Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
File: xZKgYJDwFpQNMesbCbrhLZSxlbA.mft (raw, json)
Hash identifier: IkMotnkRJtuF1wDmkBVsmD2Zq3Qrl116OOVDjXYOl3w=
Subject key identifier: 89:FB:34:5D:DE:95:EE:9D:C9:3D:1A:C8:2E:86:46:74:DF:3C:78:C9
Authority key identifier: C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
Certificate issuer: /CN=c592a06090f016940d31eb1b09bae12d94b195b0
Certificate serial: 01974EC5BE81A6D6E7A302829B134C358836
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
Manifest number: 045F
Signing time: Sun 08 Jun 2025 09:01:11 +0000
Manifest this update: Sun 08 Jun 2025 09:01:11 +0000
Manifest next update: Mon 09 Jun 2025 09:01:11 +0000
Files and hashes: 1: tOD7ZPqas8UpTT4bdLzx0MJD5rk.roa (hash: k/eXxf7557SFB+l+Q/mWhChu1kZsTZ07A3b0mG1jAsA=)
2: xZKgYJDwFpQNMesbCbrhLZSxlbA.crl (hash: JcziJFAk1ZctWuvvv48YPe1u771SRWe9w/IkS4uJWrU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 09:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:be:81:a6:d6:e7:a3:02:82:9b:13:4c:35:88:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c592a06090f016940d31eb1b09bae12d94b195b0
Validity
Not Before: Jun 8 09:01:11 2025 GMT
Not After : Jun 9 09:01:11 2025 GMT
Subject: CN=89fb345dde95ee9dc93d1ac82e864674df3c78c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:19:b3:f1:ad:97:f9:7d:65:7d:b8:3e:cc:79:
19:bf:42:02:e6:57:2e:bb:5d:58:46:6b:c3:4d:32:
fc:7d:db:5c:29:b6:66:2b:a3:30:97:a2:b2:c4:a6:
2f:a1:15:70:0d:e6:58:6c:c5:e9:68:81:ea:19:fd:
fc:e3:8d:36:b2:2c:8e:f1:76:6b:e0:b5:c2:4d:22:
f5:8f:ca:67:26:eb:03:03:b7:48:2d:1c:22:74:75:
78:25:25:3a:12:18:ba:8e:20:6a:60:14:19:ec:ff:
25:5e:d7:10:52:e1:30:55:6f:2a:87:df:f3:a8:d1:
6b:5b:e0:62:d1:58:19:81:53:bf:25:e4:5f:c5:c0:
d4:02:30:fa:59:52:70:8a:7d:48:df:bb:c0:fa:69:
a1:29:ea:78:1e:70:ae:46:74:d5:cc:c2:a0:2f:aa:
28:9e:94:39:99:eb:c1:79:dc:7b:21:33:ff:06:7b:
0a:3a:f6:ab:34:5e:04:20:c7:96:a8:03:9e:9a:79:
61:0e:18:64:7d:3d:3b:51:eb:34:93:d9:6e:b0:37:
94:90:09:f8:ae:95:2c:af:2b:8a:f2:c3:d6:b1:3b:
90:0f:84:b0:57:48:7a:81:be:f4:21:b7:4d:78:0c:
24:88:29:0e:87:b4:c5:73:63:35:43:85:92:3f:5c:
1c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:FB:34:5D:DE:95:EE:9D:C9:3D:1A:C8:2E:86:46:74:DF:3C:78:C9
X509v3 Authority Key Identifier:
keyid:C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:c0:f3:be:99:2b:27:93:50:c4:8a:8c:a8:fb:e4:e3:28:32:
8c:b0:f7:a9:8b:2d:41:0b:a6:54:b7:b7:f9:ef:2a:01:ba:a1:
5e:50:77:53:cf:c6:d2:51:d0:13:76:ce:ef:b7:25:e5:6f:22:
24:04:33:d8:d8:6a:23:0f:57:b3:31:35:19:ba:52:aa:36:c5:
3a:6b:64:11:b5:17:65:0d:c4:0c:73:4f:2f:36:0e:0a:36:b6:
6a:42:bf:c0:12:9f:73:0a:c3:16:5c:11:7c:d4:6e:53:b3:4f:
dd:af:59:8d:88:f1:23:6a:57:51:e8:d2:fa:97:f7:6a:ed:fc:
96:6f:9d:c0:67:d8:df:63:4d:db:dd:a8:74:b0:34:b6:e7:61:
a8:d3:63:48:b4:12:ab:72:68:33:5b:e7:72:ac:69:35:8d:e6:
7d:e0:ec:c8:3e:fb:d0:86:8d:9c:94:87:df:4a:85:3b:2e:67:
8b:31:9d:c4:4a:ab:03:34:02:e6:63:cd:63:54:d1:be:5d:e0:
9c:59:76:38:a3:49:60:b3:30:4a:77:4a:d2:68:d8:eb:e1:0e:
9e:5f:25:38:91:a5:f1:d4:c8:f2:9f:70:f5:b6:04:56:c3:f4:
1e:11:34:15:fa:c7:1b:c7:28:ef:9b:ef:43:e9:b0:03:23:9b:
17:bd:dc:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:50:41 2025 by rpki-client