
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
File: xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft (raw, json)
Hash identifier: 7GX7UhdGuEwkzFRwEioA4YeQxOeAYGcVsgjy01p1BmA=
Subject key identifier: 58:8F:13:83:DC:D9:EA:25:B7:65:CB:B3:47:E6:98:29:A6:5C:A2:D5
Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
Certificate issuer: /CN=c613276cbca6793c33457a9bf22fc10b382301f4
Certificate serial: 01975BA530068235E3713165D1B597EE7F9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
Manifest number: 1588
Signing time: Tue 10 Jun 2025 21:00:41 +0000
Manifest this update: Tue 10 Jun 2025 21:00:41 +0000
Manifest next update: Wed 11 Jun 2025 21:00:41 +0000
Files and hashes: 1: b9YzzhOPHDVo_soINWMmjLB7fhk.roa (hash: lwz89foq6Y4dt/R5BV0uIhhLjFL2sOp+mEH46qLg0yk=)
2: xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl (hash: Ku2rxC/2ptY8rAHP1Mf22tz399Da6WXUvoBGkueioe0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:a5:30:06:82:35:e3:71:31:65:d1:b5:97:ee:7f:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4
Validity
Not Before: Jun 10 21:00:41 2025 GMT
Not After : Jun 11 21:00:41 2025 GMT
Subject: CN=588f1383dcd9ea25b765cbb347e69829a65ca2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:94:6c:61:3e:5b:0e:a2:de:83:4d:73:1a:d9:
bb:f2:77:1d:6a:6f:73:e4:7b:06:28:11:e4:c4:99:
3e:76:73:e8:dd:bd:e1:34:af:c6:c2:eb:72:3e:f2:
49:68:9c:91:b5:73:e7:12:0b:6c:12:b2:bc:8b:2f:
bb:55:d5:e9:4a:3f:84:d0:4e:18:27:69:ab:ed:21:
20:9e:82:be:43:f9:eb:6a:ae:bc:93:f5:9e:ec:5b:
2b:dc:ca:d7:0c:1c:c6:21:6f:a4:ac:a1:4f:8a:72:
92:58:17:69:d3:5e:ee:4e:c1:fc:fb:61:d8:42:df:
95:81:93:f9:e3:1b:2c:c6:fd:5c:62:66:f0:34:94:
b6:0a:c8:35:66:56:2e:fe:61:30:41:e5:18:35:6e:
a4:00:f4:0f:51:9b:fa:18:4e:e4:0a:9f:b7:e6:7b:
98:32:cb:1c:94:8a:05:06:1c:ef:19:fd:86:b5:db:
db:07:98:17:3a:9d:41:7e:cc:5e:d4:7f:f0:c7:96:
ef:88:91:d3:85:b8:24:75:35:59:e2:79:36:2e:14:
c3:90:3c:33:19:ea:dc:6c:b7:9b:bd:1b:c4:7f:60:
77:38:f8:78:f4:c6:0f:bb:f5:67:9c:49:70:30:0b:
30:85:42:a5:c9:45:7b:b9:87:d8:92:5b:f4:b8:35:
d5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8F:13:83:DC:D9:EA:25:B7:65:CB:B3:47:E6:98:29:A6:5C:A2:D5
X509v3 Authority Key Identifier:
keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:f8:5e:0b:ae:b4:5d:e7:ee:f6:2f:00:d9:99:be:62:87:18:
fe:5e:d8:0a:7a:fd:e1:a6:c3:f1:c1:34:2e:60:e8:f9:c2:2d:
92:95:26:41:b7:21:93:ca:91:1e:a2:c4:cb:13:5b:63:2b:9f:
25:14:dc:cb:1c:3f:f2:b7:17:d8:a3:ff:49:5a:a7:c3:21:7e:
dc:f8:21:a4:90:f0:35:89:9d:0d:99:a8:15:3d:e0:c7:e5:87:
4d:18:a5:35:46:a2:6e:48:32:b1:72:2f:2b:a9:38:23:60:54:
ee:ec:5f:0f:70:8e:2c:52:cd:62:17:f6:44:4e:04:b9:3d:cc:
90:4d:09:e5:dc:64:e8:7d:88:d3:ca:1b:3a:bc:28:7c:59:4b:
21:a0:10:9d:9f:84:8a:8d:4f:2d:f7:a5:90:e6:3e:02:b7:11:
7f:64:f8:db:89:a2:78:15:3b:2e:72:3a:c3:66:61:62:d4:24:
70:0c:9a:ba:1c:9f:23:13:84:ac:5b:ad:13:2b:1a:3c:d8:e7:
08:79:3e:73:c5:57:b0:e1:2e:14:cc:f2:d6:12:58:30:96:0f:
01:9b:ca:60:ae:43:01:38:66:46:55:a3:17:97:8a:61:bb:1b:
04:52:b7:27:60:42:f2:da:d3:c7:59:f3:f4:4a:5d:a6:2e:4e:
58:ca:6c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 03:05:03 2025 by rpki-client