Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
File: xypST5sbOAHb18iaFgrsB2tX5yk.mft (raw, json)
Hash identifier: XnIJayk/RDPwlwVtLNCmnxzmAFPvMZE3msu0Oq1bJIs=
Subject key identifier: 05:BE:27:27:9A:0E:E6:57:FC:9A:3A:83:8D:D9:DA:6D:6A:6C:30:C3
Authority key identifier: C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29
Certificate issuer: /CN=c72a524f9b1b3801dbd7c89a160aec076b57e729
Certificate serial: 01974DE9D4F7684824D07F02A7E96EE2CF5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
Manifest number: 0DE5
Signing time: Sun 08 Jun 2025 05:00:59 +0000
Manifest this update: Sun 08 Jun 2025 05:00:59 +0000
Manifest next update: Mon 09 Jun 2025 05:00:59 +0000
Files and hashes: 1: B5IPw2to02EUzOiZAkDMZAMJU40.roa (hash: SqPGfdHaKQmJHjb0Md5WPKQZqfqDkbS8MZiJDiQQgE0=)
2: QhPm8U1brOIqGs2lZ2LGdcxBiLA.roa (hash: b6IzZ0v53J6OJOZBPLixdFrIPoMrdc5UH4inFHWFRvM=)
3: kYBNVlP4IkeOs0bTiFV8wc5LMQs.roa (hash: g3QlMNFCFIgPt5yC/cat7+5gVwDPl1ap/dvIpROnsyw=)
4: xypST5sbOAHb18iaFgrsB2tX5yk.crl (hash: hoXlr8m3Q8a6Wr78wqug7oBfZznyD0aeD8bGJvLyNGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:d4:f7:68:48:24:d0:7f:02:a7:e9:6e:e2:cf:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c72a524f9b1b3801dbd7c89a160aec076b57e729
Validity
Not Before: Jun 8 05:00:59 2025 GMT
Not After : Jun 9 05:00:59 2025 GMT
Subject: CN=05be27279a0ee657fc9a3a838dd9da6d6a6c30c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:37:dd:d7:58:6e:a0:49:e0:7b:2d:7c:93:5e:
45:a6:89:af:a7:7f:3e:43:0e:aa:0a:c8:a7:04:07:
bc:39:c5:0a:97:11:09:f7:f5:11:af:5a:9e:b1:62:
b5:7b:a3:90:6b:a6:ad:42:53:12:7e:a9:67:c6:de:
1b:a7:92:64:5d:43:2f:f7:d4:9e:a9:d6:9b:b4:a5:
2a:a3:05:e1:56:0e:80:c5:bd:61:ea:ad:a6:72:11:
6e:fd:a9:db:65:de:75:ec:e9:cd:26:e5:15:bf:3d:
d3:1b:b7:51:46:07:9c:fa:67:a6:58:2e:40:11:e8:
20:c3:d9:a2:b8:6e:93:b3:ce:19:6f:d6:bb:7d:e1:
40:fb:0b:a4:a9:ab:b8:a9:53:fa:82:a0:05:66:3e:
16:62:53:23:93:e2:8c:09:d0:42:bf:c0:3e:de:21:
82:22:38:ab:f6:a9:09:52:20:e2:0e:39:66:dd:bd:
26:b0:40:a5:74:ca:2e:f9:09:05:49:db:26:1d:f8:
ac:2b:6f:f7:cc:24:62:b8:25:0e:27:4d:3a:82:8c:
e2:0d:74:c3:4f:8b:46:ef:86:a3:cb:9c:a6:31:0b:
32:12:2b:1a:ba:ec:2d:0d:1d:0b:01:e0:10:51:3b:
a6:53:59:c1:13:31:3e:56:6a:19:8f:2b:ac:ef:49:
ba:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:BE:27:27:9A:0E:E6:57:FC:9A:3A:83:8D:D9:DA:6D:6A:6C:30:C3
X509v3 Authority Key Identifier:
