Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: 7u22Uo68b7px86dX4F+kEV4ak6wgyO1b7EY4T8zF9Ls=
Subject key identifier: 16:45:0E:75:AB:A2:7B:96:76:7B:01:89:6E:9E:0D:E1:CD:3F:92:D8
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 0197B88FCEF95C5E56C4B17D3BDB05E9DF43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 0754
Signing time: Sat 28 Jun 2025 22:02:01 +0000
Manifest this update: Sat 28 Jun 2025 22:02:01 +0000
Manifest next update: Sun 29 Jun 2025 22:02:01 +0000
Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: xOUsPESzkOgD0Vts5ReigrJyQQwlKcPGCQ6+H+nD6DM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:ce:f9:5c:5e:56:c4:b1:7d:3b:db:05:e9:df:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Jun 28 22:02:01 2025 GMT
Not After : Jun 29 22:02:01 2025 GMT
Subject: CN=16450e75aba27b96767b01896e9e0de1cd3f92d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3f:5c:ca:8e:b8:d3:d5:b7:0c:f7:b5:60:ef:
15:e2:53:68:3b:5e:89:71:f8:de:54:a5:79:95:12:
d2:f4:70:0f:e4:13:80:2a:11:f6:04:84:c8:22:fb:
f7:75:d9:12:03:b3:88:3a:ab:d9:e2:4e:e5:2f:86:
3e:0f:63:0f:1d:5d:8c:9b:23:7d:1c:0d:d4:75:ae:
19:c5:44:63:b0:62:60:ab:e0:74:ef:f0:a2:b5:cf:
66:4b:20:7b:25:32:fc:60:19:1f:c5:c6:b9:70:f2:
16:8e:91:17:e3:4b:b4:59:af:7d:e0:45:9f:1a:01:
27:63:91:ec:13:ca:2d:27:ae:ef:95:a2:4e:ed:80:
93:bd:49:aa:a2:ac:a9:84:da:ae:7f:47:ad:18:a9:
5f:04:6e:f7:be:36:ab:29:d0:ee:7f:43:56:f1:8a:
0c:12:7e:9f:88:97:12:65:d5:03:0f:52:6b:1a:78:
73:33:b9:ec:08:e1:d3:8a:f6:31:fa:e4:f2:1d:21:
9e:7d:c3:5e:db:e0:02:07:69:31:78:a6:84:5f:0e:
4e:cf:8d:db:60:ac:b4:35:d7:f3:f3:c0:cb:14:e2:
71:e4:3c:a5:65:99:aa:21:3f:2d:65:d1:55:a4:1e:
3e:14:cc:f8:63:5f:e0:0f:79:f5:64:1e:ca:5c:e8:
2f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:45:0E:75:AB:A2:7B:96:76:7B:01:89:6E:9E:0D:E1:CD:3F:92:D8
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:63:30:da:3c:51:c7:54:a6:bc:bc:ba:ab:05:88:f1:82:c4:
43:40:58:28:aa:fc:cb:e0:27:4a:3b:d6:d8:3d:0b:8f:a9:8c:
4e:1b:16:b8:65:72:25:fa:6e:63:cd:1a:9b:77:19:38:5c:dc:
88:11:34:bb:55:20:71:5f:9f:23:9d:cf:e1:1f:46:06:65:1e:
08:14:00:6b:d3:5c:a9:78:a4:fc:5f:00:fb:27:56:db:55:50:
9e:3b:73:49:1b:db:12:38:07:75:6b:48:4e:04:22:fa:c4:c5:
b0:02:c7:cf:af:12:83:7a:4c:09:90:74:af:78:c1:03:79:49:
90:6e:c1:67:78:d4:18:33:20:f6:66:96:dc:41:a3:68:95:02:
50:3e:fb:f0:d0:34:36:37:ab:67:63:ae:f5:1c:19:1c:d6:04:
8d:cf:35:b2:0f:09:da:47:6b:8d:39:02:4c:15:aa:a5:7b:8a:
e6:5a:29:9a:fb:9a:d6:d2:f9:8a:a6:39:55:c6:71:68:29:1f:
53:cc:90:54:30:9a:c6:6a:86:c5:f8:cd:fb:4e:37:2d:e0:11:
a0:ee:5a:93:d7:a9:0b:fd:2c:68:1f:be:da:ee:80:f8:03:92:
28:25:52:e1:7c:b6:6e:e0:55:a5:b1:e6:1f:0a:8b:81:1b:cc:
bb:a8:40:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:06:12 2025 by rpki-client