Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
File: XaWsO7omBTjDM-bIYPI2ASyYZ10.mft (raw, json)
Hash identifier: Og6+MoNH6VZwB9P/oqYVy9Z5iDxVsInyy2/O4T3hMcY=
Subject key identifier: 73:8C:0A:D5:98:5F:19:71:00:2A:23:33:40:12:AF:10:3B:73:1F:34
Authority key identifier: 5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
Certificate issuer: /CN=5da5ac3bba260538c333e6c860f236012c98675d
Certificate serial: 019749315F54ACF3CD88FAA4A3A43501CAA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
Manifest number: 0FD6
Signing time: Sat 07 Jun 2025 07:01:01 +0000
Manifest this update: Sat 07 Jun 2025 07:01:01 +0000
Manifest next update: Sun 08 Jun 2025 07:01:01 +0000
Files and hashes: 1: Lirq-zsF2DJ9HSd8FBwZm-dq_PM.roa (hash: DEsCxQ0UWNIneJAQeHuxPuouMfS+o3gP/21W0HHwfiM=)
2: XaWsO7omBTjDM-bIYPI2ASyYZ10.crl (hash: MiY1KJtCBo/0wgKbKBCud6WMpsRQ/03kTGK9u37o8Ts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:5f:54:ac:f3:cd:88:fa:a4:a3:a4:35:01:ca:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da5ac3bba260538c333e6c860f236012c98675d
Validity
Not Before: Jun 7 07:01:01 2025 GMT
Not After : Jun 8 07:01:01 2025 GMT
Subject: CN=738c0ad5985f1971002a23334012af103b731f34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:af:7a:2c:7d:3f:eb:51:18:54:45:66:b6:2e:
94:3f:64:b2:20:3c:0e:08:3d:ec:83:dc:0a:4f:5f:
30:38:60:72:18:2a:93:19:c0:6d:52:02:f2:f8:d7:
4f:62:8d:2c:7c:bd:ef:fd:4c:89:35:ef:8c:64:6b:
9f:f9:67:52:94:e7:c7:ad:c1:8d:89:c1:1e:c0:2c:
25:ab:ab:6c:a2:f6:fd:6e:ff:b9:4e:28:4a:76:c9:
9c:2a:79:13:cd:a6:55:51:dc:e1:6c:f9:28:26:d5:
27:70:fe:31:88:85:52:7c:f2:85:84:eb:9a:4a:6b:
93:87:45:a3:69:2d:b2:cc:28:9f:af:f1:47:cf:53:
66:d7:43:53:c4:dc:3c:ec:1d:73:c0:2a:01:0e:1c:
e1:04:0a:5a:dc:48:00:78:54:97:d4:30:76:32:da:
76:c7:51:05:1d:cd:5e:9c:cf:3f:ab:f8:30:18:79:
3d:e7:d3:5b:94:2b:b0:ea:d0:2b:f6:18:61:b9:d7:
a1:1b:cf:91:4f:ed:1b:00:5b:2d:70:b7:19:8c:a2:
df:f7:52:2d:b3:76:af:96:e8:77:80:b9:8e:b6:67:
f5:ab:91:2b:e8:56:18:1c:69:c0:49:60:8a:34:dd:
f1:1c:60:1d:ae:ea:ec:f1:4c:bd:cc:18:85:d6:e3:
7c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:8C:0A:D5:98:5F:19:71:00:2A:23:33:40:12:AF:10:3B:73:1F:34
X509v3 Authority Key Identifier:
keyid:5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:c5:4e:35:b5:2d:3e:b4:2e:93:9f:e6:0c:b1:46:4f:71:1e:
8c:f8:48:fa:15:6e:a9:98:4a:86:5c:83:cc:c2:81:86:49:69:
21:7e:9d:01:a8:f2:de:ae:63:c0:04:8f:95:ad:23:77:be:f8:
fc:9c:f5:e3:6e:a0:db:9a:db:11:f9:c6:a0:e6:82:4e:19:67:
ea:a9:11:2f:74:32:63:37:32:01:d2:51:81:bc:d1:57:e5:17:
3b:b4:19:3c:8c:b9:44:16:9c:54:a6:af:97:25:06:07:c1:4a:
b8:47:e7:02:b7:e4:1e:fd:06:93:4f:67:97:a6:d9:5e:f3:26:
2b:7c:71:1e:27:95:01:7c:1f:b9:13:ae:02:ce:3d:fe:e5:a3:
b2:83:a6:d4:dc:88:33:5c:68:d4:5f:09:35:1f:12:7f:9d:b4:
38:37:3d:55:0b:dd:42:16:d8:cc:f6:b8:49:7c:86:b1:a5:9d:
66:d2:f1:6b:eb:c0:a1:f9:ec:84:03:9d:78:3d:03:3f:1b:83:
e3:b4:ae:3a:c4:3f:27:35:5d:97:5c:b9:93:70:7c:35:71:3f:
66:98:d6:96:d2:8e:ac:88:4e:bc:02:09:2d:86:8e:d1:1e:04:
20:02:a2:01:9e:33:d4:5e:08:fe:43:72:f8:23:a7:78:c1:f8:
75:fe:e7:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:08:38 2025 by rpki-client