Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
File: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft (raw, json)
Hash identifier: Ql0By0uMNnv+pywmFs/G/NaqWmWs9goFuJDzWp33NIg=
Subject key identifier: 7C:BC:14:FC:AE:BB:CB:FC:71:35:CB:C8:67:30:A6:C5:88:65:EA:70
Authority key identifier: 5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
Certificate issuer: /CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Certificate serial: 01976AAA64743DA7F6FFAB1ADF8317AEE410
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
Manifest number: 10C3
Signing time: Fri 13 Jun 2025 19:00:41 +0000
Manifest this update: Fri 13 Jun 2025 19:00:41 +0000
Manifest next update: Sat 14 Jun 2025 19:00:41 +0000
Files and hashes: 1: EOCWiGvbLbC8SrTdZuW8112GldA.roa (hash: 6TEyJTlSHuy3i9dMVFX2h1KeLM589ScTuB8gZ6GHeEg=)
2: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl (hash: vaJJFdN0fnDD8GcOwEuSMSuVjuok50PU7qeURL2fZyM=)
3: ZSASssxXWzh67IcbvQuSjMbjXlE.roa (hash: 8NFvVB0e1Ed6PcQb0KzEDJBB77MUqbc2YSQy8ySf1Y4=)
4: iefIsjicRY6rMPB46yzGeoYmfDY.roa (hash: wYK+cODxbPgs0PQn468rpCusa1e+6M4kLS/qnuHcsvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:aa:64:74:3d:a7:f6:ff:ab:1a:df:83:17:ae:e4:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Validity
Not Before: Jun 13 19:00:41 2025 GMT
Not After : Jun 14 19:00:41 2025 GMT
Subject: CN=7cbc14fcaebbcbfc7135cbc86730a6c58865ea70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a7:3f:c8:a7:d2:89:64:32:d7:c2:f1:f3:1d:
e4:e5:3c:36:5a:fe:e1:c9:45:90:9b:61:6b:c0:c6:
96:c7:f0:36:19:5d:6f:b9:b6:53:08:26:24:bf:15:
80:62:3a:36:2c:76:c4:c0:c7:74:99:58:54:c9:c1:
de:9d:49:24:85:89:ff:cd:e6:0a:9e:16:d9:27:ab:
2e:b6:84:03:8a:ee:b8:dd:4b:d5:86:86:66:ef:55:
df:3e:63:02:0f:79:15:9e:36:35:0f:0a:ec:62:07:
37:a7:74:e3:44:6d:90:82:a7:83:0e:d1:fb:33:b7:
6e:7a:80:b2:01:ca:dd:0d:6d:40:03:6f:8e:6b:cb:
83:65:07:7d:b7:cb:a9:db:0e:bd:fe:7c:57:0d:dd:
6e:0b:ff:c4:b5:20:32:cb:7f:a3:85:01:6a:a2:1f:
85:8f:c2:c6:55:47:89:44:f7:4a:d9:48:67:19:ef:
da:88:50:59:ff:9d:c9:ac:d8:5f:6a:22:70:42:90:
ec:e7:b0:29:fd:59:78:4f:72:b0:4a:c6:f6:06:93:
56:b4:4f:6d:50:e7:d4:ff:3d:05:47:8e:c6:25:dc:
c6:25:22:4b:19:18:b9:d7:c2:14:38:a9:4a:6c:4d:
e9:9e:05:2a:c9:48:3b:7d:7a:2c:c8:3e:fd:0d:50:
16:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:BC:14:FC:AE:BB:CB:FC:71:35:CB:C8:67:30:A6:C5:88:65:EA:70
X509v3 Authority Key Identifier:
keyid:5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:33:ad:ee:32:03:17:56:94:c7:3c:8e:50:52:73:f7:14:c1:
9f:27:08:c6:2f:11:08:a7:2f:e9:d5:c7:3c:4e:0d:e3:4e:5a:
44:68:2e:5e:b6:b7:be:e9:a6:a1:9e:70:4a:d6:e5:24:0e:0c:
31:02:49:f0:55:f5:bd:4e:1f:43:9b:ca:0a:3e:68:e3:50:86:
d5:e8:7f:19:a4:ab:24:65:e4:5c:0e:e0:38:80:d0:a9:fe:00:
14:18:15:d2:e3:44:70:95:e3:64:0b:0c:67:80:83:90:fc:a9:
56:13:e6:f5:c5:40:8d:e1:a4:98:87:81:fc:c7:c5:cb:e2:84:
37:16:db:2b:dd:9b:c0:de:9e:74:f1:91:c9:1f:f5:71:8f:80:
e1:9a:be:12:95:90:8c:e3:80:90:da:b2:b7:d2:a2:6d:3d:ee:
53:62:df:30:3c:70:26:09:0d:5f:44:7a:98:2f:56:07:a3:3f:
02:78:79:c9:40:2b:05:fe:a4:61:d0:15:c3:a9:3a:ab:8d:7b:
41:a6:7c:73:57:7f:d0:5e:bf:d8:1a:36:21:9f:3a:27:4a:99:
32:f6:fe:5e:7c:d0:87:88:73:d7:8d:6e:63:21:14:5f:7e:59:
62:cf:19:85:1a:e1:74:bc:37:ec:40:c8:6e:ad:b0:24:3e:93:
ee:67:1f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 21:35:13 2025 by rpki-client