Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
File: xafD9LFGk1EiAllaik-VsNa3oQE.mft (raw, json)
Hash identifier: 8fP8F+M4UWiRf588kLtA5SIFodSz0BuITe+7nFDiQo8=
Subject key identifier: 67:E5:E0:9B:B7:74:4C:24:AF:E2:92:F8:AE:2A:FB:F3:99:76:85:11
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 01974BFB49E5C9B1A144200BD80F2233AE65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
Manifest number: 1511
Signing time: Sat 07 Jun 2025 20:00:49 +0000
Manifest this update: Sat 07 Jun 2025 20:00:49 +0000
Manifest next update: Sun 08 Jun 2025 20:00:49 +0000
Files and hashes: 1: Bbxo5GOkMtBPV4eyDiJBtgGCAvs.roa (hash: gPTOZ/QwaGNzYqcGskaYm0Q9CUgsB/kmTCxE6lNVoV8=)
2: GkWtiMh4Kekgq83feCXLfv_pub8.roa (hash: UboiG7GPy5Vm4OyfuuuEVh7hhcZoHsmQQgbXPLJ/4ug=)
3: ScP8kW7fVZKKIlJqtoPhrGG1uQo.roa (hash: kBK8cN2i6ByxK8RJnTQxES9FzgvOd8FoOcnJVY/e4Bc=)
4: xafD9LFGk1EiAllaik-VsNa3oQE.crl (hash: 6rAw7rhW+DNDuj7aB6WHSncMcaytHCqFA1rf72IFMA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:49:e5:c9:b1:a1:44:20:0b:d8:0f:22:33:ae:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: Jun 7 20:00:49 2025 GMT
Not After : Jun 8 20:00:49 2025 GMT
Subject: CN=67e5e09bb7744c24afe292f8ae2afbf399768511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a1:cc:5e:84:27:5a:e8:a3:e2:16:29:76:e8:
19:c0:00:8c:b8:7d:a8:38:3b:f3:4a:88:6e:f5:b3:
b1:ba:f4:2b:f2:e4:b0:d5:c6:c1:aa:3e:7c:7f:98:
37:7b:3a:a5:12:ba:05:3e:9d:e7:ec:e2:de:ae:18:
e0:4b:15:42:1a:79:79:2c:d7:98:24:5f:be:22:d7:
3d:02:f7:1a:dd:23:9d:ef:90:89:c2:30:e6:7a:4b:
e1:d4:f4:8a:4c:22:9c:dd:59:a1:5c:7d:59:f6:9e:
66:81:43:4b:69:86:0b:1f:7a:9a:59:17:b6:7f:51:
cc:91:82:56:ff:7b:0d:1f:f3:d5:74:f8:1c:bb:51:
48:4f:20:1d:56:de:c1:23:8b:41:bc:0b:f4:bc:28:
32:8e:da:40:f9:f9:64:94:8e:7d:ca:7e:17:32:1b:
4b:9c:8e:c1:af:b1:5e:37:d1:4c:21:3b:df:dd:28:
88:5f:cf:a0:e4:be:0b:1f:4f:36:7d:4f:1b:49:31:
d0:17:57:6d:3f:19:6e:14:db:85:d5:79:1b:ef:33:
f5:f9:de:df:29:3c:e9:01:15:a1:8e:2d:bf:b2:fc:
71:c4:25:14:d1:cb:63:f3:67:64:5f:67:5c:61:f3:
b8:a3:ce:ad:93:97:59:9a:aa:f4:39:ba:e8:5b:7a:
cc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E5:E0:9B:B7:74:4C:24:AF:E2:92:F8:AE:2A:FB:F3:99:76:85:11
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:2e:5b:16:86:bc:93:00:89:2f:d2:7c:53:8b:22:2e:07:3a:
b8:10:67:52:18:5d:68:49:be:f0:13:00:c7:69:3f:da:e3:bd:
8f:bc:b3:7d:81:b5:24:7c:45:77:cf:f4:ac:5f:3c:03:cf:e0:
02:45:d9:35:86:c0:ea:a3:07:de:09:bc:14:b2:d6:b3:24:86:
1d:a9:ad:4f:4d:d6:4e:f4:41:f5:ec:3f:da:c4:2d:c4:8f:92:
7b:a1:d2:5a:0d:2f:fb:68:07:8f:8c:74:ed:f6:a9:1b:6f:de:
09:c7:c1:5c:ac:36:c8:10:3e:a0:7e:5d:24:8b:4b:37:57:90:
58:fa:88:1a:28:57:12:c6:be:16:57:36:37:8d:b2:2f:71:6b:
bd:50:d5:f3:71:90:50:de:3b:71:44:cf:fa:d5:a0:25:54:1c:
0c:cb:14:ac:fa:ab:4d:65:d6:2e:df:17:98:c4:33:73:27:ac:
bc:fa:5f:39:9a:e3:10:5d:49:f2:f6:d2:c1:51:ed:fc:3c:07:
1b:c4:df:4b:48:fd:f8:9f:de:e6:ea:5d:87:30:69:19:2a:5b:
81:e0:b8:80:16:95:c4:ee:a7:e7:72:bd:ee:e1:fd:b3:0e:c2:
11:55:7a:cc:10:ff:5f:87:3d:8a:f3:7c:d8:1b:f6:14:0a:b5:
f2:e1:7e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 01:52:08 2025 by rpki-client