Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft
File: XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft (raw, json)
Hash identifier: +UG+EkQAoEWaRUVkQucYbgZwIIUE2oRhuz4Qz0MttYk=
Subject key identifier: 34:E4:F8:84:95:83:03:80:E7:39:5F:30:6B:60:24:8C:55:54:7C:48
Authority key identifier: 5E:A6:8C:85:38:10:D0:32:0B:15:68:44:F2:93:17:70:1B:58:61:0D
Certificate issuer: /CN=5ea68c853810d0320b156844f29317701b58610d
Certificate serial: 01974AE8FD9CCE9E156C2ABF4E8BF615EF41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft
Manifest number: 09BB
Signing time: Sat 07 Jun 2025 15:01:12 +0000
Manifest this update: Sat 07 Jun 2025 15:01:12 +0000
Manifest next update: Sun 08 Jun 2025 15:01:12 +0000
Files and hashes: 1: XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl (hash: tRB7aLjsmMf/WDO3DPQ0iaPMQBsHQ5/Sa5SH08twcMk=)
2: zWctF490hB_hw_nmdFUFC_bPmMM.roa (hash: SsIXLaayVDdukX1So7HtLQgGu/7qBD8U27FPnJFIDDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:fd:9c:ce:9e:15:6c:2a:bf:4e:8b:f6:15:ef:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ea68c853810d0320b156844f29317701b58610d
Validity
Not Before: Jun 7 15:01:12 2025 GMT
Not After : Jun 8 15:01:12 2025 GMT
Subject: CN=34e4f88495830380e7395f306b60248c55547c48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7f:ce:0d:5a:f8:9e:6f:83:86:c4:62:8f:30:
a6:04:bb:f9:fd:8e:6a:f2:65:55:03:60:36:c6:da:
33:d3:27:0e:2e:be:e2:d9:67:9e:2c:a5:2e:a9:aa:
dc:fa:45:b8:05:fa:90:c0:b8:ba:cb:1d:bc:d0:42:
7e:7d:52:76:0b:93:cb:9d:f7:12:6e:20:c5:a0:36:
3f:01:2b:c4:0c:63:26:20:ab:32:93:b6:9a:24:da:
0c:f9:02:e1:f7:ca:9c:fd:40:a8:11:67:f8:2c:30:
0f:6b:18:19:10:a8:bd:b3:9e:70:7e:45:ea:b6:5f:
67:20:9f:9e:5f:fc:6d:c7:79:1c:4b:85:a0:5e:b8:
74:e6:34:62:83:4d:d6:f7:ce:93:27:1d:d1:94:18:
6d:39:4f:43:49:6d:68:b8:ad:5b:e0:6e:16:0f:3f:
e9:8a:36:70:d4:42:6e:bb:19:ba:0b:1f:e6:5f:b9:
c7:df:7f:a7:e7:80:72:29:c0:f7:4b:9b:3e:01:47:
dd:74:11:f5:c8:52:bb:d0:0b:86:4c:62:ad:fe:ae:
f7:a6:f6:aa:f6:57:35:7e:57:4c:7b:c5:48:17:c6:
94:32:d8:dc:b4:e4:d7:2a:8f:48:8c:6a:ef:54:81:
c8:2a:7a:54:b9:20:cb:f8:b0:50:ee:cd:e4:14:c5:
c2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E4:F8:84:95:83:03:80:E7:39:5F:30:6B:60:24:8C:55:54:7C:48
X509v3 Authority Key Identifier:
keyid:5E:A6:8C:85:38:10:D0:32:0B:15:68:44:F2:93:17:70:1B:58:61:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:0f:c9:88:83:16:17:f3:1b:58:9f:a9:92:9d:83:2a:b2:48:
