Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
File: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft (raw, json)
Hash identifier: WjcCwr2BluPj7z22W9ZtEX63P3uvC5YA2PSoioyfSLo=
Subject key identifier: 2F:83:F3:FE:B5:4C:74:3A:14:64:55:2E:E9:84:B2:D1:8A:C5:A3:96
Authority key identifier: 5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
Certificate issuer: /CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Certificate serial: 01975948AFC7CA6F13F874D575654A73500B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
Manifest number: 10BA
Signing time: Tue 10 Jun 2025 10:00:25 +0000
Manifest this update: Tue 10 Jun 2025 10:00:25 +0000
Manifest next update: Wed 11 Jun 2025 10:00:25 +0000
Files and hashes: 1: EOCWiGvbLbC8SrTdZuW8112GldA.roa (hash: 6TEyJTlSHuy3i9dMVFX2h1KeLM589ScTuB8gZ6GHeEg=)
2: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl (hash: 6cjpO0ia+jDxKOTYxCBSG6dhi7L2AlZhuNcRcvFksJ0=)
3: ZSASssxXWzh67IcbvQuSjMbjXlE.roa (hash: 8NFvVB0e1Ed6PcQb0KzEDJBB77MUqbc2YSQy8ySf1Y4=)
4: iefIsjicRY6rMPB46yzGeoYmfDY.roa (hash: wYK+cODxbPgs0PQn468rpCusa1e+6M4kLS/qnuHcsvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 10:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:48:af:c7:ca:6f:13:f8:74:d5:75:65:4a:73:50:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Validity
Not Before: Jun 10 10:00:25 2025 GMT
Not After : Jun 11 10:00:25 2025 GMT
Subject: CN=2f83f3feb54c743a1464552ee984b2d18ac5a396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0c:02:b6:1f:2b:9d:45:ab:45:89:83:12:71:
e6:8c:0c:ec:2f:c1:68:71:f3:77:85:79:82:30:66:
c0:a0:d9:98:1d:49:d5:79:a9:6d:91:72:71:0c:5b:
fa:3d:ad:d0:71:6f:f7:01:0d:a2:9b:1b:9f:6c:b6:
86:4c:95:00:7e:db:58:ec:ae:4f:2a:a2:18:66:5c:
a8:70:88:de:d8:dc:6b:14:24:0f:b2:43:c0:cb:22:
c6:5b:51:7b:90:e9:e2:89:c8:21:77:63:d1:ae:8b:
07:3a:5d:9c:49:55:77:6a:3e:46:81:da:cc:22:5d:
b2:96:fa:f8:6e:3f:cc:36:d3:38:83:9b:c7:20:de:
b2:e3:8a:ba:e6:55:b4:5a:ed:00:fa:1e:f3:be:98:
da:d5:83:6c:07:2b:90:94:28:fc:0c:c1:9b:06:79:
f7:37:df:6f:60:85:eb:6e:fb:9b:47:02:a5:7e:63:
f5:3d:39:20:da:5f:0d:a3:44:f5:11:03:37:de:de:
29:68:65:b1:e5:7a:38:50:86:e2:d8:71:30:84:fe:
38:3f:d0:3b:e4:f5:5c:55:7f:ac:1e:c4:fd:61:0a:
d1:7c:87:ad:1c:85:51:64:80:2a:b4:17:e7:ad:60:
51:d1:2e:a2:43:db:f1:9f:5b:3f:82:0b:76:c9:82:
da:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:83:F3:FE:B5:4C:74:3A:14:64:55:2E:E9:84:B2:D1:8A:C5:A3:96
