Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: YdL8xq54UCIXxi799qAEpt598Ko6pecFy7lYdibfF48=
Subject key identifier: E0:BB:12:5C:0A:95:2F:7D:72:E1:8E:3F:4E:F5:22:D5:F1:68:06:25
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 01974666C32D9A6DAAD8678728C58CE933CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 12BF
Signing time: Fri 06 Jun 2025 18:00:29 +0000
Manifest this update: Fri 06 Jun 2025 18:00:29 +0000
Manifest next update: Sat 07 Jun 2025 18:00:29 +0000
Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: mJ3XDkYqYEbmWp3gSkiz540YGz+HFnf0yMk5LwhLnFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:66:c3:2d:9a:6d:aa:d8:67:87:28:c5:8c:e9:33:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Jun 6 18:00:29 2025 GMT
Not After : Jun 7 18:00:29 2025 GMT
Subject: CN=e0bb125c0a952f7d72e18e3f4ef522d5f1680625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dd:f3:02:a2:98:05:0a:a2:2a:42:86:d4:81:
c2:32:95:90:1a:42:d3:1b:a9:11:45:49:f6:53:0c:
a3:c3:c4:ee:eb:80:d1:bd:06:dc:80:22:d3:49:35:
7d:31:43:fa:6c:92:2c:94:ab:74:9c:fd:54:7d:cc:
dd:51:87:c0:da:1b:93:4e:23:64:0c:71:b9:6b:f5:
b9:22:ea:53:88:0a:e3:ce:be:dc:19:47:41:ae:05:
e2:74:a6:68:ad:dd:ba:2e:94:3b:35:d8:ae:65:d5:
ab:8e:d1:b2:ff:50:e8:ae:48:97:f5:8e:8d:4d:2d:
82:24:74:fa:6e:e4:91:b8:d6:d3:93:9f:e8:e4:13:
a1:23:6a:64:fb:82:e0:17:6f:e9:08:ef:34:69:04:
d6:7e:df:83:24:46:10:e3:2c:69:4e:62:f2:3e:0c:
00:b9:89:64:53:73:3d:fd:38:0b:e2:c8:d1:68:46:
9b:3d:15:e4:fc:de:9c:5c:67:43:a5:37:32:86:b6:
10:81:00:6d:cb:c1:9d:e9:07:77:db:d6:1f:87:92:
89:1f:82:51:ce:78:4c:a5:30:5b:91:a7:b1:ff:af:
b8:b2:99:88:15:00:5a:74:19:08:60:cf:ef:48:03:
55:b5:4e:18:00:04:cf:cb:bc:43:3b:b0:ce:62:ad:
91:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:BB:12:5C:0A:95:2F:7D:72:E1:8E:3F:4E:F5:22:D5:F1:68:06:25
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:60:59:52:b0:9b:35:ee:17:f5:b3:57:2f:0c:71:d2:06:61:
a2:18:0d:db:0c:ae:c1:9d:55:64:f2:cd:61:bf:af:15:72:60:
44:55:86:bf:15:38:37:25:e4:6a:d0:10:69:50:7d:d9:1e:20:
65:12:ac:17:df:9e:db:f6:bd:cc:dc:a1:6c:1b:8a:60:4d:f1:
9a:18:6b:d8:73:88:7c:aa:f4:ff:16:23:02:e0:3b:e6:8f:1a:
3b:a5:5c:b8:9e:da:d4:c1:7c:5a:dd:e5:a0:d1:eb:11:77:83:
e4:f9:fc:00:03:49:a7:10:3c:90:4e:9d:59:52:2f:b7:2c:3e:
9e:58:a1:95:3c:a4:e9:c1:91:a8:e6:62:17:98:8a:8e:ce:09:
a8:37:b5:d0:0d:29:fb:8f:ae:b3:9e:0c:f6:54:23:3c:27:9a:
e2:97:1c:22:83:2b:31:38:07:7c:25:93:a9:9b:9c:9d:ee:49:
09:15:37:bc:de:e2:d6:a6:0c:40:44:6e:d9:1d:53:e9:35:be:
5c:53:6b:c3:15:0b:19:39:5b:cf:90:6e:c0:ba:21:5a:e3:e1:
a9:28:08:a4:32:e9:51:30:36:41:dd:14:6b:58:7d:7b:42:1e:
b3:f1:eb:11:9a:09:b6:cd:5d:1c:eb:97:66:f9:b8:a5:34:81:
d9:53:b1:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGZsMtmm2q2GeHKMWM6TPLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0NzI5YWYxM2QzZDE1NmY0MTE5NzZiMTc2ZTU1NGZhNjcx
ZDc2ZjcwHhcNMjUwNjA2MTgwMDI5WhcNMjUwNjA3MTgwMDI5WjAzMTEwLwYDVQQD
EyhlMGJiMTI1YzBhOTUyZjdkNzJlMThlM2Y0ZWY1MjJkNWYxNjgwNjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp93zAqKYBQqiKkKG1IHCMpWQGkLT
G6kRRUn2Uwyjw8Tu64DRvQbcgCLTSTV9MUP6bJIslKt0nP1UfczdUYfA2huTTiNk
DHG5a/W5IupTiArjzr7cGUdBrgXidKZord26LpQ7NdiuZdWrjtGy/1DorkiX9Y6N
TS2CJHT6buSRuNbTk5/o5BOhI2pk+4LgF2/pCO80aQTWft+DJEYQ4yxpTmLyPgwA
uYlkU3M9/TgL4sjRaEabPRXk/N6cXGdDpTcyhrYQgQBty8Gd6Qd329Yfh5KJH4JR
znhMpTBbkaex/6+4spmIFQBadBkIYM/vSANVtU4YAATPy7xDO7DOYq2RDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOC7ElwKlS99cuGOP071ItXxaAYlMB8GA1UdIwQY
MBaAFMRymvE9PRVvQRl2sXblVPpnHXb3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NWUwNjAtZmEyYS00MDU3LTk1Nzgt
YjA4OThmYmIxY2FiLzEveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC85NWUwNjAtZmEyYS00MDU3LTk1NzgtYjA4OThmYmIxY2Fi
LzEveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmmBZUrCb
Ne4X9bNXLwxx0gZhohgN2wyuwZ1VZPLNYb+vFXJgRFWGvxU4NyXkatAQaVB92R4g
ZRKsF9+e2/a9zNyhbBuKYE3xmhhr2HOIfKr0/xYjAuA75o8aO6VcuJ7a1MF8Wt3l
oNHrEXeD5Pn8AANJpxA8kE6dWVIvtyw+nlihlTyk6cGRqOZiF5iKjs4JqDe10A0p
+4+us54M9lQjPCea4pccIoMrMTgHfCWTqZucne5JCRU3vN7i1qYMQERu2R1T6TW+
XFNrwxULGTlbz5BuwLohWuPhqSgIpDLpUTA2Qd0Ua1h9e0Ies/HrEZoJts1dHOuX
Zvm4pTSB2VOxtg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:24:02 2025 by rpki-client