Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
File: xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft (raw, json)
Hash identifier: 9jE3+mGZ8X/iojoYMo/AEOAc/aauOeHVURqMuNXxgeU=
Subject key identifier: B3:69:E2:AE:57:69:D0:53:C0:CB:D0:58:CB:6B:00:BB:30:F9:6D:49
Authority key identifier: C4:A0:F3:11:09:84:CC:FB:F5:29:98:0B:6D:41:6D:DD:4E:1A:88:25
Certificate issuer: /CN=c4a0f3110984ccfbf529980b6d416ddd4e1a8825
Certificate serial: 01974D7BF37B3FD98E084390B908DCC85D9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
Manifest number: 0367
Signing time: Sun 08 Jun 2025 03:00:58 +0000
Manifest this update: Sun 08 Jun 2025 03:00:58 +0000
Manifest next update: Mon 09 Jun 2025 03:00:58 +0000
Files and hashes: 1: SGkYily7UQPusAexDOf3Pto8qlU.roa (hash: suweJqoDq78riZx1pHsROfmVS4S86mc1JzDxd3RsgQs=)
2: xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl (hash: ZJ7cOizhMALU3THxTxQC0LOUN+VWzTs1HAN33ikU8YU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7b:f3:7b:3f:d9:8e:08:43:90:b9:08:dc:c8:5d:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4a0f3110984ccfbf529980b6d416ddd4e1a8825
Validity
Not Before: Jun 8 03:00:58 2025 GMT
Not After : Jun 9 03:00:58 2025 GMT
Subject: CN=b369e2ae5769d053c0cbd058cb6b00bb30f96d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1d:5c:1f:34:b2:5c:ca:ab:2b:f8:57:1f:23:
29:ba:36:47:e1:fc:5b:8d:27:47:09:50:f0:f2:63:
cf:f3:f3:c9:e9:4c:c2:a9:b4:a0:61:5c:c4:cd:00:
30:80:bc:26:6a:f2:31:e7:b7:15:44:69:49:65:93:
89:0d:5e:72:6e:56:f6:3c:fb:46:a4:80:e2:db:4e:
7d:b1:8a:27:71:49:a5:a5:32:c1:df:07:0f:82:d6:
aa:1a:66:7c:8c:d0:d4:09:b9:2b:39:ad:8b:bf:cb:
82:ad:77:60:3c:79:4a:38:d8:33:f3:d2:8e:af:55:
a8:be:eb:a1:a8:1d:e0:1a:7c:af:2e:25:11:a8:8e:
7f:7b:8b:61:4e:c2:b8:bc:47:77:7b:88:7a:4f:0a:
2b:8e:65:5f:11:33:32:c9:53:79:91:ae:5a:3c:fa:
62:8c:99:80:3a:60:2f:bf:a8:90:45:bc:59:53:5d:
8e:25:f3:4f:fe:bb:b8:a3:a1:fb:76:50:55:80:6d:
8f:18:97:60:2f:e9:57:58:c4:4e:2e:1b:af:f8:cf:
02:23:a4:1f:5b:dd:6b:97:e0:95:ed:67:c8:28:6d:
3e:91:f5:bb:3a:18:be:40:c3:a3:0d:cb:9a:1b:57:
14:94:c3:e7:b1:9b:5f:a1:d6:03:da:64:35:ff:6b:
e1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:69:E2:AE:57:69:D0:53:C0:CB:D0:58:CB:6B:00:BB:30:F9:6D:49
X509v3 Authority Key Identifier:
keyid:C4:A0:F3:11:09:84:CC:FB:F5:29:98:0B:6D:41:6D:DD:4E:1A:88:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:12:84:6f:4e:a6:92:e4:79:9a:71:ba:4f:cb:05:6f:db:a2:
