
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json)
Hash identifier: jqm957+8s3LkwSITKIF/A6I6y7RpUM03CuwKKJE5n3c=
Subject key identifier: 53:8A:77:47:EC:9B:A3:A3:8A:DC:E6:68:39:F9:14:AF:B1:A9:84:3B
Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Certificate serial: 019768851B1D75DB1056009B7B5356E5A2E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
Manifest number: 1590
Signing time: Fri 13 Jun 2025 09:00:43 +0000
Manifest this update: Fri 13 Jun 2025 09:00:43 +0000
Manifest next update: Sat 14 Jun 2025 09:00:43 +0000
Files and hashes: 1: nEhO-4IOflDc16smasjo46yXDrU.roa (hash: TGudjeK9/qruL2a7Ja97DNoAnaGXmeBxOzedTAd1+AI=)
2: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: oXntF/jNMRuC3YnLVxQ0+97uvuqiXnhYz/4IhyaiFok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:85:1b:1d:75:db:10:56:00:9b:7b:53:56:e5:a2:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Validity
Not Before: Jun 13 09:00:43 2025 GMT
Not After : Jun 14 09:00:43 2025 GMT
Subject: CN=538a7747ec9ba3a38adce66839f914afb1a9843b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c1:00:14:3a:4e:98:f6:68:dd:d3:08:12:53:
12:3d:10:31:21:a4:ce:4c:0d:8e:ce:91:29:60:16:
3a:2e:2b:72:ec:dd:96:0a:3b:ff:cd:72:e2:15:6c:
fb:de:8e:d6:66:c1:0a:e4:78:73:24:2d:f0:fa:71:
07:c4:a8:3c:c5:33:ab:3a:d5:7e:72:d4:40:59:eb:
c1:45:2c:00:39:71:18:f0:7e:60:62:4b:84:10:80:
ad:cc:1f:f9:de:d2:a5:05:a3:f5:27:34:78:5f:f5:
cb:4a:17:dc:d4:68:63:f7:bc:c0:7a:24:c0:72:fe:
ea:04:66:6c:1d:35:3b:2d:b4:85:c3:81:00:df:bc:
04:bd:4e:07:d6:b1:56:86:4f:08:ce:a5:35:5e:6b:
83:70:d4:7f:0e:12:04:74:f4:f8:98:68:cd:23:97:
84:79:20:bd:04:3c:30:47:e9:f1:b4:6d:fc:80:21:
9e:45:82:a9:ae:53:ec:39:43:30:c5:9c:0b:22:2c:
f8:b5:42:e2:38:ba:bb:09:63:b6:ff:ee:5b:64:bf:
7e:58:19:7a:18:4e:6b:c3:e4:1f:09:87:b7:2f:82:
d1:72:cb:07:7d:6a:7d:fd:3c:50:5a:f6:12:f9:bb:
7c:13:fc:66:9c:ca:50:48:76:e7:d4:04:5f:ee:a6:
ca:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:8A:77:47:EC:9B:A3:A3:8A:DC:E6:68:39:F9:14:AF:B1:A9:84:3B
X509v3 Authority Key Identifier:
keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:d9:09:47:6b:b5:cb:d5:7b:f0:af:78:32:cd:b6:f1:95:ba:
df:ba:59:88:91:bb:df:b5:1a:a1:15:b0:b3:55:0b:79:d4:8e:
50:45:2f:c4:b1:47:19:4d:1a:27:b7:8c:67:8e:a5:cd:42:c2:
09:f1:3f:dd:d9:ba:61:98:49:8f:17:0a:8f:c4:17:d6:84:8b:
9a:e0:19:03:a9:17:55:c8:66:90:60:ad:06:85:ec:2c:d5:33:
1e:8e:1a:07:3e:81:42:fd:65:24:36:db:19:d9:f1:dd:f0:cf:
3c:6e:a1:f8:9a:68:bc:aa:25:55:93:1c:de:8c:a9:3b:27:c5:
fc:92:a2:a9:8d:d9:b8:e1:a3:8f:68:d0:a4:9f:59:56:cc:7a:
d8:d2:23:7d:ae:d4:b9:aa:9d:ee:94:c2:ed:26:38:d9:64:1c:
af:c1:fa:31:c7:d9:d8:b7:55:58:31:3c:1d:f0:52:9f:05:c3:
ee:c2:85:7b:46:1b:4d:2a:b8:f6:4b:a2:37:21:ff:fc:31:a4:
bf:39:0b:b6:0d:c1:b3:ec:48:0a:d2:fb:95:16:8d:b6:03:01:
74:0d:bb:94:c4:63:32:cc:7f:df:83:a5:c5:7c:1c:5d:10:f3:
d8:5c:ea:1b:8f:11:af:b4:31:22:5c:b7:27:0b:ff:27:b3:40:
d0:71:02:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 17:03:48 2025 by rpki-client