Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
File: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft (raw, json)
Hash identifier: faLMEG7/Q2di5l2s+QHOhSuKG/u28SLRoxAADrD5qFE=
Subject key identifier: 62:6A:88:EC:64:71:80:7D:C4:CC:CA:5A:9E:BC:F7:66:47:1D:46:88
Authority key identifier: 5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
Certificate issuer: /CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Certificate serial: 0197537D9F9BBB951D26C1E5FB2C21191F1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
Manifest number: 10B7
Signing time: Mon 09 Jun 2025 07:00:31 +0000
Manifest this update: Mon 09 Jun 2025 07:00:31 +0000
Manifest next update: Tue 10 Jun 2025 07:00:31 +0000
Files and hashes: 1: EOCWiGvbLbC8SrTdZuW8112GldA.roa (hash: 6TEyJTlSHuy3i9dMVFX2h1KeLM589ScTuB8gZ6GHeEg=)
2: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl (hash: gvOHzDI6wiDO/CeoHhisjqCdugQbcd0HJu3IlQDYXic=)
3: ZSASssxXWzh67IcbvQuSjMbjXlE.roa (hash: 8NFvVB0e1Ed6PcQb0KzEDJBB77MUqbc2YSQy8ySf1Y4=)
4: iefIsjicRY6rMPB46yzGeoYmfDY.roa (hash: wYK+cODxbPgs0PQn468rpCusa1e+6M4kLS/qnuHcsvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 07:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:7d:9f:9b:bb:95:1d:26:c1:e5:fb:2c:21:19:1f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Validity
Not Before: Jun 9 07:00:31 2025 GMT
Not After : Jun 10 07:00:31 2025 GMT
Subject: CN=626a88ec6471807dc4ccca5a9ebcf766471d4688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a5:d1:72:fb:2b:99:92:33:85:17:1a:d8:17:
c7:ee:a2:a1:14:fa:cc:c9:40:35:47:d4:17:ca:b3:
f4:87:60:b7:3c:85:59:31:99:73:c9:24:2b:b7:98:
f6:69:cb:2c:1c:bc:11:4f:e6:80:5f:4f:ec:50:d2:
e3:59:46:2a:ae:10:87:5c:f1:36:e5:ca:12:f1:e5:
3f:60:2c:e2:42:bf:a3:b3:7c:b2:f1:a8:e3:30:c1:
df:44:8e:31:35:2b:49:e0:c5:c1:a7:a5:6c:b0:80:
aa:dc:3e:74:eb:cf:90:08:8e:26:c2:2a:89:3d:09:
ac:e9:67:c6:dd:be:ce:bc:3a:60:a1:a2:bc:41:ff:
7c:b0:8e:f4:23:7e:e5:90:e9:5a:57:3c:1c:f4:7d:
75:a1:e3:ac:f9:86:2c:96:72:fe:5e:c0:4e:e1:9b:
41:a3:93:da:fa:67:04:27:57:d0:fb:31:12:8d:e1:
17:b7:12:76:bf:a5:93:13:32:d7:3c:2a:c9:47:e5:
8b:95:c8:a6:4f:5e:b0:56:13:90:ea:16:8e:cd:82:
2e:30:d1:be:69:7e:7a:33:f0:ad:36:01:e9:85:b7:
76:42:59:1e:0e:fb:d7:8f:9f:0a:77:89:93:d1:41:
e3:28:57:62:62:21:02:15:a2:4a:8a:1a:41:d3:65:
60:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:6A:88:EC:64:71:80:7D:C4:CC:CA:5A:9E:BC:F7:66:47:1D:46:88
