
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json)
Hash identifier: fgVM8IKtI+Plfoh75QepK9QSsXD7j+NWvh6Vb6owYpY=
Subject key identifier: 57:E1:E5:69:85:D0:3E:29:5A:CA:6A:DF:9A:DB:6B:14:D6:B7:C3:5C
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 01975DCB4A42198C001C4540D832283FE7A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
Manifest number: 1589
Signing time: Wed 11 Jun 2025 07:01:33 +0000
Manifest this update: Wed 11 Jun 2025 07:01:33 +0000
Manifest next update: Thu 12 Jun 2025 07:01:33 +0000
Files and hashes: 1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=)
2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=)
3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=)
4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=)
5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: ztMx38vmn5ePNeGedv2cpm2i72otQAoqsnLlFO49Cg8=)
6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 07:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:cb:4a:42:19:8c:00:1c:45:40:d8:32:28:3f:e7:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Jun 11 07:01:33 2025 GMT
Not After : Jun 12 07:01:33 2025 GMT
Subject: CN=57e1e56985d03e295aca6adf9adb6b14d6b7c35c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2d:c5:93:77:17:67:9f:8f:96:50:8a:1a:5e:
46:d8:6e:36:f9:c5:2a:cb:e7:eb:2c:61:af:de:d0:
d1:98:10:af:c4:86:e6:41:55:2b:5d:eb:52:8e:a7:
4d:0f:03:00:d3:95:f9:8f:04:af:96:76:d7:17:50:
8c:08:79:82:3e:25:c5:d7:19:74:4b:31:07:8d:f4:
65:85:20:20:55:ac:9e:f5:f8:48:80:00:b4:4c:0f:
18:ba:ab:40:34:cd:29:85:af:a8:af:21:97:71:9b:
90:f0:f4:65:2c:c9:78:ea:2d:41:c0:6a:fd:cf:12:
60:3d:d7:7a:5c:66:b8:67:09:6b:80:a3:03:88:59:
55:32:fb:ef:37:5a:58:fb:ac:6e:20:02:7b:bf:83:
18:f3:de:55:45:81:7c:3d:65:2e:d6:80:c7:e3:74:
f9:19:c4:75:58:ea:0d:03:af:ad:86:90:21:79:d1:
3f:ad:17:c2:73:d6:6b:b5:c1:01:2e:e1:2c:36:6f:
84:e6:45:ec:e8:84:f2:40:bc:b2:e0:78:5c:2a:b2:
26:fd:e0:24:0e:18:0a:e7:e5:3f:1b:d3:b1:c8:79:
b4:43:b7:9b:3c:10:3b:e0:ae:fa:50:64:b4:07:23:
67:7b:03:f2:ed:43:f5:73:bc:58:b0:36:e3:40:50:
b9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E1:E5:69:85:D0:3E:29:5A:CA:6A:DF:9A:DB:6B:14:D6:B7:C3:5C
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:3d:ec:22:9d:5e:c1:75:8b:08:bc:ee:7b:91:c6:f3:24:27:
f8:a2:b4:bd:af:7c:ac:72:74:90:b4:62:bc:d6:89:0c:d6:92:
86:47:7e:84:12:46:8e:b2:5b:5a:7d:08:3f:07:df:7f:e6:18:
71:91:6e:0c:6e:a8:4f:1b:ba:6e:07:53:31:c5:14:a0:70:11:
63:99:67:f3:16:1c:a8:ac:f4:bf:ef:83:e8:55:9c:3b:3b:a7:
03:a2:38:8b:b6:fd:d1:36:83:10:8a:ab:0f:19:62:c2:f8:d3:
e3:e5:55:3e:eb:4c:22:73:93:f8:76:73:f9:ae:12:04:c4:2b:
0f:1a:66:e5:b2:63:a0:93:2a:5e:53:1c:f0:60:e8:9d:9c:a4:
23:f4:5e:a9:1c:fd:99:39:0c:86:65:11:2e:58:24:22:cd:63:
5c:2b:60:eb:4b:e4:78:b6:bb:f1:30:e0:ba:69:e5:db:3c:c1:
5c:fa:6f:d8:70:72:08:27:7e:b2:df:a9:8c:55:51:b7:01:31:
99:a8:6b:3d:97:2c:34:b1:81:bb:dc:0b:a8:3d:1e:47:48:bf:
82:f3:a4:ab:de:bf:08:e1:9b:5e:96:29:01:67:d3:a7:fd:89:
4a:f8:32:d3:c4:30:bd:61:eb:41:92:0c:06:8a:8a:97:55:a8:
31:95:f8:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZddy0pCGYwAHEVA2DIoP+enMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkOGE5ZmQ3YzUxOTI2ZTIyZWE4YWEzM2IzYjg4MzhlOTNl
OGJlZGQwHhcNMjUwNjExMDcwMTMzWhcNMjUwNjEyMDcwMTMzWjAzMTEwLwYDVQQD
Eyg1N2UxZTU2OTg1ZDAzZTI5NWFjYTZhZGY5YWRiNmIxNGQ2YjdjMzVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2y3Fk3cXZ5+PllCKGl5G2G42+cUq
y+frLGGv3tDRmBCvxIbmQVUrXetSjqdNDwMA05X5jwSvlnbXF1CMCHmCPiXF1xl0
SzEHjfRlhSAgVaye9fhIgAC0TA8YuqtANM0pha+oryGXcZuQ8PRlLMl46i1BwGr9
zxJgPdd6XGa4ZwlrgKMDiFlVMvvvN1pY+6xuIAJ7v4MY895VRYF8PWUu1oDH43T5
GcR1WOoNA6+thpAhedE/rRfCc9ZrtcEBLuEsNm+E5kXs6ITyQLyy4HhcKrIm/eAk
DhgK5+U/G9OxyHm0Q7ebPBA74K76UGS0ByNnewPy7UP1c7xYsDbjQFC5ywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFfh5WmF0D4pWspq35rbaxTWt8NcMB8GA1UdIwQY
MBaAFF2Kn9fFGSbiLqiqM7O4g46T6L7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMt
NjZjNTNmMmIxZjAyLzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMtNjZjNTNmMmIxZjAy
LzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZD3sIp1e
wXWLCLzue5HG8yQn+KK0va98rHJ0kLRivNaJDNaShkd+hBJGjrJbWn0IPwfff+YY
cZFuDG6oTxu6bgdTMcUUoHARY5ln8xYcqKz0v++D6FWcOzunA6I4i7b90TaDEIqr
DxliwvjT4+VVPutMInOT+HZz+a4SBMQrDxpm5bJjoJMqXlMc8GDonZykI/ReqRz9
mTkMhmURLlgkIs1jXCtg60vkeLa78TDgumnl2zzBXPpv2HByCCd+st+pjFVRtwEx
mahrPZcsNLGBu9wLqD0eR0i/gvOkq96/COGbXpYpAWfTp/2JSvgy08QwvWHrQZIM
BoqKl1WoMZX4Xg==
-----END CERTIFICATE-----
Generated at Wed Jun 11 11:16:02 2025 by rpki-client