06:30:43:14:03:39:42:96:d6:9d:ae:2f:4e:df:ea:63:13:ec:
35:b6:23:0d:5b:25:80:a1:9c:60:5e:64:87:a7:37:86:e2:55:
02:0f:16:f9:05:65:99:c2:73:45:53:ad:51:e5:58:f1:db:ab:
21:7f:8d:f2:fa:d6:2f:6a:a3:9b:5d:7d:20:16:96:dc:8c:29:
f8:bd:7b:4b:ca:08:33:c4:22:c2:9d:f4:fd:4f:c7:dc:26:ee:
fe:54:d5:42:6a:83:6b:dd:38:6a:47:f2:3a:66:ae:a3:00:c4:
8a:cc:10:a3:82:e9:fd:21:ce:23:20:ce:91:14:1b:d2:0a:c7:
df:1f:37:a3:3b:fa:6e:73:74:f7:cc:c4:39:78:53:73:95:65:
f2:20:39:22:69:d0:c9:7c:94:9b:8e:2c:7e:c0:05:01:0c:47:
76:63:44:27:e8:34:d6:9c:8d:69:ff:16:9a:70:ae:99:b3:3b:
ad:e5:d9:c4:28:4b:00:59:8a:3e:c9:81:fe:f4:4d:95:87:81:
65:22:5e:e2:fb:9f:63:17:7b:13:dc:b2:04:7b:2d:f3:48:c0:
ad:7e:ab:58:09:1a:5f:8b:73:be:c7:a3:04:0b:47:55:05:7e:
7e:50:76:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6P2czp4VbCq/Tov2Fe9BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlYTY4Yzg1MzgxMGQwMzIwYjE1Njg0NGYyOTMxNzcwMWI1
ODYxMGQwHhcNMjUwNjA3MTUwMTEyWhcNMjUwNjA4MTUwMTEyWjAzMTEwLwYDVQQD
EygzNGU0Zjg4NDk1ODMwMzgwZTczOTVmMzA2YjYwMjQ4YzU1NTQ3YzQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvH/ODVr4nm+DhsRijzCmBLv5/Y5q
8mVVA2A2xtoz0ycOLr7i2WeeLKUuqarc+kW4BfqQwLi6yx280EJ+fVJ2C5PLnfcS
biDFoDY/ASvEDGMmIKsyk7aaJNoM+QLh98qc/UCoEWf4LDAPaxgZEKi9s55wfkXq
tl9nIJ+eX/xtx3kcS4WgXrh05jRig03W986TJx3RlBhtOU9DSW1ouK1b4G4WDz/p
ijZw1EJuuxm6Cx/mX7nH33+n54ByKcD3S5s+AUfddBH1yFK70AuGTGKt/q73pvaq
9lc1fldMe8VIF8aUMtjctOTXKo9IjGrvVIHIKnpUuSDL+LBQ7s3kFMXC1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDTk+ISVgwOA5zlfMGtgJIxVVHxIMB8GA1UdIwQY
MBaAFF6mjIU4ENAyCxVoRPKTF3AbWGENMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHFhTWhUZ1EwRElMRldoRThwTVhjQnRZWVEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8zZTIzZDctYTNiNy00MTZmLTg4MTAt
MWVmYTdjZjc3M2EwLzEvWHFhTWhUZ1EwRElMRldoRThwTVhjQnRZWVEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8zZTIzZDctYTNiNy00MTZmLTg4MTAtMWVmYTdjZjc3M2Ew
LzEvWHFhTWhUZ1EwRElMRldoRThwTVhjQnRZWVEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUQ/JiIMW
F/MbWJ+pkp2DKrJIBjBDFAM5QpbWna4vTt/qYxPsNbYjDVslgKGcYF5kh6c3huJV
Ag8W+QVlmcJzRVOtUeVY8durIX+N8vrWL2qjm119IBaW3Iwp+L17S8oIM8Qiwp30
/U/H3Cbu/lTVQmqDa904akfyOmauowDEiswQo4Lp/SHOIyDOkRQb0grH3x83ozv6
bnN098zEOXhTc5Vl8iA5ImnQyXyUm44sfsAFAQxHdmNEJ+g01pyNaf8WmnCumbM7
reXZxChLAFmKPsmB/vRNlYeBZSJe4vufYxd7E9yyBHst80jArX6rWAkaX4tzvsej
BAtHVQV+flB2GQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:53:32 2025 by rpki-client