Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
File: _XBhwg1PCXYTrAMTI3pt8rsstdw.mft (raw, json)
Hash identifier: s+Eb0zg9yZz/hECZnA4hNQYD2NxlvB42QQeKzYCHL0c=
Subject key identifier: CB:63:83:31:06:52:8A:50:5A:3A:F5:DB:D5:9F:91:57:A6:F4:5C:A2
Authority key identifier: FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC
Certificate issuer: /CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc
Certificate serial: 0197B70F47D6E7F0F44B19F0C8452FFD2014
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
Manifest number: 014A
Signing time: Sat 28 Jun 2025 15:02:01 +0000
Manifest this update: Sat 28 Jun 2025 15:02:01 +0000
Manifest next update: Sun 29 Jun 2025 15:02:01 +0000
Files and hashes: 1: _XBhwg1PCXYTrAMTI3pt8rsstdw.crl (hash: 2D9R+J/JUjfJTnP+6X4px8mbBnHkqZrlhSmoRDWcSJM=)
2: oenpcHzg8QPV-rJqJOxh7sUU4JM.roa (hash: pI8sI3HGC0XwZjUjUuA9QCNQ3HFZ2jSXO5rE2e12GoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:47:d6:e7:f0:f4:4b:19:f0:c8:45:2f:fd:20:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc
Validity
Not Before: Jun 28 15:02:01 2025 GMT
Not After : Jun 29 15:02:01 2025 GMT
Subject: CN=cb63833106528a505a3af5dbd59f9157a6f45ca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:5c:9e:de:ce:3f:33:f2:fb:e9:f3:8a:8a:c1:
97:cf:1f:47:d5:2e:42:73:ab:a3:8a:4f:ba:9d:ba:
22:e3:4f:20:4a:16:f1:7a:de:86:db:6a:dd:54:76:
5a:0c:19:6b:1e:d0:0f:9f:bc:30:2e:d4:80:11:74:
52:c7:e0:8f:a9:d1:d8:28:b8:c0:a9:b2:27:a3:ac:
26:2d:3c:29:8e:61:82:80:f2:f1:18:8b:b0:26:16:
08:ec:74:e9:d2:93:6b:bc:53:bf:25:74:d2:cf:74:
d6:ec:e4:0e:91:fb:8b:0e:22:af:1a:c0:45:8a:ea:
74:6a:61:f7:21:82:4f:68:99:42:31:65:01:b8:48:
2e:53:86:fc:3c:e1:6f:51:91:40:d7:f4:18:98:ef:
f0:f9:e1:d6:b2:cb:9f:54:da:b8:58:af:0f:a6:92:
c8:61:3e:69:0e:9f:dc:af:b0:33:64:58:e8:b6:21:
dd:65:b4:e5:43:84:89:59:2a:35:15:8a:52:86:5f:
24:f8:ae:52:ca:b1:0e:a6:a7:c4:b4:28:f2:59:f1:
b9:3e:ca:0f:48:72:1e:a9:a1:73:44:14:8c:31:09:
07:55:1a:57:a1:f4:d6:99:ef:e7:be:c1:75:b2:91:
ea:66:92:2e:d8:71:34:20:ee:c2:d7:f5:a0:80:c1:
6a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:63:83:31:06:52:8A:50:5A:3A:F5:DB:D5:9F:91:57:A6:F4:5C:A2
X509v3 Authority Key Identifier:
keyid:FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:79:ab:a4:e6:b8:27:d7:cd:c0:69:6c:a9:cf:bb:b8:16:16:
45:9c:e3:a3:7e:cf:6b:32:82:0c:d4:59:43:b9:f8:ca:94:cc:
9e:91:a6:29:a5:f6:7d:cc:ae:3e:15:f6:fb:73:fe:8f:80:65:
ff:6f:80:4a:a9:04:66:2b:6d:eb:10:a0:42:69:c0:7d:65:f7:
92:50:d8:ac:ca:be:6d:5e:07:74:37:e5:fd:56:0d:49:1b:db:
6b:38:6b:a8:73:92:d2:c8:c3:92:66:5a:26:af:e4:0f:75:ac:
41:5e:1f:2c:2c:3a:75:be:14:b5:54:75:e2:fc:e2:30:26:e9:
76:01:f1:e6:fb:0e:4f:99:96:86:8e:32:b2:9c:ae:6b:15:36:
f0:72:66:c0:81:fa:f9:53:0f:db:7a:a8:2c:fb:23:d1:90:38:
11:a8:37:dd:01:6c:3d:7e:fc:cc:1d:3a:8f:48:06:48:d5:29:
de:30:8e:ed:45:1f:85:6b:ab:ae:21:b1:47:c7:90:c7:35:d2:
bb:85:73:57:05:d3:59:c3:1f:06:25:4c:bb:dd:3b:08:b0:54:
c2:1f:90:c9:7c:c9:03:a7:cb:35:c4:09:99:bc:59:f9:31:c0:
71:23:f7:7c:9c:90:30:0c:d0:eb:aa:f5:fe:3f:30:e3:c3:8e:
29:7e:3e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:57:17 2025 by rpki-client