keyid:C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:de:c8:0e:a7:4d:f0:11:40:2c:32:aa:2b:10:d9:f8:03:c6:
dd:dc:35:24:de:20:0d:61:bf:e5:b6:af:06:e1:42:2b:62:85:
9e:8c:f1:50:33:57:d4:a8:74:f1:94:e8:ec:d3:12:bb:94:54:
f9:a0:dd:46:14:40:16:31:c9:1f:56:ce:1c:33:c4:c4:ff:df:
71:83:68:06:d2:54:ff:c3:31:03:ea:8e:a0:3f:be:33:ee:d4:
e3:6b:b9:f4:00:41:7a:7e:22:c1:f4:b5:f6:bf:70:ca:25:4f:
c7:38:30:57:20:5b:80:37:94:c0:ce:26:93:09:3b:86:14:d2:
4c:76:79:20:d6:41:bb:c1:79:bd:66:7e:da:a7:b5:18:d4:fd:
f8:0e:ee:2c:7d:f7:1e:e6:74:08:d7:5f:86:75:5e:0d:f9:7f:
43:3d:0a:0d:66:f8:9d:7e:12:2a:8e:c8:f7:86:06:0a:4c:ae:
09:63:dd:17:1d:f0:ac:d0:0c:a3:42:91:4f:6c:d1:a9:25:de:
5a:cd:e7:9e:43:ae:3a:4c:6d:72:bd:05:6e:46:d8:e0:9c:70:
42:67:f6:d0:7f:9f:5a:76:8e:5e:95:ec:65:e9:10:cd:fa:d7:
84:c9:37:b4:19:9c:87:43:92:a4:e7:89:0a:e9:09:43:36:18:
3c:32:45:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdN6dT3aEgk0H8Cp+lu4s9fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3MmE1MjRmOWIxYjM4MDFkYmQ3Yzg5YTE2MGFlYzA3NmI1
N2U3MjkwHhcNMjUwNjA4MDUwMDU5WhcNMjUwNjA5MDUwMDU5WjAzMTEwLwYDVQQD
EygwNWJlMjcyNzlhMGVlNjU3ZmM5YTNhODM4ZGQ5ZGE2ZDZhNmMzMGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmzfd11huoEngey18k15Fpomvp38+
Qw6qCsinBAe8OcUKlxEJ9/URr1qesWK1e6OQa6atQlMSfqlnxt4bp5JkXUMv99Se
qdabtKUqowXhVg6Axb1h6q2mchFu/anbZd517OnNJuUVvz3TG7dRRgec+memWC5A
Eeggw9miuG6Ts84Zb9a7feFA+wukqau4qVP6gqAFZj4WYlMjk+KMCdBCv8A+3iGC
Ijir9qkJUiDiDjlm3b0msECldMou+QkFSdsmHfisK2/3zCRiuCUOJ006goziDXTD
T4tG74ajy5ymMQsyEisauuwtDR0LAeAQUTumU1nBEzE+VmoZjyus70m69QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAW+JyeaDuZX/Jo6g43Z2m1qbDDDMB8GA1UdIwQY
MBaAFMcqUk+bGzgB29fImhYK7AdrV+cpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My80ZTNjYzItMWEzMy00OTVhLTk5OWYt
ZDdhNjg0YTU3YjE5LzEveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My80ZTNjYzItMWEzMy00OTVhLTk5OWYtZDdhNjg0YTU3YjE5
LzEveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuN7IDqdN
8BFALDKqKxDZ+APG3dw1JN4gDWG/5bavBuFCK2KFnozxUDNX1Kh08ZTo7NMSu5RU
+aDdRhRAFjHJH1bOHDPExP/fcYNoBtJU/8MxA+qOoD++M+7U42u59ABBen4iwfS1
9r9wyiVPxzgwVyBbgDeUwM4mkwk7hhTSTHZ5INZBu8F5vWZ+2qe1GNT9+A7uLH33
HuZ0CNdfhnVeDfl/Qz0KDWb4nX4SKo7I94YGCkyuCWPdFx3wrNAMo0KRT2zRqSXe
Ws3nnkOuOkxtcr0FbkbY4JxwQmf20H+fWnaOXpXsZekQzfrXhMk3tBmch0OSpOeJ
CukJQzYYPDJFqw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 11:55:34 2025 by rpki-client