Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json)
Hash identifier: yZYrYZUATjo/4vVcKhtUa94NFdfcLbUfunqp/UVYbSA=
Subject key identifier: 4A:E9:14:8A:D4:56:D9:A4:EA:EF:F6:A9:1D:B3:BB:56:F8:77:BC:76
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 019748FA07884B2943F95FE2873C7F337D8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 06:00:34 +0000
Manifest this update: Sat 07 Jun 2025 06:00:34 +0000
Manifest next update: Sun 08 Jun 2025 06:00:34 +0000
Files and hashes: 1: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: HLNjWlaSaguhS/G3eciieSjiwOdf8zitq6ojn+sF4co=)
2: srWs4lSgEcXww8bmZ8Qduqdxgdw.roa (hash: Fa3vdYsDt8LbAe4PXMPi2JDBOubqWHhdVQas9y66mmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:07:88:4b:29:43:f9:5f:e2:87:3c:7f:33:7d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: Jun 7 06:00:34 2025 GMT
Not After : Jun 8 06:00:34 2025 GMT
Subject: CN=4ae9148ad456d9a4eaeff6a91db3bb56f877bc76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:24:d1:c4:0b:3d:50:e1:42:85:f2:d2:6b:0e:
cd:29:38:19:c2:3d:29:70:88:41:16:6f:d2:f2:45:
ea:a5:ae:54:37:fc:81:21:d3:97:c1:af:54:85:f8:
c3:02:eb:d4:d8:5e:8c:75:7f:80:1d:02:1a:dc:7a:
28:6b:ad:41:a0:17:55:aa:52:2e:6a:1b:b1:2e:0e:
3f:74:d0:5d:a1:85:23:fb:f7:43:a2:fb:c0:dc:da:
7b:36:45:43:a9:63:44:92:2e:86:68:57:f2:aa:d8:
6d:85:c5:80:62:19:5d:c8:81:63:7b:1e:a8:8e:48:
48:cc:f7:7a:9d:8f:48:8c:6b:56:d9:de:24:69:e6:
ea:9b:7d:b1:53:9f:e5:fe:00:f9:c2:0e:48:a3:4e:
7e:a4:eb:81:a1:29:0a:fc:30:16:c6:30:c9:f1:34:
76:69:0d:41:6d:19:34:1c:33:a4:47:61:69:b7:4d:
05:3f:fb:59:b2:21:b0:41:ec:94:8f:37:4f:cc:6a:
98:69:45:86:b5:6b:dc:46:98:0d:25:28:2c:69:8d:
2d:5c:32:12:53:36:d4:93:08:f7:42:05:d9:f6:11:
d7:06:39:0a:dd:4a:bc:9f:4c:a1:5d:f9:41:07:3f:
f7:5b:90:c9:de:d9:5e:2e:ca:cc:3b:9f:e7:8f:d3:
ad:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E9:14:8A:D4:56:D9:A4:EA:EF:F6:A9:1D:B3:BB:56:F8:77:BC:76
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:a0:a8:37:50:4a:ef:3f:09:c8:81:b3:cf:f6:31:63:5a:e6:
44:59:6e:7b:1b:ad:a3:7c:2c:92:c6:3f:b7:ef:37:57:d4:5d:
70:c9:30:81:ab:55:d7:cd:4e:5f:54:b9:9f:cb:3c:58:1a:40:
4a:23:99:1f:10:d9:ad:7b:33:2e:19:d2:4e:44:04:94:91:5b:
fd:7d:1b:4c:35:cf:43:96:9a:77:e0:97:4d:26:74:4c:48:8b:
5f:19:43:0c:07:e1:36:e7:48:1a:eb:92:59:a9:89:1b:67:97:
ca:80:04:25:88:2b:fe:b7:ef:8a:67:85:9d:3d:08:86:96:34:
11:30:68:95:90:05:76:6e:f2:87:bd:1e:26:b2:69:6b:31:d8:
0b:e5:77:e4:6f:03:c7:3e:55:11:ef:47:f4:04:ae:62:22:d9:
98:1d:49:31:e1:1e:ec:30:ff:e7:8e:94:e7:3f:7d:c0:aa:2f:
a1:97:e8:c4:13:cd:36:0d:4e:2e:51:2e:b2:21:75:af:77:fc:
29:cb:31:77:cb:6d:1d:e7:ea:0b:80:30:4c:f5:f1:63:6c:74:
08:74:ff:61:6a:24:e2:57:6a:21:25:e8:ba:7e:62:a1:ea:f0:
8c:ef:7f:84:1d:79:14:ff:15:9c:84:9d:a3:2c:7a:a7:8e:d7:
1b:ce:92:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:11:45 2025 by rpki-client