
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: JA2WHYO0fPbqqJ4iltI3/ceNHTOxoSaJIGcs3pPztS8=
Subject key identifier: 54:AC:1D:A1:77:6C:C5:BD:A2:57:73:8E:C9:E4:B5:A9:16:5D:23:47
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 0197C8039FE0002AFFBC358B900C99E303A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1551
Signing time: Tue 01 Jul 2025 22:02:50 +0000
Manifest this update: Tue 01 Jul 2025 22:02:50 +0000
Manifest next update: Wed 02 Jul 2025 22:02:50 +0000
Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: 2tBJzoNIhKz/xau1cYXU9hHxsMAbvRXt3YxM/ERV4Uc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c8:03:9f:e0:00:2a:ff:bc:35:8b:90:0c:99:e3:03:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Jul 1 22:02:50 2025 GMT
Not After : Jul 2 22:02:50 2025 GMT
Subject: CN=54ac1da1776cc5bda257738ec9e4b5a9165d2347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:be:8e:32:14:94:65:d3:00:bf:47:1a:da:c9:
ba:f7:f6:56:96:4c:10:91:88:0b:91:d1:22:e5:32:
c5:5d:f0:a5:80:60:c2:c7:d7:4d:1b:6c:d5:80:ec:
f3:4c:47:d3:fa:53:09:65:38:9d:e7:4e:f9:dd:58:
40:13:79:98:05:56:8c:50:d2:77:4f:25:17:cd:db:
af:cd:cd:0d:24:87:51:ee:88:f9:b5:47:f4:aa:26:
59:89:1e:75:a5:f5:79:31:0e:7f:25:77:9a:74:85:
74:c8:59:1e:91:8e:c2:be:9d:ff:6d:2e:f3:7a:df:
0c:23:82:56:ae:1f:7a:19:d6:96:c6:df:76:5e:cc:
54:ce:6a:61:99:6b:09:ca:b3:70:42:a9:cb:d1:81:
64:73:0c:aa:48:40:79:7c:ef:f9:81:0e:74:73:bc:
67:d3:fb:f1:9e:f6:9c:63:fb:92:90:37:58:63:da:
9d:37:9e:19:07:f8:b8:38:7b:5d:62:78:9d:e1:af:
ab:33:c7:6c:dd:1b:4e:e0:c2:f1:b9:c5:06:9d:4d:
44:fb:53:71:0e:58:89:5b:f9:a0:b8:71:b8:71:09:
c3:f9:96:50:ae:ad:ed:d3:98:53:77:0f:7f:b6:26:
72:cc:53:7c:68:e1:7f:fd:5b:72:fb:1f:60:f8:71:
de:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:AC:1D:A1:77:6C:C5:BD:A2:57:73:8E:C9:E4:B5:A9:16:5D:23:47
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:88:1a:2c:34:fc:9f:08:03:c6:83:11:ff:c8:bc:44:d0:68:
e2:7a:7e:7f:d5:00:9f:c2:b8:a2:bc:37:97:b7:18:d7:14:56:
f3:ae:42:12:d0:fe:33:b4:af:87:d7:2f:0b:3a:ea:81:3e:3c:
55:4d:69:ab:d9:3c:ef:18:ab:51:f1:08:a8:f8:4b:c4:54:8f:
80:1f:68:e8:42:bb:2f:09:0c:39:24:ed:d1:13:61:c0:cc:49:
f5:5c:31:6e:f7:37:81:ca:cc:64:e6:bd:ed:c6:70:61:88:31:
47:d5:99:75:04:28:72:c0:56:1e:ae:2f:3d:ac:25:67:6e:ac:
97:09:0c:fc:16:75:83:92:42:ec:00:88:e2:0b:52:77:d7:7f:
9d:a6:39:1a:92:62:fa:98:77:23:66:aa:26:a5:1a:38:20:45:
ae:ed:12:32:3e:63:0f:f3:ca:62:ac:dd:cb:da:18:07:e3:19:
5b:db:2d:c4:60:6e:23:cd:22:d4:b1:b4:42:13:24:33:41:d4:
a0:91:9e:a5:90:f6:4a:f0:f3:03:e5:9c:1c:f9:38:98:d9:5b:
eb:a7:76:e8:4d:b0:c5:8b:f6:97:ee:ad:5e:c0:0f:e3:6a:ef:
c2:ef:31:24:9a:eb:b7:4b:30:15:32:de:84:cf:bc:2b:23:9e:
13:18:41:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 01:45:08 2025 by rpki-client