Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
File: xTtM8KdHHwAPilagSbFjlnzDvZk.mft (raw, json)
Hash identifier: lKxijCn8Xip5UssmAlnG9dzBQSUoltpXVKzUadBfBGw=
Subject key identifier: C4:34:0B:E0:E7:EA:B3:45:13:A1:E8:93:B1:EE:51:C0:CE:A4:3B:C1
Authority key identifier: C5:3B:4C:F0:A7:47:1F:00:0F:8A:56:A0:49:B1:63:96:7C:C3:BD:99
Certificate issuer: /CN=c53b4cf0a7471f000f8a56a049b163967cc3bd99
Certificate serial: 019746303E19813D85C872E154EC332D7459
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
Manifest number: 1499
Signing time: Fri 06 Jun 2025 17:00:56 +0000
Manifest this update: Fri 06 Jun 2025 17:00:56 +0000
Manifest next update: Sat 07 Jun 2025 17:00:56 +0000
Files and hashes: 1: 602Z4NiRUVoUbtoD2a1_hKZKM5w.roa (hash: 3NgwOwVM6/UTanDsySZE3RJFx37z0Ri4EFGUt0jIqTA=)
2: xTtM8KdHHwAPilagSbFjlnzDvZk.crl (hash: k/3wUjprN0TONgKA4kRR8n6eBGNmC1t6nvtX7uDSzxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:3e:19:81:3d:85:c8:72:e1:54:ec:33:2d:74:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53b4cf0a7471f000f8a56a049b163967cc3bd99
Validity
Not Before: Jun 6 17:00:56 2025 GMT
Not After : Jun 7 17:00:56 2025 GMT
Subject: CN=c4340be0e7eab34513a1e893b1ee51c0cea43bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e0:82:dd:82:66:6c:67:70:d1:ac:2f:b7:73:
fd:6c:8d:b7:ae:9a:f2:46:11:a1:95:1a:2b:5d:6b:
b7:da:1f:b4:9e:d3:13:5e:24:fd:0f:dc:07:d5:71:
d4:f9:16:8c:26:da:b2:34:1d:cc:76:6d:53:e7:05:
77:9f:c3:bc:ca:b2:f1:13:c7:bc:b9:86:c0:96:0d:
b9:6b:88:86:e5:ac:06:0d:1f:ed:96:7b:88:74:7f:
94:b8:4e:89:0d:d0:ec:54:f5:dd:24:6f:2a:17:de:
49:10:3c:62:68:47:d3:a2:87:a5:3e:10:84:b1:46:
d8:2f:af:df:f9:86:3f:04:e1:b7:98:18:bf:7d:c3:
37:71:ba:6b:43:72:49:b9:cd:db:31:bd:13:ca:e4:
a5:38:16:c9:ed:e1:fd:a3:55:7a:fd:14:19:8b:9f:
c1:94:56:83:5f:59:86:a7:2e:70:c2:d9:82:1e:62:
3c:f6:a0:32:86:df:7f:13:a6:1e:e0:ad:7c:69:57:
19:03:ff:c3:a6:69:50:03:f1:24:31:0c:21:b1:e1:
e2:ac:eb:48:7a:7e:01:fb:17:8f:f1:4d:85:1c:cf:
6e:0d:82:2f:5e:da:97:38:15:14:39:1f:92:3d:c6:
08:9d:27:ab:e9:ad:e2:f0:38:3a:72:a9:4c:bc:9f:
16:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:34:0B:E0:E7:EA:B3:45:13:A1:E8:93:B1:EE:51:C0:CE:A4:3B:C1
X509v3 Authority Key Identifier:
keyid:C5:3B:4C:F0:A7:47:1F:00:0F:8A:56:A0:49:B1:63:96:7C:C3:BD:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:15:86:1a:4f:95:38:e0:cc:4e:ce:83:09:56:a5:89:79:b8:
e8:6b:ed:5d:83:57:7b:05:3f:31:9d:c4:84:a7:df:8d:71:a1:
e2:54:e2:df:33:df:3c:f1:a4:60:c0:08:2f:7d:0a:32:ca:35:
88:13:e9:59:b0:71:5d:10:4e:a6:82:33:9a:92:20:a7:f8:5d:
6e:3c:40:10:66:bc:3d:5b:64:95:d0:bb:90:c1:12:b3:9e:ca:
5a:61:9c:0d:8f:93:96:c5:16:e7:93:11:ad:ad:da:f0:95:9a:
66:dd:83:2e:af:03:a8:e8:81:59:fb:bd:68:4a:ca:d6:22:ac:
88:0b:20:8e:ec:3b:c8:26:25:d8:12:7b:be:95:21:00:85:69:
9d:53:80:ce:e2:a1:2e:e6:72:90:5c:09:fe:2f:aa:35:71:3d:
8b:3c:23:5e:c6:8c:65:4f:6b:e9:1d:a8:bb:f2:a9:6a:cb:a7:
f4:18:e5:e3:27:ae:eb:e0:95:fe:8f:5e:3e:d5:5e:6c:eb:d4:
59:b1:65:22:cc:c7:35:56:31:e8:4e:83:6a:8c:98:1d:35:9a:
2a:7e:8f:25:e2:bf:01:86:53:55:21:0e:a7:10:f9:ed:5e:8e:
57:8e:7d:70:d4:90:ac:68:69:c6:39:0d:15:3d:04:30:d0:1d:
d9:6d:6c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:08:29 2025 by rpki-client