Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
File: XasLCOUfgYIkYp-zohHYPVvjVEA.mft (raw, json)
Hash identifier: aeUNEBj7UYWZabDtR5/5gOKBAruPAeOHuUXJHiGvBb8=
Subject key identifier: 8B:F0:79:55:A0:D8:74:E5:05:E7:5F:00:5A:D8:0D:90:93:90:FF:C4
Authority key identifier: 5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
Certificate issuer: /CN=5dab0b08e51f818224629fb3a211d83d5be35440
Certificate serial: 01974A0CF7AF78FEEB7AF143F06D206D3354
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
Manifest number: 138A
Signing time: Sat 07 Jun 2025 11:00:53 +0000
Manifest this update: Sat 07 Jun 2025 11:00:53 +0000
Manifest next update: Sun 08 Jun 2025 11:00:53 +0000
Files and hashes: 1: J3IfRy5hJG3sO5FFR3klCa0Rmag.roa (hash: y8cOLwfC28T1Q/CwomIs12ZpdB8agP1zP7ErrJL2HLM=)
2: XasLCOUfgYIkYp-zohHYPVvjVEA.crl (hash: xS6u+efs8tqmIcm39GDlamkkWEo8cb3KEHdUV5PEzS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:f7:af:78:fe:eb:7a:f1:43:f0:6d:20:6d:33:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dab0b08e51f818224629fb3a211d83d5be35440
Validity
Not Before: Jun 7 11:00:53 2025 GMT
Not After : Jun 8 11:00:53 2025 GMT
Subject: CN=8bf07955a0d874e505e75f005ad80d909390ffc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cb:03:1b:a6:9d:60:ec:c4:68:cb:5c:1e:2b:
24:8f:31:54:42:38:2a:8f:ba:6c:c4:57:0f:38:7c:
eb:35:54:08:ec:93:65:0e:42:79:1e:0d:8b:25:07:
b9:e1:7d:6d:1a:ee:cd:7a:69:2e:af:63:75:c9:16:
05:78:47:bd:14:76:57:cd:cd:aa:50:53:29:55:ec:
3d:57:e2:0e:da:c4:27:68:43:40:f4:5a:6f:e6:dd:
ce:54:38:2c:52:c7:af:6e:68:17:75:f2:50:48:a0:
23:ad:2b:1a:b1:d5:84:63:24:8c:69:0a:58:cf:ba:
23:90:b4:09:94:4c:56:a5:46:62:ff:45:62:84:6d:
99:c4:05:18:53:63:5c:a0:04:90:9d:ec:10:5f:97:
b4:eb:9e:4d:8b:fa:9d:45:6d:17:d0:7b:00:ee:03:
26:99:90:51:7e:4e:73:50:5e:b0:3b:d8:48:b1:9c:
18:1b:37:35:10:1c:64:68:4b:90:58:84:55:c0:05:
26:b8:8b:28:11:89:f4:2f:89:a9:f2:03:d1:3d:64:
e9:cf:4c:80:20:99:47:af:ac:7e:65:d5:c0:8c:c3:
f2:3a:ba:7f:3a:b7:d0:68:ed:a9:a7:49:38:b1:fe:
1c:92:cf:3b:13:2a:f3:fe:69:29:d8:a2:89:65:a1:
55:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:F0:79:55:A0:D8:74:E5:05:E7:5F:00:5A:D8:0D:90:93:90:FF:C4
X509v3 Authority Key Identifier:
keyid:5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:29:b7:d2:15:24:ac:71:2a:cb:f1:f1:d8:dc:fa:25:43:14:
26:11:9c:95:3f:ea:d1:e9:4c:15:e1:18:b9:c9:c5:15:2e:b5:
56:22:2f:97:ad:75:17:70:4d:30:be:f8:b3:72:bf:6d:85:98:
8d:ac:26:98:da:95:71:81:e5:dd:a8:f6:43:de:a1:3e:6c:1f:
b4:76:7f:6b:8f:64:bf:c2:d9:76:2d:c6:0c:36:de:ed:da:41:
40:15:5c:63:e8:03:72:7c:1c:ac:5d:dd:fa:64:0a:b8:75:b7:
57:98:9e:b8:b7:52:4f:7f:97:cc:b5:98:26:39:0b:7b:63:92:
0d:1a:cd:a1:39:18:ba:65:8c:94:61:42:50:ed:b9:09:9e:50:
ff:ad:c9:93:3f:40:11:48:59:79:09:5c:79:92:71:88:b3:c5:
99:e4:80:3e:46:ff:81:d7:26:c8:31:15:60:d7:1e:d7:b5:0a:
77:68:8a:58:72:3e:5b:c8:8b:48:d0:f0:40:4e:41:fa:e8:71:
e8:ab:fc:4e:47:71:f3:e6:1a:04:c2:2a:1c:6f:cb:38:da:0d:
e1:17:56:63:c2:95:50:18:11:dc:76:c0:cf:8f:1f:3b:41:31:
d7:f9:bb:56:ce:a1:1b:5a:b8:42:32:0c:5e:29:f4:09:a6:ad:
72:a4:b6:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:59:59 2025 by rpki-client