60:ad:dd:8e:68:01:29:f4:eb:5c:dc:14:5b:16:3a:74:21:fd:
66:d5:ad:c7:43:69:99:8e:39:b7:77:9d:20:5c:07:b6:5b:c4:
2f:22:7a:ba:47:7e:2b:7c:72:66:b3:9a:95:32:72:47:96:ad:
c2:2a:d0:5f:43:ac:37:77:cb:86:fe:72:39:19:ee:a4:57:bb:
74:03:fc:05:f8:30:ed:fd:f9:a9:b6:5a:17:fe:2f:a3:8f:68:
e0:b8:ef:12:3f:5d:b9:bc:a0:8c:5f:65:d5:f5:ca:79:e0:24:
4f:8e:b0:77:a5:28:f7:08:a4:0e:6b:71:85:bb:b7:d9:d3:9d:
38:ef:09:ad:5a:7b:ef:d7:3e:22:f7:cc:ef:82:b8:ea:33:02:
24:37:1b:da:9a:d2:2b:f3:a5:e9:87:25:a3:42:24:5c:0c:b4:
9f:f2:5d:52:f1:80:04:c0:b8:a2:f6:89:df:c3:da:e6:98:81:
19:3d:53:e7:4e:31:81:ea:61:f3:b9:9e:18:27:f1:33:9a:14:
06:76:9d:5f:af:d7:06:e6:35:7c:d3:22:1e:70:81:7e:38:be:
eb:b3:ed:eb:40:7f:92:ca:ed:41:b0:91:ae:56:da:e6:44:2b:
9e:14:75:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNe/N7P9mOCEOQuQjcyF2aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0YTBmMzExMDk4NGNjZmJmNTI5OTgwYjZkNDE2ZGRkNGUx
YTg4MjUwHhcNMjUwNjA4MDMwMDU4WhcNMjUwNjA5MDMwMDU4WjAzMTEwLwYDVQQD
EyhiMzY5ZTJhZTU3NjlkMDUzYzBjYmQwNThjYjZiMDBiYjMwZjk2ZDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtR1cHzSyXMqrK/hXHyMpujZH4fxb
jSdHCVDw8mPP8/PJ6UzCqbSgYVzEzQAwgLwmavIx57cVRGlJZZOJDV5yblb2PPtG
pIDi2059sYoncUmlpTLB3wcPgtaqGmZ8jNDUCbkrOa2Lv8uCrXdgPHlKONgz89KO
r1WovuuhqB3gGnyvLiURqI5/e4thTsK4vEd3e4h6TworjmVfETMyyVN5ka5aPPpi
jJmAOmAvv6iQRbxZU12OJfNP/ru4o6H7dlBVgG2PGJdgL+lXWMROLhuv+M8CI6Qf
W91rl+CV7WfIKG0+kfW7Ohi+QMOjDcuaG1cUlMPnsZtfodYD2mQ1/2vhiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLNp4q5XadBTwMvQWMtrALsw+W1JMB8GA1UdIwQY
MBaAFMSg8xEJhMz79SmYC21Bbd1OGoglMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEtEekVRbUV6UHYxS1pnTGJVRnQzVTRhaUNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hNmM1ZjYtNjA0Zi00Mzk5LTk0NDMt
ZDEyYTkwYmY1MDJlLzEveEtEekVRbUV6UHYxS1pnTGJVRnQzVTRhaUNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9hNmM1ZjYtNjA0Zi00Mzk5LTk0NDMtZDEyYTkwYmY1MDJl
LzEveEtEekVRbUV6UHYxS1pnTGJVRnQzVTRhaUNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASxKEb06m
kuR5mnG6T8sFb9uiYK3djmgBKfTrXNwUWxY6dCH9ZtWtx0NpmY45t3edIFwHtlvE
LyJ6ukd+K3xyZrOalTJyR5atwirQX0OsN3fLhv5yORnupFe7dAP8Bfgw7f35qbZa
F/4vo49o4LjvEj9dubygjF9l1fXKeeAkT46wd6Uo9wikDmtxhbu32dOdOO8JrVp7
79c+IvfM74K46jMCJDcb2prSK/Ol6Yclo0IkXAy0n/JdUvGABMC4ovaJ38Pa5piB
GT1T504xgeph87meGCfxM5oUBnadX6/XBuY1fNMiHnCBfji+67Pt60B/ksrtQbCR
rlba5kQrnhR1mA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 12:00:28 2025 by rpki-client