
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
File: xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft (raw, json)
Hash identifier: Dq2L84AkP1aZayqWvP622lbKsP0GA06frpi/dq3o/8w=
Subject key identifier: 42:FD:FA:73:54:DD:98:6C:F0:5D:25:D8:19:D8:EE:2C:DB:F9:8C:7F
Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
Certificate issuer: /CN=c613276cbca6793c33457a9bf22fc10b382301f4
Certificate serial: 01976EF527595B6E13FB43431CDBB2113D85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
Manifest number: 1592
Signing time: Sat 14 Jun 2025 15:00:49 +0000
Manifest this update: Sat 14 Jun 2025 15:00:49 +0000
Manifest next update: Sun 15 Jun 2025 15:00:49 +0000
Files and hashes: 1: b9YzzhOPHDVo_soINWMmjLB7fhk.roa (hash: lwz89foq6Y4dt/R5BV0uIhhLjFL2sOp+mEH46qLg0yk=)
2: xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl (hash: a8+c0jHuv28f1CtFCqNVYTroCOr7qDSr2SIVWSEpngI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f5:27:59:5b:6e:13:fb:43:43:1c:db:b2:11:3d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4
Validity
Not Before: Jun 14 15:00:49 2025 GMT
Not After : Jun 15 15:00:49 2025 GMT
Subject: CN=42fdfa7354dd986cf05d25d819d8ee2cdbf98c7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:38:25:5a:36:ee:88:bb:91:be:35:8b:8d:ad:
bf:39:96:03:17:2c:09:5e:b6:f3:4d:b8:ff:1d:e4:
0d:59:bd:65:a3:a4:6f:03:09:30:6a:31:64:e0:f0:
af:d1:e9:cf:97:0f:83:e0:3e:31:25:6b:b1:38:c4:
c0:ad:f7:c5:23:f7:33:f6:74:d5:87:13:6c:d9:c5:
a8:21:b2:5e:2b:b6:37:6c:3a:c0:d6:ad:ac:09:83:
3e:a2:f4:25:4b:7c:21:b4:9f:3e:f8:87:88:ad:ac:
f8:83:a8:72:82:c2:11:75:65:28:15:fa:08:31:48:
55:7c:b7:66:11:db:97:90:a6:c5:e0:d7:9d:ac:5d:
0f:6d:4e:72:d0:97:8c:1d:fc:7c:c7:fc:51:ed:bb:
9d:43:05:cd:84:ea:70:f6:48:c3:d8:fe:e6:ad:62:
11:fd:0c:fb:c0:e1:bc:22:cc:73:1d:51:65:44:f9:
94:90:0b:7d:28:b3:71:60:5e:d3:e8:e6:d1:cb:21:
49:4a:d3:4b:88:0c:e3:a7:ad:c1:2e:6b:c8:22:88:
99:f0:c8:44:a9:b0:4c:0b:81:06:22:1b:15:1f:28:
fa:70:ad:98:a6:1d:2c:50:ba:74:f0:16:fb:d2:fc:
a5:7d:04:56:48:80:37:a0:07:3a:69:34:34:87:56:
1e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:FD:FA:73:54:DD:98:6C:F0:5D:25:D8:19:D8:EE:2C:DB:F9:8C:7F
X509v3 Authority Key Identifier:
keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:ee:3a:9d:48:cc:be:91:80:7b:88:b2:8b:c5:1f:be:ce:0d:
ad:8b:f7:a9:ff:24:6e:ec:e7:57:a8:74:1d:be:e2:8b:8e:34:
51:5c:78:30:ee:ae:32:b7:01:7f:71:ff:52:05:3a:51:c9:ad:
63:10:db:59:17:0f:a9:97:40:ab:23:c6:29:4d:f7:fc:52:f4:
24:2a:09:1d:c1:88:df:5a:2e:0b:43:f5:ff:84:1b:85:12:30:
92:e2:da:fd:c5:ca:15:d7:93:b0:0d:3a:9b:47:ff:fb:f2:52:
1c:72:38:99:34:1c:96:b8:8c:f6:e8:02:fe:fb:e5:1f:4f:59:
ed:da:f9:d2:26:3e:74:89:98:ba:7d:5f:3f:a0:ba:cf:35:10:
dd:66:e0:12:0e:a1:19:78:ee:53:43:9e:0e:54:8f:37:bf:ff:
74:69:99:af:00:89:ad:47:fd:c8:59:12:7f:e5:cf:ed:8b:32:
00:03:13:63:69:0a:d2:ec:97:59:7e:8c:3f:6b:5e:5a:bf:0f:
13:bc:cb:8b:64:7f:cf:bf:af:3b:ea:44:3c:c7:0c:ab:01:7c:
2e:29:d5:29:69:5a:a8:e3:9b:df:0a:8f:13:e1:d7:b3:32:22:
7a:9c:1a:62:f4:38:bd:6b:e9:60:47:e7:1f:ec:12:04:f4:bc:
29:f3:27:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:16:36 2025 by rpki-client