Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
File: x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft (raw, json)
Hash identifier: pD3zzVNotdD8A1R5oTxeQ8g3djASF6rtWFLgexnKNPg=
Subject key identifier: 4C:07:C4:B5:27:DF:A3:63:B1:3D:C8:98:6A:60:CB:0B:E4:5A:47:74
Authority key identifier: C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC
Certificate issuer: /CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc
Certificate serial: 019750B3E95DA42919E198103422AF55B13F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
Manifest number: 125E
Signing time: Sun 08 Jun 2025 18:00:57 +0000
Manifest this update: Sun 08 Jun 2025 18:00:57 +0000
Manifest next update: Mon 09 Jun 2025 18:00:57 +0000
Files and hashes: 1: MnEhxi_woQM3cXv5W6rDC8mvyKY.roa (hash: kYcuDCyVLUhxBSbVQtzSrwd5iX/KUoxvsuaVTI7bR60=)
2: x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl (hash: 48MctZIGFfX/WyHNvf8cKmt91M/Li1nkBLfP2xaldSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b3:e9:5d:a4:29:19:e1:98:10:34:22:af:55:b1:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc
Validity
Not Before: Jun 8 18:00:57 2025 GMT
Not After : Jun 9 18:00:57 2025 GMT
Subject: CN=4c07c4b527dfa363b13dc8986a60cb0be45a4774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:59:bd:b8:0a:c7:8d:34:6d:b7:a2:4d:68:b0:
d5:9b:c2:3e:63:44:b4:df:95:ce:f6:0f:af:12:bc:
85:e9:c4:14:89:ca:f7:7f:6f:27:34:98:b0:88:0e:
1c:7a:1d:f3:82:b6:52:d8:09:13:7f:61:99:c8:d5:
75:5c:89:78:59:53:4f:10:90:4f:80:99:09:24:37:
f5:d5:3c:45:fc:10:2c:29:74:8a:61:df:4f:3f:d9:
fb:4d:ba:7e:de:4b:51:f4:51:db:53:f9:11:2f:05:
31:45:0d:0e:5f:72:55:9a:97:bd:4e:59:2e:7e:ad:
35:fd:0c:02:0c:d7:da:b9:f1:29:de:48:72:6c:0a:
e4:96:59:92:36:1f:ca:88:67:59:8b:61:f4:14:3a:
dc:e6:68:3c:54:ff:df:71:f6:68:97:09:5f:d8:5b:
a8:39:1f:c9:c7:8b:95:ab:bd:40:0e:46:ae:08:29:
96:a8:e2:58:d5:4f:15:5f:bb:31:4f:b4:3a:e1:4b:
fd:97:7f:60:93:ed:a9:d6:67:c5:7f:2c:57:f7:e0:
4e:03:8d:34:7e:53:94:fe:ff:21:20:d6:13:ac:c3:
68:12:0f:09:70:d0:f8:1c:4e:d3:f5:29:43:6e:d0:
ef:94:27:74:82:16:ec:21:fe:85:fb:2a:5e:89:5c:
95:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:07:C4:B5:27:DF:A3:63:B1:3D:C8:98:6A:60:CB:0B:E4:5A:47:74
X509v3 Authority Key Identifier:
keyid:C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:20:41:79:78:92:b1:58:72:78:ff:25:53:58:95:88:4a:63:
2d:ec:79:49:57:1d:b7:2a:5b:ad:04:80:1d:70:b5:27:87:af:
63:e2:c4:be:08:fe:90:53:fb:49:1c:1c:e2:a9:7d:eb:d0:e3:
48:c6:08:c2:07:51:89:80:5d:0d:50:18:81:ac:0d:06:01:78:
cd:cd:fa:8c:55:76:73:c1:2b:a9:c7:e9:68:3f:5a:07:a8:c8:
28:bf:39:c2:b1:67:99:84:fe:d7:5a:bb:59:9a:46:a8:b3:a0:
65:05:f6:ad:af:56:fd:fd:3b:56:f7:f3:f7:9f:56:af:76:36:
bc:9c:85:e1:dc:19:bd:ac:0e:2d:df:4c:06:c0:b8:8d:d8:f0:
f0:15:0e:0f:9d:17:e8:67:1f:19:77:6e:c9:cb:10:30:cc:63:
0c:4b:25:59:e0:22:e8:30:b9:3d:e0:f5:5f:76:aa:7e:60:21:
8c:dc:ad:6f:43:6f:47:01:84:3b:aa:bf:45:ad:66:49:2a:e4:
41:14:ca:9e:6c:df:c2:4c:4a:2a:6b:99:48:25:6c:58:b7:70:
e0:fd:f1:45:bd:11:d0:35:40:7e:3f:76:a5:56:de:37:bd:b5:
91:33:61:3e:62:c2:34:80:32:27:21:2c:7b:68:6c:56:eb:92:
a6:ff:d1:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 02:09:23 2025 by rpki-client