Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
File: xdXOafzPDGu44rJmfh44-5QPPSY.mft (raw, json)
Hash identifier: 3Ns0eaaMVcSjK4Wq5vv28sJy9nk8tki6rkUnfdbqQW8=
Subject key identifier: 71:DE:A0:38:86:51:9B:EF:80:3A:09:83:72:92:CD:5D:C6:32:0D:5F
Authority key identifier: C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
Certificate issuer: /CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Certificate serial: 01974DEA112A8BB4FCA34681B82565611F6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
Manifest number: 09EA
Signing time: Sun 08 Jun 2025 05:01:14 +0000
Manifest this update: Sun 08 Jun 2025 05:01:14 +0000
Manifest next update: Mon 09 Jun 2025 05:01:14 +0000
Files and hashes: 1: 6dkBUwL-mhaODMyRqo4g1V5Aqm0.roa (hash: Qmi5vwRBC8G/em6HsgOnkDIH/4egeMg5iAbwYtXG1+s=)
2: xdXOafzPDGu44rJmfh44-5QPPSY.crl (hash: IQOHTvcSTqZtRpki0Qj8kpH2aTz6iNs5+sqtBsFejig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 05:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:ea:11:2a:8b:b4:fc:a3:46:81:b8:25:65:61:1f:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Validity
Not Before: Jun 8 05:01:14 2025 GMT
Not After : Jun 9 05:01:14 2025 GMT
Subject: CN=71dea03886519bef803a09837292cd5dc6320d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7f:5f:d1:48:06:bf:e9:46:28:5c:34:63:52:
ab:7b:6a:49:9c:ce:76:bb:20:70:6f:65:f7:4b:e5:
96:39:3f:8e:76:9e:e7:ea:f4:75:62:7e:7b:d4:59:
da:4b:da:3b:c7:dc:99:ee:ef:58:0b:43:a9:15:73:
34:eb:40:be:e6:c1:73:5d:7e:d9:14:a7:12:09:47:
da:f7:0a:9a:38:8c:ff:da:9e:19:64:7d:fc:a2:b7:
b2:d1:4f:f8:a8:aa:78:64:03:35:df:d7:23:5d:6b:
c5:17:1c:e8:6b:f7:5e:12:90:24:05:e1:4b:73:36:
48:4a:0b:9c:91:a6:3b:fe:06:2a:91:ac:7e:03:5a:
4c:9c:f1:14:9e:d4:67:8d:b5:34:bb:1c:8a:13:45:
1e:6f:cf:71:fc:bf:d5:1b:51:eb:a8:96:7f:81:a3:
e8:c6:da:14:e9:1c:d9:11:a5:1f:8b:75:da:b2:51:
ab:b8:73:09:4c:63:90:eb:17:ed:d1:28:db:18:3b:
6a:71:35:c8:e7:fd:fe:31:6d:ec:cb:b9:8f:35:0b:
d5:ce:a1:78:c5:04:40:af:5a:e5:b5:39:4e:41:5a:
49:70:70:7b:9e:2b:21:12:12:06:af:14:37:00:c2:
c4:dc:93:57:ad:5a:95:0c:9b:20:1b:8c:de:5f:ff:
57:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:DE:A0:38:86:51:9B:EF:80:3A:09:83:72:92:CD:5D:C6:32:0D:5F
X509v3 Authority Key Identifier:
keyid:C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:39:27:b0:de:1b:e1:e1:5d:7e:89:61:dd:36:fe:e3:b2:02:
d9:7e:80:ae:4e:16:2e:55:bd:d0:87:04:c7:7c:26:62:fa:20:
1c:4d:20:50:55:aa:84:fb:39:b7:28:1a:7e:b4:5a:8c:15:be:
94:14:41:30:ff:1f:d5:d3:2a:04:d0:02:cf:3d:76:42:9b:11:
ff:be:5a:7d:2f:a9:82:51:d0:53:2b:03:f3:34:3e:a1:d9:46:
06:ce:c0:8c:cc:cd:90:b6:62:e2:d2:41:d3:fd:f1:31:b8:57:
ab:e8:fb:71:a8:f3:be:c2:5d:8a:21:0b:e0:48:f0:df:d3:e4:
a4:d4:36:2b:8a:9d:56:81:71:ec:d3:db:ab:c8:32:da:63:6a:
48:55:7b:92:28:c0:6a:4c:e3:62:66:5f:cf:e4:3d:d3:a2:c7:
7e:a0:e9:35:f2:1d:11:cc:e9:60:ed:63:bd:87:b6:16:2e:f7:
bb:fb:33:0c:02:79:3f:05:c9:d1:e5:55:0a:c3:bb:c2:17:91:
8a:d5:5d:95:8a:3d:f7:ce:70:0f:e7:cb:86:3e:5c:c6:ce:81:
2e:33:6b:a3:9f:76:bb:ed:59:d6:c4:90:5c:1a:f4:d6:52:d2:
54:67:cf:ad:c9:02:59:95:98:3f:4e:93:b5:e0:25:4a:81:00:
d3:ef:63:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdN6hEqi7T8o0aBuCVlYR9sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1ZDVjZTY5ZmNjZjBjNmJiOGUyYjI2NjdlMWUzOGZiOTQw
ZjNkMjYwHhcNMjUwNjA4MDUwMTE0WhcNMjUwNjA5MDUwMTE0WjAzMTEwLwYDVQQD
Eyg3MWRlYTAzODg2NTE5YmVmODAzYTA5ODM3MjkyY2Q1ZGM2MzIwZDVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArX9f0UgGv+lGKFw0Y1Kre2pJnM52
uyBwb2X3S+WWOT+Odp7n6vR1Yn571FnaS9o7x9yZ7u9YC0OpFXM060C+5sFzXX7Z
FKcSCUfa9wqaOIz/2p4ZZH38orey0U/4qKp4ZAM139cjXWvFFxzoa/deEpAkBeFL
czZISguckaY7/gYqkax+A1pMnPEUntRnjbU0uxyKE0Ueb89x/L/VG1HrqJZ/gaPo
xtoU6RzZEaUfi3XaslGruHMJTGOQ6xft0SjbGDtqcTXI5/3+MW3sy7mPNQvVzqF4
xQRAr1rltTlOQVpJcHB7nishEhIGrxQ3AMLE3JNXrVqVDJsgG4zeX/9XqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHHeoDiGUZvvgDoJg3KSzV3GMg1fMB8GA1UdIwQY
MBaAFMXVzmn8zwxruOKyZn4eOPuUDz0mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hMjgyY2QtZWUzMC00OWMzLTljOWUt
NDcxZGI3ZWI3MTllLzEveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9hMjgyY2QtZWUzMC00OWMzLTljOWUtNDcxZGI3ZWI3MTll
LzEveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATTknsN4b
4eFdfolh3Tb+47IC2X6Ark4WLlW90IcEx3wmYvogHE0gUFWqhPs5tygafrRajBW+
lBRBMP8f1dMqBNACzz12QpsR/75afS+pglHQUysD8zQ+odlGBs7AjMzNkLZi4tJB
0/3xMbhXq+j7cajzvsJdiiEL4Ejw39PkpNQ2K4qdVoFx7NPbq8gy2mNqSFV7kijA
akzjYmZfz+Q906LHfqDpNfIdEczpYO1jvYe2Fi73u/szDAJ5PwXJ0eVVCsO7wheR
itVdlYo9985wD+fLhj5cxs6BLjNro592u+1Z1sSQXBr01lLSVGfPrckCWZWYP06T
teAlSoEA0+9jhA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 16:00:02 2025 by rpki-client