Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
File: xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft (raw, json)
Hash identifier: xvGRd8ym40vfuCkLL7WK64eWjHktBTZemKZLrEDiweY=
Subject key identifier: EA:3F:57:FF:63:15:AE:89:CE:DA:A2:44:9B:5F:22:13:24:D9:11:12
Authority key identifier: C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
Certificate issuer: /CN=c722ad43471b606bcc853bba11b8ed663c151882
Certificate serial: 0197C6EFBC6F244A9A5EE7FF47F65B14982B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
Manifest number: 0CAA
Signing time: Tue 01 Jul 2025 17:01:29 +0000
Manifest this update: Tue 01 Jul 2025 17:01:29 +0000
Manifest next update: Wed 02 Jul 2025 17:01:29 +0000
Files and hashes: 1: G5_4IPMG5NHZjmfzPhI-Ht0hMBo.roa (hash: UQfSOOWEfVsgKWPp7JPv9q8rf4PIS8Inp9Mcfn7NDVc=)
2: xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl (hash: UKLBnS+p/6L9Kw/AMMqu59KiSfI3TQth2Ec0/jtn7M0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:ef:bc:6f:24:4a:9a:5e:e7:ff:47:f6:5b:14:98:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c722ad43471b606bcc853bba11b8ed663c151882
Validity
Not Before: Jul 1 17:01:29 2025 GMT
Not After : Jul 2 17:01:29 2025 GMT
Subject: CN=ea3f57ff6315ae89cedaa2449b5f221324d91112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:48:0f:9b:f2:a9:77:7b:3b:28:f0:d6:13:46:
86:c9:ff:33:25:c5:bb:6f:4a:13:88:84:e0:27:cc:
92:62:f1:1b:c6:cc:8f:92:f8:59:9c:a1:9c:dc:52:
48:d5:ea:e5:b9:1c:ba:76:e2:3b:a7:86:c3:01:c3:
5d:78:5d:27:9a:fb:04:a3:0c:2f:1c:30:ee:02:e1:
61:28:f0:02:02:07:b7:78:cf:44:c0:ee:23:9d:63:
48:bf:ab:3e:5f:63:0a:9d:76:ff:6f:b9:dd:64:af:
fd:07:ff:d7:b0:8a:e0:64:e4:72:7d:70:47:6c:2c:
fb:76:f5:2e:6d:54:f1:bb:fc:60:70:ff:dd:e6:e4:
91:7c:c0:7e:73:c3:9d:d7:5c:50:b6:4d:0a:7c:5c:
bf:de:85:90:cc:78:3c:d9:00:21:70:2c:e8:25:fc:
37:22:a3:c7:ae:9d:6d:e1:11:70:1a:f7:42:38:63:
49:b1:93:4d:85:9a:5e:74:9e:d3:5b:5d:92:60:7f:
78:de:fb:3c:90:e4:e2:c9:67:3b:39:50:03:0e:98:
c9:c3:7d:c6:ea:77:26:5e:1e:15:09:f3:a0:e0:a6:
b9:be:aa:e7:57:96:df:85:87:4a:76:4a:fb:ec:60:
28:0a:fb:1b:d4:1e:2c:74:01:ff:ed:52:18:b1:46:
48:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:3F:57:FF:63:15:AE:89:CE:DA:A2:44:9B:5F:22:13:24:D9:11:12
X509v3 Authority Key Identifier:
keyid:C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:3e:ad:f5:7c:1c:f4:76:95:4b:84:d2:43:79:ee:29:21:08:
d2:63:15:71:5b:b6:73:5e:11:65:fb:3c:f1:76:dc:ca:b1:30:
94:2a:07:dc:d3:08:77:99:84:5e:27:98:01:35:f9:53:86:46:
56:bb:3d:22:e1:16:86:24:05:d9:7e:1d:8a:03:10:0e:7b:65:
88:a5:90:af:24:30:61:90:a4:99:dd:11:8e:89:be:21:e3:45:
7d:86:d0:2d:35:e9:50:e7:e6:85:af:07:83:fd:54:1a:da:03:
42:19:a5:0b:40:df:42:d7:10:06:70:80:0f:8c:ec:23:83:84:
a5:35:81:10:7d:a8:ab:ee:d2:29:62:48:49:63:71:be:34:55:
10:c1:34:80:81:e7:17:62:6a:8c:e4:cf:9a:41:eb:11:d3:c2:
8b:a8:6c:ba:36:46:fc:28:df:ba:02:2b:7d:5b:52:a5:62:3c:
fe:a9:46:ed:81:bf:68:5b:24:f0:cd:49:d8:d1:af:95:96:2a:
c9:d9:b8:83:b1:ae:08:43:3a:e3:90:15:c8:6e:48:e4:9f:0d:
89:26:32:7b:15:f4:dd:b5:7e:78:0c:f7:8a:0c:86:8f:df:c6:
cf:78:ff:cd:dd:3e:44:05:7f:b5:3c:10:9c:88:e6:c0:fe:7f:
02:8e:b4:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 19:09:22 2025 by rpki-client