Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
File: xcSzrlnZgfJQzIfatZeFSr7XowA.mft (raw, json)
Hash identifier: Ga+chdah+LjIm4DXqqsn7wmoj3Pi8I77WkjlVZ+gozE=
Subject key identifier: FD:A2:5B:AD:27:B7:C4:39:E6:B5:EE:9A:3D:F7:44:17:52:A2:CE:0E
Authority key identifier: C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
Certificate issuer: /CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Certificate serial: 019748FA18A776BB5CCB35D0AF55A30B4AA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
Manifest number: 0495
Signing time: Sat 07 Jun 2025 06:00:39 +0000
Manifest this update: Sat 07 Jun 2025 06:00:39 +0000
Manifest next update: Sun 08 Jun 2025 06:00:39 +0000
Files and hashes: 1: tSYSYm63yj3qobuZYMSr1LAsH4E.roa (hash: e9vbUkUz5x9f5ya8J4QgHE0l9ibgPIgGHQ86whMQdU8=)
2: xcSzrlnZgfJQzIfatZeFSr7XowA.crl (hash: /VM3jMEA2RyM4ENDfJJ/rnQ3ixTutT0bRZmzdFns9qY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:18:a7:76:bb:5c:cb:35:d0:af:55:a3:0b:4a:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Validity
Not Before: Jun 7 06:00:39 2025 GMT
Not After : Jun 8 06:00:39 2025 GMT
Subject: CN=fda25bad27b7c439e6b5ee9a3df7441752a2ce0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3f:54:fa:0a:7d:b6:32:bf:bf:a4:ef:83:e8:
91:1e:ae:b0:40:ee:46:33:04:93:b1:c0:7e:79:18:
50:8e:99:fe:6c:80:0a:b2:75:e9:21:37:fc:59:96:
6a:be:9c:ae:53:17:d0:d8:b5:93:46:1b:21:b9:4e:
ed:03:8c:d5:63:c7:75:32:25:29:e0:8a:09:1e:8b:
c6:9b:2b:90:d4:ae:a6:02:33:fa:13:12:87:30:db:
0f:57:8b:52:32:4a:88:51:92:ad:d2:9a:b6:66:d5:
48:6c:fb:86:2d:20:c3:29:b2:a0:1d:c6:7c:06:0b:
5e:16:f2:25:16:da:06:45:43:9e:82:ee:bd:1b:b2:
42:76:0f:63:aa:93:c7:15:4f:a7:ca:c2:93:a8:71:
c5:fb:61:91:1e:8f:34:c0:c1:2a:ca:c4:da:51:53:
ae:a3:f4:03:25:82:1e:c8:4f:35:e3:48:e6:3e:db:
64:c8:9c:1c:1f:a5:2b:c3:a7:67:01:a5:cd:03:ff:
1f:3b:c1:27:3f:86:04:14:ca:48:76:70:f6:b9:ea:
61:ed:13:c8:8d:07:0b:f1:aa:88:46:0a:86:9c:b8:
a7:a2:b5:c5:1e:ef:8f:c8:64:a0:6a:09:e0:3d:59:
01:01:0a:3a:48:a8:52:e8:af:34:37:59:5d:d2:b2:
59:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A2:5B:AD:27:B7:C4:39:E6:B5:EE:9A:3D:F7:44:17:52:A2:CE:0E
X509v3 Authority Key Identifier:
keyid:C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:f3:bb:95:f6:19:d2:d2:8f:b5:c1:a8:3d:2c:94:f0:6a:35:
07:61:95:d5:fc:d3:ae:0f:eb:6c:98:bb:a7:f6:f1:e8:71:11:
8a:4f:29:73:fb:ef:5f:3a:4e:67:f9:bc:b7:2d:54:6c:fa:05:
36:c4:22:54:46:12:b3:a0:a1:f1:61:a0:04:7d:c5:27:45:1c:
f2:be:fb:8e:54:1d:90:a2:bd:75:4b:0b:56:d3:8e:9d:da:ec:
c0:8f:42:10:bb:c1:13:b7:b0:a3:9e:e3:df:1a:3f:a0:64:d6:
be:72:82:e2:8d:7c:c2:e0:83:f3:59:73:61:7b:00:53:30:3d:
3d:4e:08:0d:25:b4:d6:aa:a3:2b:85:6c:4f:0a:90:c8:15:fd:
d9:71:67:53:56:8a:05:e3:57:88:5d:c8:de:87:b4:2b:33:0c:
84:6e:77:17:46:dc:9b:d8:b5:64:c8:38:45:3c:6d:72:a3:83:
61:7a:3b:f2:1b:c1:1e:b1:88:da:f0:67:69:c9:a0:41:8d:30:
e5:9e:73:1d:fd:72:8a:73:3b:f3:4c:73:5d:8f:a8:8c:1c:4f:
98:c1:c7:b3:70:f5:cb:aa:94:3c:7f:5a:80:52:29:b6:e0:7c:
ae:68:64:92:f9:45:43:31:77:34:21:3b:fd:3f:4c:78:fd:d6:
41:57:1c:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:47:02 2025 by rpki-client