X509v3 Authority Key Identifier:
keyid:5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:51:41:d5:e8:7a:a7:40:34:af:13:59:22:40:2b:20:35:b5:
ca:a2:4b:87:5e:22:7c:69:34:ac:33:10:bc:e0:f5:ae:02:dc:
0b:c4:86:78:0a:ec:b1:0d:00:74:fe:44:d4:b1:7c:a6:0b:4d:
d9:80:cc:0a:a5:b4:e6:1b:86:93:56:80:17:cb:24:ac:6c:04:
26:d7:09:6f:7d:52:18:a7:2c:30:09:a9:12:68:ec:e3:e1:68:
53:f1:36:9b:0f:3c:38:1e:0d:ac:7a:d8:ce:61:0f:1d:35:b8:
29:84:07:ad:dd:2d:ab:22:0c:8d:f4:dc:98:3a:a3:02:be:52:
fc:77:8c:1e:10:36:0b:8c:e0:e1:3b:ec:79:ee:fe:03:77:73:
82:66:b9:cb:b3:7e:7c:a5:4f:e5:80:17:b3:e9:e0:bb:9c:4b:
a9:2a:c2:45:1c:3b:94:ad:c5:db:9f:f7:45:d4:54:b2:8c:bc:
ba:95:91:03:b7:3a:9e:df:8a:de:df:46:ee:65:97:c8:60:35:
2b:40:3f:f9:20:e1:c4:81:04:a0:6e:13:3c:fc:a1:89:14:95:
1d:c8:00:83:60:10:88:48:70:ae:01:ad:15:37:8e:02:5d:c0:
6d:26:5d:47:54:eb:31:4d:93:17:ce:00:28:4e:3e:cd:37:e7:
9b:84:4d:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdTfZ+bu5UdJsHl+ywhGR8bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkM2JiODQ4OTE2NTFmMjAzOWNkODFiMGI2MDkxMmY3YzBl
NWNmOTYwHhcNMjUwNjA5MDcwMDMxWhcNMjUwNjEwMDcwMDMxWjAzMTEwLwYDVQQD
Eyg2MjZhODhlYzY0NzE4MDdkYzRjY2NhNWE5ZWJjZjc2NjQ3MWQ0Njg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqXRcvsrmZIzhRca2BfH7qKhFPrM
yUA1R9QXyrP0h2C3PIVZMZlzySQrt5j2acssHLwRT+aAX0/sUNLjWUYqrhCHXPE2
5coS8eU/YCziQr+js3yy8ajjMMHfRI4xNStJ4MXBp6VssICq3D5068+QCI4mwiqJ
PQms6WfG3b7OvDpgoaK8Qf98sI70I37lkOlaVzwc9H11oeOs+YYslnL+XsBO4ZtB
o5Pa+mcEJ1fQ+zESjeEXtxJ2v6WTEzLXPCrJR+WLlcimT16wVhOQ6haOzYIuMNG+
aX56M/CtNgHphbd2QlkeDvvXj58Kd4mT0UHjKFdiYiECFaJKihpB02VgtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGJqiOxkcYB9xMzKWp6892ZHHUaIMB8GA1UdIwQY
MBaAFF07uEiRZR8gOc2BsLYJEvfA5c+WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS81ODdmN2UtNjBjYy00MWEwLTg4Njkt
NGY4YzYzOGE3MmUxLzEvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS81ODdmN2UtNjBjYy00MWEwLTg4NjktNGY4YzYzOGE3MmUx
LzEvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOVFB1eh6
p0A0rxNZIkArIDW1yqJLh14ifGk0rDMQvOD1rgLcC8SGeArssQ0AdP5E1LF8pgtN
2YDMCqW05huGk1aAF8skrGwEJtcJb31SGKcsMAmpEmjs4+FoU/E2mw88OB4NrHrY
zmEPHTW4KYQHrd0tqyIMjfTcmDqjAr5S/HeMHhA2C4zg4Tvsee7+A3dzgma5y7N+
fKVP5YAXs+ngu5xLqSrCRRw7lK3F25/3RdRUsoy8upWRA7c6nt+K3t9G7mWXyGA1
K0A/+SDhxIEEoG4TPPyhiRSVHcgAg2AQiEhwrgGtFTeOAl3AbSZdR1TrMU2TF84A
KE4+zTfnm4RNow==
-----END CERTIFICATE-----
Generated at Mon Jun 9 17:28:15 2025 by rpki-client