Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: b35CnAgzZXSbnf1NKqcc/EsNv+ffm6dokSCA/yJ5IMo=
Subject key identifier: A1:BA:EB:90:82:2F:06:02:47:63:B6:86:E0:69:CF:E7:B7:E1:76:8D
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019752340D1ECC150697F6C6BADF9C9F4AD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1514
Signing time: Mon 09 Jun 2025 01:00:32 +0000
Manifest this update: Mon 09 Jun 2025 01:00:32 +0000
Manifest next update: Tue 10 Jun 2025 01:00:32 +0000
Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: YVnnc+Eum1epos73M2SFNO0txfjlWDEOeKrYmSMK0vA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 01:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:34:0d:1e:cc:15:06:97:f6:c6:ba:df:9c:9f:4a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Jun 9 01:00:32 2025 GMT
Not After : Jun 10 01:00:32 2025 GMT
Subject: CN=a1baeb90822f06024763b686e069cfe7b7e1768d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:27:da:87:2a:8a:41:34:3b:57:9d:cd:df:e3:
8c:9b:27:dd:07:85:79:74:05:17:2b:8f:41:03:cc:
7f:10:8b:45:0c:03:d3:bb:f2:38:99:6b:93:a5:07:
d4:2c:f9:7c:7e:fa:62:96:85:f8:33:43:d8:51:45:
35:50:af:30:c9:d1:0c:10:db:34:88:e5:b2:3c:a0:
bf:80:24:ce:a5:08:ff:7f:58:de:97:d5:c2:03:ed:
c1:33:7d:6d:01:05:97:6c:15:cc:d1:9e:f8:a6:fa:
97:0c:1a:b9:e6:c8:c4:f8:84:6b:a5:61:4f:cd:69:
33:25:eb:89:cb:e9:47:8e:1a:0f:41:0d:bc:70:71:
5c:d6:f5:ad:38:19:6b:95:23:e2:96:6d:7f:88:c3:
e2:a5:50:88:a3:da:a1:df:1b:e9:cb:f9:5d:c9:b5:
55:75:95:ca:f0:2d:2f:68:d0:83:50:db:13:49:f1:
6d:db:3b:0d:a0:3e:54:fb:42:2a:03:92:d1:05:c4:
2e:e2:57:83:8c:3d:12:5b:9c:7c:16:fb:84:d8:55:
69:ab:83:1c:b3:12:3e:9c:56:7f:83:80:d3:2b:1e:
76:f6:62:43:48:f2:23:4f:0c:4a:08:b9:30:75:01:
28:12:f1:34:01:83:f6:1f:31:65:87:19:2a:60:e9:
b8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:BA:EB:90:82:2F:06:02:47:63:B6:86:E0:69:CF:E7:B7:E1:76:8D
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:82:e3:07:7c:95:dd:49:1d:fd:94:72:72:49:8a:b9:ab:74:
6b:b9:ea:2f:84:a5:d3:66:24:33:60:3c:1e:c8:fb:1e:8f:1c:
19:de:26:17:de:21:5e:c6:70:f7:e5:d3:b0:be:5a:b2:49:1b:
d5:cc:04:b7:7f:f7:5b:21:9f:97:36:db:d1:e2:a4:87:3a:70:
63:2f:2c:eb:18:50:e0:2b:e1:61:ac:8d:11:0e:60:b4:2b:98:
70:10:5d:56:1f:e0:14:b4:09:7d:45:39:bc:02:ba:01:79:99:
b7:e7:b7:e0:dc:b9:b0:82:a5:6d:87:e0:2e:0f:ee:c0:ca:30:
9e:4c:51:31:8c:e7:84:8b:1a:44:6b:01:89:86:d6:d5:35:94:
9a:4f:08:c6:14:0d:0f:06:b3:7d:7c:00:22:25:ea:81:48:91:
05:63:c2:10:38:4f:04:c5:ab:4e:5b:0d:3c:d8:26:5c:c7:55:
7b:64:2c:05:4f:1e:0d:cc:53:13:59:92:db:a7:b2:ee:d1:f9:
c5:53:94:ad:53:a1:d1:df:7c:b8:76:0e:61:95:36:13:4f:97:
fc:63:23:04:c1:be:0e:cf:d3:56:49:57:79:47:6e:37:cc:b4:
d6:84:b5:00:7a:e1:53:3f:65:69:80:75:e1:d3:41:8f:c3:19:
27:eb:cb:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 11:31:15 2025 by rpki-client