Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
File: 1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft (raw, json)
Hash identifier: Uf4ESe4TClMRy59nFcopF3/ffFh1RDPhiccEC23M+5I=
Subject key identifier: 13:FB:0F:92:98:C6:15:54:66:B2:D9:62:A5:D9:6C:9B:01:E7:1E:94
Authority key identifier: F9:73:20:96:25:E2:A0:3D:DE:EC:F9:1B:B4:80:54:8E:57:29:D4:79
Certificate issuer: /CN=f973209625e2a03ddeecf91bb480548e5729d479
Certificate serial: 019748FA5A3F49E87E2E4B4C23A18D158D67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 06:00:56 +0000
Manifest this update: Sat 07 Jun 2025 06:00:56 +0000
Manifest next update: Sun 08 Jun 2025 06:00:56 +0000
Files and hashes: 1: 1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl (hash: zZV+2JE22AokEVAxB9RoF5ySsm7g7iRr99SsMNxerEI=)
2: l3JzatKnSb-qTPQjQ9VOzx8MD7g.roa (hash: 40hMQclA6AyvTYjGgbc8RhGg1fGmdxgMO6uT9Avjx2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:5a:3f:49:e8:7e:2e:4b:4c:23:a1:8d:15:8d:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f973209625e2a03ddeecf91bb480548e5729d479
Validity
Not Before: Jun 7 06:00:56 2025 GMT
Not After : Jun 8 06:00:56 2025 GMT
Subject: CN=13fb0f9298c6155466b2d962a5d96c9b01e71e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:32:d8:b1:81:0a:e9:ca:ca:63:2a:7d:e2:63:
23:41:1c:6f:2d:6c:a1:ee:5c:7b:a0:27:20:5f:e8:
1a:eb:47:12:9a:23:4a:89:b9:28:62:fb:c6:e3:39:
03:d6:19:93:81:58:14:f6:59:de:68:38:a0:c8:8a:
6e:e4:d1:2a:71:60:19:d5:4b:18:aa:ff:16:d4:35:
8c:28:d2:1a:37:35:5c:7c:6a:4a:38:40:f2:4a:0d:
29:5d:e2:aa:78:64:6c:15:7f:13:6f:80:6a:be:4f:
2a:6e:22:41:c5:ca:6f:c4:6c:38:c2:88:65:44:c8:
32:5c:81:8c:c2:d3:5a:4f:b1:11:09:80:7d:83:d3:
35:f8:13:cb:94:40:00:ad:09:af:5c:d5:a7:97:31:
9b:fc:55:89:8e:09:ab:32:48:d5:71:9a:4b:89:b9:
0d:9d:a2:6f:e3:af:ba:2a:a5:71:99:35:09:60:a7:
14:51:1a:c2:ab:37:29:2c:bd:81:2a:aa:3c:d8:8a:
39:32:89:ae:4c:b5:6d:35:3f:9c:14:38:9a:3e:71:
27:1a:73:82:55:a1:c8:db:9d:1d:56:45:c6:39:7f:
52:7f:ab:6e:fa:87:9c:97:34:c2:8b:6d:c7:6e:54:
5a:97:05:ab:11:30:1b:76:09:96:8e:a0:f2:7c:ff:
c2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:FB:0F:92:98:C6:15:54:66:B2:D9:62:A5:D9:6C:9B:01:E7:1E:94
X509v3 Authority Key Identifier:
keyid:F9:73:20:96:25:E2:A0:3D:DE:EC:F9:1B:B4:80:54:8E:57:29:D4:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:7e:0f:8a:0a:f4:83:e3:f8:e8:91:71:22:8a:c7:12:99:66:
b4:56:5c:65:11:58:31:a7:dd:cd:49:25:35:02:ba:ba:89:dc:
17:61:3d:27:fb:2d:18:f7:43:63:cf:d0:34:32:d4:3c:d6:20:
22:75:76:53:ea:e3:25:8f:77:9f:23:dc:2d:6c:40:87:23:eb:
13:66:25:ef:61:f7:f2:6e:2a:49:e0:e6:9b:ad:c6:cc:f2:8a:
32:2d:a6:5d:b2:9f:91:82:6a:e9:c0:73:d8:6f:47:13:21:db:
a4:e2:70:73:1a:ea:19:7b:51:c2:5b:ca:23:3e:4a:a3:d6:7a:
88:ff:09:67:52:45:61:08:eb:94:00:88:3a:ea:d9:cb:f5:ac:
1f:d9:93:66:c1:56:0f:ac:27:39:ae:fc:22:05:cb:3e:b3:a8:
ea:97:03:2d:5b:8f:f7:ac:92:06:f8:70:b3:5d:a4:eb:b3:3d:
5a:26:fd:8e:c3:d6:56:87:22:ca:9e:b8:82:d1:b1:07:ae:b2:
67:9f:ad:23:99:0d:8d:63:66:4c:6d:e6:71:07:5b:b0:99:99:
b9:2c:1b:93:1c:5c:ab:f8:7a:00:b3:b9:1b:fb:e3:ac:27:3f:
8d:4f:59:69:b1:43:5c:e9:5a:ec:29:b9:ef:86:07:19:81:c0:
a9:51:98:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:33:25 2025 by rpki-client