Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
File: xT4qugUV7JDRCREGD88pI2123d8.mft (raw, json)
Hash identifier: cxQlxqCsuyjai8+mRhfGZFO4zYRdZNA03D10DPp5dio=
Subject key identifier: F0:59:83:59:24:CD:7E:73:DD:44:64:12:12:60:D1:5E:9F:DF:F8:79
Authority key identifier: C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
Certificate issuer: /CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Certificate serial: 019748C366E0C8A8B8534ECCF21F7DFF4AC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
Manifest number: 0D32
Signing time: Sat 07 Jun 2025 05:00:54 +0000
Manifest this update: Sat 07 Jun 2025 05:00:54 +0000
Manifest next update: Sun 08 Jun 2025 05:00:54 +0000
Files and hashes: 1: f0yhahkLcuZ1yoHAyLMFgYV-0C4.roa (hash: o3wGDB8+TAGkWavLVm8YXjs+gVitRLdf6b5WKa02EC8=)
2: xT4qugUV7JDRCREGD88pI2123d8.crl (hash: 18grnxAJFjafU5NGi3jjJ5/P3HXGnXCnOCVfaQyUDE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:66:e0:c8:a8:b8:53:4e:cc:f2:1f:7d:ff:4a:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Validity
Not Before: Jun 7 05:00:54 2025 GMT
Not After : Jun 8 05:00:54 2025 GMT
Subject: CN=f059835924cd7e73dd4464121260d15e9fdff879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:83:5a:5b:de:fb:30:0f:8d:61:b1:12:59:ba:
11:1f:7f:35:0c:ef:93:24:c0:7a:5e:e0:c4:0b:ba:
72:4d:84:ea:d7:93:aa:06:77:80:57:5a:8e:94:ff:
0d:11:f8:54:39:a3:7a:9f:ac:8f:1a:25:78:0e:8d:
4d:36:b3:f3:b1:66:8c:79:13:4e:2c:0b:e3:e6:59:
a4:c3:c0:3f:e8:df:11:6b:ce:cd:e6:75:20:35:60:
55:7c:9c:f7:4f:bb:8d:47:46:20:15:24:16:f5:78:
7d:51:b4:22:cd:16:08:53:df:e8:5b:98:9f:d8:e6:
ee:8b:34:81:3c:cf:45:b7:c2:22:73:3b:36:7b:79:
c3:76:da:b6:bb:e4:e8:4f:3c:d3:93:8e:80:e5:8b:
d0:5b:7b:78:92:62:eb:2d:0e:91:0f:78:5b:2b:61:
9e:1f:b2:75:75:c0:38:8d:29:9f:b6:1c:2e:81:ff:
8a:2a:37:e8:9a:d6:8c:72:70:bd:a6:e7:82:ec:9e:
78:d5:09:60:06:a9:cc:25:f9:a8:68:ba:8b:39:b1:
05:6c:2c:10:e5:1c:df:e4:6e:8c:42:d0:b2:10:e2:
4b:49:5d:e3:8a:09:94:57:2a:00:3f:ba:e9:d6:a0:
bb:7d:b0:dd:29:b7:f6:44:41:ee:f8:b4:f7:39:81:
ac:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:59:83:59:24:CD:7E:73:DD:44:64:12:12:60:D1:5E:9F:DF:F8:79
X509v3 Authority Key Identifier:
keyid:C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:b3:29:ba:7f:84:7f:bb:9a:ec:6e:eb:21:04:33:2a:3a:92:
d7:46:26:4e:6a:b7:4e:9a:df:8a:e0:f7:ac:ac:78:e7:b2:5d:
4e:1d:62:9b:37:ee:b0:5d:bf:aa:3e:6d:13:7b:4f:ce:48:ac:
4f:3e:18:2f:1f:c0:f9:22:1e:29:ba:3d:c8:20:4f:f6:24:1d:
44:d1:cf:7e:b3:a8:25:ad:fe:c3:fb:9d:9a:56:af:07:e8:b9:
d2:50:ab:21:b4:23:c2:d3:77:6f:93:71:5a:00:72:e7:2e:ec:
a8:f7:b1:14:06:5e:80:51:2a:d6:20:d5:9c:a8:21:5e:19:a4:
40:3b:54:29:47:ad:91:e4:53:b7:62:bd:74:b1:0c:67:e5:1e:
cd:7c:a6:73:b8:10:26:95:8e:42:46:a0:a4:95:5b:8d:b2:b1:
a2:5b:ce:9d:64:26:d7:eb:92:96:60:d3:9e:93:e2:6b:c0:25:
92:7c:4f:d9:5f:d4:9a:6e:f3:a9:06:c2:ba:d5:e1:e1:d4:04:
a0:ce:b6:eb:42:17:f0:87:c1:57:fc:65:52:47:60:9a:03:27:
9c:62:9e:6a:e9:ae:d0:cb:3d:69:99:08:a4:0c:e1:98:d3:a9:
f9:46:a1:a6:fa:15:1a:74:8d:0e:9b:d1:9d:b0:2e:cc:05:8b:
b4:5b:56:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:22:55 2025 by rpki-client