X509v3 Authority Key Identifier:
keyid:5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:17:85:10:22:f6:a1:73:aa:4f:29:5b:07:12:b7:b0:aa:09:
f8:23:2a:ae:ac:de:bf:e9:1c:3e:d7:e2:04:77:4d:02:ab:3b:
8d:a2:88:d0:e9:17:2d:f4:4d:f5:5c:f0:2b:07:82:ef:45:3d:
84:aa:94:60:50:c8:8c:0b:89:24:d8:2f:94:2e:7f:d8:7c:a1:
52:9b:15:81:a0:26:94:c3:cb:54:95:03:93:8c:a5:9c:bc:eb:
23:36:a8:93:28:f4:ae:c1:10:c5:35:36:1d:2d:49:3d:08:60:
b8:22:06:3c:9d:c7:48:25:34:60:8d:1b:47:7d:41:ec:48:c5:
39:e1:23:65:a4:2c:fa:f9:23:bb:4c:76:a3:15:76:d3:60:16:
c6:10:db:9d:ce:a5:dc:6b:2d:f7:be:cf:d0:58:95:13:e7:48:
63:14:ae:55:ea:c9:4c:d5:56:42:9d:d4:8f:e0:de:94:a4:6c:
e6:64:e1:9a:51:1e:93:6e:bd:c4:2b:14:dd:5c:10:a3:30:0b:
f4:dd:df:36:d6:ce:a3:66:5a:88:17:8e:39:c9:3e:5f:d3:03:
e1:fa:fc:90:43:ca:c3:cc:b4:42:3e:87:49:3e:8b:08:c1:ad:
b8:5e:23:61:f2:e4:d0:cc:19:b7:ac:46:e4:3a:7b:e5:9c:95:
02:0b:07:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdZSK/Hym8T+HTVdWVKc1ALMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkM2JiODQ4OTE2NTFmMjAzOWNkODFiMGI2MDkxMmY3YzBl
NWNmOTYwHhcNMjUwNjEwMTAwMDI1WhcNMjUwNjExMTAwMDI1WjAzMTEwLwYDVQQD
EygyZjgzZjNmZWI1NGM3NDNhMTQ2NDU1MmVlOTg0YjJkMThhYzVhMzk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAwCth8rnUWrRYmDEnHmjAzsL8Fo
cfN3hXmCMGbAoNmYHUnVealtkXJxDFv6Pa3QcW/3AQ2imxufbLaGTJUAfttY7K5P
KqIYZlyocIje2NxrFCQPskPAyyLGW1F7kOniicghd2PRrosHOl2cSVV3aj5GgdrM
Il2ylvr4bj/MNtM4g5vHIN6y44q65lW0Wu0A+h7zvpja1YNsByuQlCj8DMGbBnn3
N99vYIXrbvubRwKlfmP1PTkg2l8No0T1EQM33t4paGWx5Xo4UIbi2HEwhP44P9A7
5PVcVX+sHsT9YQrRfIetHIVRZIAqtBfnrWBR0S6iQ9vxn1s/ggt2yYLazQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC+D8/61THQ6FGRVLumEstGKxaOWMB8GA1UdIwQY
MBaAFF07uEiRZR8gOc2BsLYJEvfA5c+WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS81ODdmN2UtNjBjYy00MWEwLTg4Njkt
NGY4YzYzOGE3MmUxLzEvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS81ODdmN2UtNjBjYy00MWEwLTg4NjktNGY4YzYzOGE3MmUx
LzEvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPxeFECL2
oXOqTylbBxK3sKoJ+CMqrqzev+kcPtfiBHdNAqs7jaKI0OkXLfRN9VzwKweC70U9
hKqUYFDIjAuJJNgvlC5/2HyhUpsVgaAmlMPLVJUDk4ylnLzrIzaokyj0rsEQxTU2
HS1JPQhguCIGPJ3HSCU0YI0bR31B7EjFOeEjZaQs+vkju0x2oxV202AWxhDbnc6l
3Gst977P0FiVE+dIYxSuVerJTNVWQp3Uj+DelKRs5mThmlEek269xCsU3VwQozAL
9N3fNtbOo2ZaiBeOOck+X9MD4fr8kEPKw8y0Qj6HST6LCMGtuF4jYfLk0MwZt6xG
5Dp75ZyVAgsHoQ==
-----END CERTIFICATE-----
Generated at Tue Jun 10 19:25:27 2025 by rpki-client