Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json)
Hash identifier: xKMokv/VpR5XZeF+HkImQE0jLOaw/jRLryFHinCVJAA=
Subject key identifier: 79:EB:B4:8D:36:A2:41:9F:F4:DB:18:BA:CE:EE:71:43:D7:66:B1:4B
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 01974AB1B488317880E1628531D3D4EA61C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
Manifest number: 1590
Signing time: Sat 07 Jun 2025 14:00:49 +0000
Manifest this update: Sat 07 Jun 2025 14:00:49 +0000
Manifest next update: Sun 08 Jun 2025 14:00:49 +0000
Files and hashes: 1: 4SxEa8qHfL0SdS-yvynVjEWywI0.roa (hash: ed273NQ5dggxiwmHaUzsS7LYiMx/0KEG21fx026Qijc=)
2: 57zAUxjN80d98_hrUg6wNGuh-LQ.roa (hash: qIcET8+9I+XlvyugPkuqmk4yArAibC2n8LmahOzKwL0=)
3: D8TVIpbhKokDS9trBBqJHsFT1UQ.roa (hash: buVD8eTr7vS6C640rVcFTDAjpCVFYAxsjVTpolrqfNA=)
4: V-G5n9JBF2fuQBXkHR943IM1SJk.roa (hash: PktwOhATCRnu/fMCAW8Roob3cNUQ8DCkE9sG1tOGfQ0=)
5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: FrDrBTG4Y1wnwGEp2n3VwOYfkm/f9oua5v6j3mFCL0g=)
6: rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa (hash: 65NB0UfxYYmSvSLb5gS9zELjlvrzXWC3McdcTIR7Hxk=)
7: tIc5dJ9row9Jpwnimlce4tYbp44.roa (hash: ouwAo45RW/R/dO1EFuBCaboweb6Z3RjFTDf5e9DgnQU=)
8: xv_S9Q_lixnhLdeB2FeY6-83q40.roa (hash: fpHqpuP8WhUb/qgqx71BT4D9l/LEKw+tKbvv5QvJ1WU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:b4:88:31:78:80:e1:62:85:31:d3:d4:ea:61:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jun 7 14:00:49 2025 GMT
Not After : Jun 8 14:00:49 2025 GMT
Subject: CN=79ebb48d36a2419ff4db18baceee7143d766b14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fe:86:1e:78:d8:90:55:e3:98:bc:fa:f3:d0:
83:41:ef:44:54:68:79:72:63:20:5a:7c:aa:d2:c6:
9b:13:6b:aa:18:29:13:3d:4b:f3:d2:1b:9c:ce:34:
8a:e8:7c:6b:7f:23:e2:54:d9:cf:9e:16:f7:a3:0d:
89:18:d0:f6:7b:e4:37:62:33:ac:b9:7c:50:2f:17:
68:af:29:ac:eb:12:47:1f:55:22:4e:a8:30:db:2a:
61:17:bd:5e:01:e6:31:6d:b7:86:1c:08:69:21:97:
8d:1f:2e:93:e4:96:84:ce:c7:75:9a:ac:31:d3:52:
d8:46:c5:51:e1:28:6b:05:0d:48:13:b7:23:99:39:
53:2f:68:96:6f:cd:67:60:24:ac:4d:7e:31:b9:16:
4e:6f:7c:0d:62:a1:7f:48:4e:14:81:bf:0a:a9:b4:
19:c9:5c:03:64:ce:c3:32:8f:56:e4:9e:a2:9d:14:
0e:82:3c:9e:61:74:20:80:f1:8b:3a:01:d8:7d:e5:
af:14:e1:18:01:6b:19:38:e1:ae:a9:7d:bf:dd:8d:
51:31:d1:b4:b8:1f:d7:67:cd:63:87:53:ce:e0:92:
b2:c0:7b:79:9c:d2:56:06:79:96:80:ed:3a:7c:44:
eb:bc:bd:08:22:57:25:3c:70:4d:67:64:13:6f:70:
15:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:EB:B4:8D:36:A2:41:9F:F4:DB:18:BA:CE:EE:71:43:D7:66:B1:4B
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:bb:a0:d7:cb:17:67:65:e9:f5:05:1c:ce:3f:3b:fe:c8:a7:
05:8a:2e:d2:3c:41:fc:9a:0a:82:46:07:b9:b8:64:23:06:8c:
63:a7:fa:07:46:65:3e:3f:e4:f2:70:47:86:83:a1:43:c7:a7:
78:e6:30:34:53:c9:de:61:4c:48:b7:b5:bd:45:f9:c2:00:95:
d3:b7:0f:bb:a1:47:62:03:d5:aa:63:23:da:9e:d5:da:c3:fe:
36:97:69:f8:0f:c8:1c:1e:11:7d:df:04:dd:71:62:25:60:c8:
9f:a5:a9:05:ea:54:85:cb:31:7d:81:7a:c8:cd:12:80:e9:af:
57:b5:ab:ec:45:fb:80:aa:df:9a:e7:9f:52:b4:53:5d:26:4b:
02:66:a9:d5:2a:82:01:6a:6f:22:c8:2b:6c:af:4a:92:57:41:
1a:b6:e5:0e:81:2f:ed:b3:c8:8a:e4:81:af:5b:f6:2e:81:2f:
bd:6f:47:1f:c2:a3:f9:a2:0e:39:8b:b3:dd:66:a5:65:c1:1a:
cc:83:da:d5:7e:6a:70:db:57:ac:66:43:b8:05:f8:d5:5e:59:
ad:de:30:07:65:ee:6f:2b:02:e6:b6:18:aa:3d:b2:e6:c4:80:
1b:56:84:0e:e0:d2:e4:f3:2a:41:ef:c4:b0:7b:8c:6b:b8:a8:
8b:29:6f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:25:13 2025 by rpki-client