Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json)
Hash identifier: /NsMYALrpAIUF+18RhUmygjoRN6Z8ZbQqLtb6Be1KKI=
Subject key identifier: 79:B1:60:95:0C:A9:59:3F:69:29:1A:29:03:58:EF:44:83:27:37:D0
Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Certificate serial: 01976A732D03B4B5F29AAB62B244008C2271
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
Manifest number: 1591
Signing time: Fri 13 Jun 2025 18:00:22 +0000
Manifest this update: Fri 13 Jun 2025 18:00:22 +0000
Manifest next update: Sat 14 Jun 2025 18:00:22 +0000
Files and hashes: 1: nEhO-4IOflDc16smasjo46yXDrU.roa (hash: TGudjeK9/qruL2a7Ja97DNoAnaGXmeBxOzedTAd1+AI=)
2: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: W4dooCvPqXesg4z5GnY25aIAT3xqu4A5pBwNS5Hc3d0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:73:2d:03:b4:b5:f2:9a:ab:62:b2:44:00:8c:22:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Validity
Not Before: Jun 13 18:00:22 2025 GMT
Not After : Jun 14 18:00:22 2025 GMT
Subject: CN=79b160950ca9593f69291a290358ef44832737d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:88:ef:59:fd:12:23:29:a2:ea:18:ba:47:ba:
82:bb:02:dd:78:f1:b5:1e:0b:22:6c:3a:3f:42:de:
84:12:dd:8d:a6:b7:23:9b:ef:e8:be:8a:2f:f1:60:
d9:36:a8:16:37:60:10:c8:df:fb:c3:f8:77:02:81:
ba:92:a0:c4:ff:a6:d9:0f:ec:13:72:cf:79:5d:02:
bf:15:0e:43:10:c8:8d:bf:26:62:d6:25:5c:45:fe:
44:49:c4:1c:cf:78:c2:7c:ea:17:6c:19:a0:4b:df:
52:fc:b5:ef:a7:d5:1f:e4:85:a5:88:20:4f:3f:58:
0f:21:9e:03:54:c9:5d:bf:2f:2e:be:5a:37:e8:d1:
b3:3e:c1:5f:12:71:1b:4f:54:d7:0f:78:f2:c7:e3:
f2:ab:b1:73:9d:a5:5e:44:bf:c1:2c:6f:ce:b2:25:
30:aa:fd:7b:53:b1:26:7c:24:a8:9a:a4:c4:4f:54:
b5:58:cb:0a:a1:23:b4:e8:6d:e3:be:1d:07:df:0a:
27:95:c2:25:c3:dc:bd:84:a4:99:76:68:9b:8b:ad:
6d:e6:4d:5e:07:7f:c9:78:46:89:80:98:98:0e:55:
c3:bb:d9:9a:89:7e:cc:95:44:ca:a8:68:97:bc:10:
6b:e3:f9:d8:d0:1a:dd:91:f5:b0:f7:2b:91:6f:42:
a2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B1:60:95:0C:A9:59:3F:69:29:1A:29:03:58:EF:44:83:27:37:D0
X509v3 Authority Key Identifier:
keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:d6:c8:13:ec:5f:c9:a5:5e:8b:27:df:ed:1b:0a:0f:26:76:
de:44:29:9e:e6:d5:d6:bb:06:d9:7a:26:6e:36:ac:74:7f:89:
a8:fb:89:77:1d:75:81:0c:93:c9:80:02:ca:1e:c5:e9:9e:68:
90:16:6e:46:16:f5:9d:46:20:6d:9b:ce:64:44:79:dd:67:b5:
9a:19:49:a2:5d:f8:b2:68:46:79:39:f0:5c:cc:43:50:34:37:
ac:95:49:45:53:2f:5e:74:ae:65:d8:79:e0:bb:7b:5f:2a:d8:
e5:47:5d:9b:60:ea:9b:b2:26:96:f5:5c:7c:bb:d9:02:a4:15:
51:46:c2:1b:04:d4:e6:63:40:46:6d:3e:87:40:1f:ac:07:74:
c3:a8:20:3d:66:5b:a1:c2:03:e4:8f:83:ed:50:88:96:3c:9e:
d6:86:1f:df:06:cc:ae:4d:5e:ee:ae:51:5a:c9:95:eb:43:b4:
3f:ae:09:40:24:f4:d0:a7:4c:ac:5e:2d:70:fa:9f:2a:61:c7:
5e:94:ca:a5:c4:e6:c0:8f:2d:d2:25:f9:98:0a:a6:fd:12:64:
f3:31:04:c6:7e:7b:30:52:72:b6:d6:77:08:f9:c8:4b:00:f5:
03:81:cf:ae:a2:a7:45:25:f9:97:bd:e0:00:25:96:d4:73:a9:
fc:9a:03:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 01:02:49 2025 by rpki-client