Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: FypDsfostJSRUYkVo/GfCM+BycHflry5U4Gvd6zIWXs=
Subject key identifier: 8B:5E:10:C9:59:77:C3:4A:01:1B:AD:DA:94:9B:2C:46:BB:07:AB:62
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019769612F820BA7CAC12350DC3308166DB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1520
Signing time: Fri 13 Jun 2025 13:01:06 +0000
Manifest this update: Fri 13 Jun 2025 13:01:06 +0000
Manifest next update: Sat 14 Jun 2025 13:01:06 +0000
Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: wALKBLqpsy6lOZeIIMWN+JnzE3n/j7vcC8Dk3uNAK7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:2f:82:0b:a7:ca:c1:23:50:dc:33:08:16:6d:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Jun 13 13:01:06 2025 GMT
Not After : Jun 14 13:01:06 2025 GMT
Subject: CN=8b5e10c95977c34a011badda949b2c46bb07ab62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:3f:ec:bb:22:45:9d:17:de:f8:80:e2:b9:5e:
b2:e7:42:bf:e7:4c:91:2f:2d:f4:1e:78:bc:89:4e:
96:b5:af:b3:e1:64:e2:bc:d3:c8:63:a4:42:fd:f9:
05:e9:13:63:64:b0:ad:5c:3f:02:b8:bb:dc:5d:9e:
48:7a:8d:dd:21:ea:f9:ce:28:1b:66:d5:bd:1b:2b:
3d:ef:8e:43:93:d8:b3:78:71:33:48:49:d2:98:93:
4f:f0:e4:62:c4:c9:78:e9:fb:fc:19:0e:6e:b5:10:
9f:f2:fa:37:81:78:1b:4c:f0:3e:9c:49:7e:a0:89:
8c:d9:a3:aa:2e:64:16:cf:70:48:c3:04:20:a6:02:
83:33:f1:3d:0b:c9:b4:bd:8a:66:eb:36:06:90:8a:
b6:59:91:c1:6e:9f:8f:e1:3d:cc:b0:60:f2:24:1a:
89:5c:3c:cc:97:99:2c:78:5b:7d:fb:bf:50:87:c2:
f5:16:30:31:70:6a:d2:bf:71:64:49:36:49:8f:ba:
0c:a7:ea:35:16:64:83:f4:b1:17:de:8d:ec:39:2b:
36:34:28:d2:78:21:32:16:84:ae:79:8c:82:bd:e2:
e0:9d:60:78:bb:11:5d:f1:0c:5e:a2:fc:f7:2a:b0:
7c:c2:ed:b3:11:85:40:2f:15:8d:11:66:1d:df:6e:
c2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:5E:10:C9:59:77:C3:4A:01:1B:AD:DA:94:9B:2C:46:BB:07:AB:62
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:21:e4:9b:5a:8d:f1:0c:70:cc:f2:01:15:e2:14:b8:f5:07:
12:40:de:29:35:5b:09:1d:0e:39:ca:75:ba:6b:67:50:48:f4:
f9:9b:03:ea:bc:27:bd:59:48:85:02:f2:8c:aa:00:0b:f1:38:
62:f5:3e:7a:ce:74:38:aa:a0:19:7e:26:0b:2c:b6:72:43:90:
ac:2f:fc:b6:b6:54:51:e6:41:bb:3a:aa:8d:cf:76:8c:f3:84:
e4:5a:ad:76:d6:68:c1:e1:84:f3:23:e0:34:88:ba:bb:c1:ab:
5d:13:70:4a:67:bb:90:05:02:12:24:88:b6:6e:00:aa:8e:23:
b5:9b:33:cc:78:62:80:36:9a:94:51:f1:0b:83:07:1f:f7:38:
41:fa:5f:aa:55:aa:2f:5e:ac:df:93:8b:76:85:90:a9:4b:d8:
a0:cc:5e:b4:61:fb:cc:53:8b:4f:d5:04:21:43:60:d6:17:36:
df:92:68:25:97:f9:73:a6:e0:35:93:a1:a4:d4:aa:ad:a9:d2:
17:ad:de:81:d4:76:5f:f2:26:ce:00:29:2c:d6:c9:ac:44:d4:
52:7f:b8:29:43:6c:62:a3:77:b6:52:32:dd:32:40:3b:0f:7a:
f8:30:eb:b8:df:cb:82:0f:2b:07:81:bf:7b:fb:bc:b2:af:80:
99:b1:66:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 15:00:38 2025 by rpki-client