ea:a9:00:1e:da:8b:fc:3f:ff:aa:0a:e0:63:12:16:24:e9:d5:
96:0c:1e:2d:19:a2:a5:c4:62:93:5d:a3:a3:23:75:cb:b2:af:
5d:08:a5:58:22:06:89:b4:82:86:5c:59:27:16:ed:55:eb:03:
b5:47:09:98:f0:a0:46:2d:a0:16:a4:6f:08:c0:1f:ce:1a:2e:
5c:5a:b1:05:79:1d:11:9a:1c:31:ef:14:d3:04:13:e9:8d:87:
d3:05:83:3f:e0:98:39:ae:95:a9:28:0f:a7:53:76:00:f2:db:
e8:3a:cb:25:e2:32:32:c1:22:17:bc:b2:f9:87:cf:f5:af:03:
54:de:99:a7:57:a2:30:c7:94:0e:0d:63:18:b8:45:bf:b6:7f:
85:75:a6:a0:4a:73:69:ae:3c:74:c2:84:67:f9:95:7f:3e:f1:
e2:90:6e:b4:55:42:a0:13:e9:8a:9c:8b:77:b7:42:37:84:99:
3e:3e:c8:57:1d:41:51:d4:f2:87:c9:77:93:0d:ae:61:57:56:
7b:90:68:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa+XHitlKlVJv64CEIdg1xVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3MjJhZDQzNDcxYjYwNmJjYzg1M2JiYTExYjhlZDY2M2Mx
NTE4ODIwHhcNMjUwNTExMDgwMDUzWhcNMjUwNTEyMDgwMDUzWjAzMTEwLwYDVQQD
EyhkOTNkY2YxMDFjZWVhYmMzZjBhZjRmYzhjNDM2NzY1Y2ZlNDc3OGNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhf0OC/TvzRn+Kl7kAZABM+aNSPEO
BxfmuUBAbGyLks9qGbYGL2MCGdpUdCKbTlV4PLJ49oGLebVhdVhCujamln3Lvrhz
kdMRCNw8LJUS0ys75/Z6K/XtEc4HkS4Ey0RjIOHCb8Tr0lRWVmvi5wFC46A4/HVM
XwyyfoF9XDI5Cxmy3BZ9AomTw1L/b6wtLq3KzyTOV3PCmNx2kjvjBHbaVOfiqczu
FDRygvknG/H8AJdnXBa4YYFzzMNC/ylbf5/Hz+69lNJRYaZKaVLvSiDG2uYJ9Xj2
Dj33B0cMekteuzpVX8n/XV9Xw+ELGb3VPuEFyogr9JAPJnJztvx/CtrZKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNk9zxAc7qvD8K9PyMQ2dlz+R3jKMB8GA1UdIwQY
MBaAFMcirUNHG2BrzIU7uhG47WY8FRiCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHlLdFEwY2JZR3ZNaFR1NkVianRaandWR0lJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9kM2EwYjEtMDhhMC00NGRkLTg3NzQt
MDY2ZmZlZmQwY2FiLzEveHlLdFEwY2JZR3ZNaFR1NkVianRaandWR0lJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9kM2EwYjEtMDhhMC00NGRkLTg3NzQtMDY2ZmZlZmQwY2Fi
LzEveHlLdFEwY2JZR3ZNaFR1NkVianRaandWR0lJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsw4Atfyz
dTNLMxNUCjgd+Jo5ywUgBxC6Sr1dAirZHzvj6Th6/tl7ShWZnYsPSm3tPOsFYfFl
6qkAHtqL/D//qgrgYxIWJOnVlgweLRmipcRik12joyN1y7KvXQilWCIGibSChlxZ
JxbtVesDtUcJmPCgRi2gFqRvCMAfzhouXFqxBXkdEZocMe8U0wQT6Y2H0wWDP+CY
Oa6VqSgPp1N2APLb6DrLJeIyMsEiF7yy+YfP9a8DVN6Zp1eiMMeUDg1jGLhFv7Z/
hXWmoEpzaa48dMKEZ/mVfz7x4pButFVCoBPpipyLd7dCN4SZPj7IVx1BUdTyh8l3
kw2uYVdWe5Bo+A==
-----END CERTIFICATE-----
Generated at Sun May 11 13:41:29 2025 by rpki-client