Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: 4Gz2uRBKR3OpL4flvjv+YpW8XMRKvY1Nn4fwT4ivX/E=
Subject key identifier: F5:D4:32:C6:EF:B6:CA:18:1E:7B:75:F4:6F:26:75:22:89:FA:3B:DE
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 019750B41DCFE0E7E27FDF1AD8F7C2A1F729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 0A0A
Signing time: Sun 08 Jun 2025 18:01:10 +0000
Manifest this update: Sun 08 Jun 2025 18:01:10 +0000
Manifest next update: Mon 09 Jun 2025 18:01:10 +0000
Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: VWSEg86ALhK2sbbsJ434+V2qMv7Hn00U44NzuK5mK6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b4:1d:cf:e0:e7:e2:7f:df:1a:d8:f7:c2:a1:f7:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: Jun 8 18:01:10 2025 GMT
Not After : Jun 9 18:01:10 2025 GMT
Subject: CN=f5d432c6efb6ca181e7b75f46f26752289fa3bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ed:d7:6a:c9:69:4c:0a:7d:79:14:71:d2:7c:
9c:24:69:7d:30:30:48:71:e1:f8:04:99:74:cb:bd:
05:93:b4:5a:fa:55:4d:5e:40:ef:d1:ac:d0:1a:84:
1c:79:8f:b5:5e:d3:64:68:ca:1a:18:ea:83:5c:a7:
65:25:91:09:cf:30:fb:96:da:e8:57:0c:b5:82:b0:
ea:90:d2:22:be:d8:09:be:f9:d8:11:3a:f2:a3:43:
68:17:44:79:4e:6d:95:30:13:8d:b4:61:7b:8e:1c:
1a:31:08:78:8b:ea:da:c6:c3:70:c2:68:b0:8e:04:
85:d8:f0:f9:03:42:03:d5:0f:5b:6d:ca:ca:dd:37:
14:71:4b:a1:d0:0a:5c:89:50:bd:ab:61:27:04:2f:
5a:f1:8b:cf:53:ca:b3:97:2a:f0:40:0c:33:35:14:
ba:ff:59:14:6e:15:d5:12:1b:4e:d5:92:35:62:41:
66:19:86:7e:d7:59:55:a8:bd:ac:7e:a8:d0:83:75:
12:84:33:db:d1:1c:89:f2:fe:ac:0a:25:2d:0f:bd:
1f:2a:31:7d:da:4f:b8:96:d9:a0:51:d8:9e:85:2a:
4d:7b:5f:13:14:3c:22:71:bb:a6:8b:ba:3a:1f:d5:
da:18:21:db:a9:30:6b:e2:53:77:ae:90:e8:4f:d0:
dc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D4:32:C6:EF:B6:CA:18:1E:7B:75:F4:6F:26:75:22:89:FA:3B:DE
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:2b:b9:69:bd:19:c4:ce:8c:29:59:3b:33:02:68:6b:6c:6d:
20:db:7f:77:8d:ce:ba:5d:a6:d0:c0:f3:77:7b:a0:e8:51:32:
54:b6:7c:93:da:9a:0c:16:a6:df:00:5b:59:30:87:fc:20:bd:
92:c1:17:b4:fa:3f:57:89:db:20:d8:cf:e2:58:cd:fb:2f:43:
a1:f0:1f:65:12:0a:2e:8f:ce:6c:71:d2:fa:22:94:8e:6f:cb:
9e:45:92:80:31:44:df:0d:db:d9:f0:48:5a:b5:17:b7:ed:bd:
49:8f:7e:8f:88:8d:1e:3a:f0:de:45:0f:54:42:65:31:f2:b5:
c2:b2:74:cd:ab:75:bb:28:78:d6:70:bc:ae:82:38:5f:bb:fd:
7a:29:61:39:84:a3:3e:fd:d6:b5:37:c7:01:3b:02:3e:e6:8b:
fb:61:33:e7:7f:95:4a:a7:f8:1f:f0:e1:86:b5:62:13:77:74:
d2:d8:53:73:1e:53:ca:ca:18:34:12:95:9f:4b:00:cf:11:30:
57:d5:70:ce:22:c3:45:52:38:52:e9:90:9e:41:66:de:4f:36:
f4:5f:52:6d:c4:ac:bb:18:0a:30:cd:1f:ec:a7:34:3d:44:cd:
fc:0b:6b:ab:ef:2f:ff:26:a3:83:99:65:bb:82:1b:53:cf:97:
3c:fc:e4:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQtB3P4Ofif98a2PfCofcpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkNTlmNDkwZDNiNjliMjJlMWUyN2MzMjZiYWY3MjMxMTA1
NmRkYjgwHhcNMjUwNjA4MTgwMTEwWhcNMjUwNjA5MTgwMTEwWjAzMTEwLwYDVQQD
EyhmNWQ0MzJjNmVmYjZjYTE4MWU3Yjc1ZjQ2ZjI2NzUyMjg5ZmEzYmRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqe3XaslpTAp9eRRx0nycJGl9MDBI
ceH4BJl0y70Fk7Ra+lVNXkDv0azQGoQceY+1XtNkaMoaGOqDXKdlJZEJzzD7ltro
Vwy1grDqkNIivtgJvvnYETryo0NoF0R5Tm2VMBONtGF7jhwaMQh4i+raxsNwwmiw
jgSF2PD5A0ID1Q9bbcrK3TcUcUuh0ApciVC9q2EnBC9a8YvPU8qzlyrwQAwzNRS6
/1kUbhXVEhtO1ZI1YkFmGYZ+11lVqL2sfqjQg3UShDPb0RyJ8v6sCiUtD70fKjF9
2k+4ltmgUdiehSpNe18TFDwicbumi7o6H9XaGCHbqTBr4lN3rpDoT9Dc3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPXUMsbvtsoYHnt19G8mdSKJ+jveMB8GA1UdIwQY
MBaAFF1Z9JDTtpsi4eJ8MmuvcjEQVt24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEt
NzkzNDhlODM2NmJjLzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEtNzkzNDhlODM2NmJj
LzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXCu5ab0Z
xM6MKVk7MwJoa2xtINt/d43Oul2m0MDzd3ug6FEyVLZ8k9qaDBam3wBbWTCH/CC9
ksEXtPo/V4nbINjP4ljN+y9DofAfZRIKLo/ObHHS+iKUjm/LnkWSgDFE3w3b2fBI
WrUXt+29SY9+j4iNHjrw3kUPVEJlMfK1wrJ0zat1uyh41nC8roI4X7v9eilhOYSj
Pv3WtTfHATsCPuaL+2Ez53+VSqf4H/DhhrViE3d00thTcx5TysoYNBKVn0sAzxEw
V9VwziLDRVI4UumQnkFm3k829F9SbcSsuxgKMM0f7Kc0PUTN/Atrq+8v/yajg5ll
u4IbU8+XPPzkyQ==
-----END CERTIFICATE-----
Generated at Mon Jun 9 00:41:44 2025 by rpki-client