Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
File: XzHZebcQ7eIGiCOIGqYRrROvVFk.mft (raw, json)
Hash identifier: ynzqNFWmzht9wUyBt5uynXYfT+uT/WMuc/JbQgTitOM=
Subject key identifier: CA:95:83:78:35:CA:F2:EE:67:46:54:B5:EF:4F:C4:9F:B8:CE:B2:89
Authority key identifier: 5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
Certificate issuer: /CN=5f31d979b710ede2068823881aa611ad13af5459
Certificate serial: 0197488CC9BC5468635A3DAC016FF5399026
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
Manifest number: 0B31
Signing time: Sat 07 Jun 2025 04:01:15 +0000
Manifest this update: Sat 07 Jun 2025 04:01:15 +0000
Manifest next update: Sun 08 Jun 2025 04:01:15 +0000
Files and hashes: 1: 7VePb56Lb2mDp_DoHqAJOVOs_T8.roa (hash: V7IpcMoqQADg7SX3r725vYH2jPknDmi+ikdfBjQyP5c=)
2: XzHZebcQ7eIGiCOIGqYRrROvVFk.crl (hash: /Q/hcqVi3f/nR3iacR9Pnh10805Uzdox9deeXSRdb+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:c9:bc:54:68:63:5a:3d:ac:01:6f:f5:39:90:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f31d979b710ede2068823881aa611ad13af5459
Validity
Not Before: Jun 7 04:01:15 2025 GMT
Not After : Jun 8 04:01:15 2025 GMT
Subject: CN=ca95837835caf2ee674654b5ef4fc49fb8ceb289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:32:94:2a:1b:49:7e:fa:cd:f9:ee:a9:e8:42:
c5:c0:73:9e:77:e9:64:02:7c:43:ad:d4:88:71:fb:
8a:74:66:c6:26:f4:ca:1f:da:67:3c:73:1c:48:e7:
96:dd:dc:3a:94:2c:a8:f9:51:78:1a:91:42:1d:81:
16:39:81:0b:33:c6:8c:18:f7:37:8d:6c:9f:0e:34:
fc:46:b6:2e:af:3a:c2:35:fb:f4:64:3c:34:a6:75:
04:1a:bb:a5:2f:dd:54:e7:a2:2f:89:cc:c6:bf:8b:
95:e2:f8:80:59:c8:81:46:26:0b:df:db:d5:b4:d0:
92:c8:a5:af:b2:32:04:ef:a1:38:a5:4b:76:ed:58:
28:05:29:de:61:96:32:3b:33:5a:49:e4:71:a1:dd:
97:fd:07:42:9b:ca:24:f2:7d:9b:78:b4:c7:1a:0f:
a0:21:7b:28:58:18:24:9d:a6:46:8e:7d:21:a5:b7:
81:c5:a2:83:25:29:b4:45:92:8b:a6:db:ff:d4:f1:
b2:81:ef:a1:2e:c4:77:34:da:63:b5:b8:45:0c:4d:
df:5e:ac:0e:0b:b3:4c:4b:66:70:74:5f:bc:fc:e5:
20:4a:80:df:ca:8a:76:35:08:1b:f8:c5:c7:a2:43:
5b:b6:d2:ac:7e:94:f1:14:31:de:50:58:10:a6:41:
71:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:95:83:78:35:CA:F2:EE:67:46:54:B5:EF:4F:C4:9F:B8:CE:B2:89
X509v3 Authority Key Identifier:
keyid:5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:a4:0c:da:54:16:95:8d:1f:95:8b:29:4e:c4:2e:b6:4e:0d:
35:5f:e4:23:43:68:8d:42:a8:6a:8b:9b:50:76:6f:d1:9b:39:
f8:d2:c1:01:e5:92:e7:f3:a1:2e:53:05:2c:89:03:15:43:25:
38:14:31:3a:0d:73:73:fd:7b:08:85:94:76:1b:8d:6d:d1:37:
45:c1:0b:d5:a6:5b:90:88:a2:61:77:7a:24:e7:57:ba:93:c4:
36:fa:eb:1e:08:a1:df:3f:4e:a9:e7:f8:a6:14:d4:14:6d:e8:
95:8d:db:61:54:f0:87:b1:40:85:55:42:dc:1f:d7:ce:f8:37:
f5:e4:61:45:b4:d4:fe:11:3d:2c:1d:31:bc:9a:c0:a8:c2:3e:
67:aa:c7:f3:4e:9a:02:69:04:b3:2a:d8:c1:3d:fc:16:fe:99:
4c:29:6b:9b:0f:62:99:50:c8:cf:86:1e:12:c2:e7:c3:9d:b1:
c5:e7:c4:af:4f:da:2b:9d:64:42:8a:38:60:39:e0:37:62:85:
74:d0:1d:5d:24:d4:b7:cc:44:88:1b:6b:98:ec:ee:a2:b6:04:
21:49:5e:39:c4:0d:4d:10:6c:5c:fa:47:0e:c3:79:4c:73:b7:
dc:d6:44:89:17:e0:05:c1:35:19:b1:91:32:74:70:c6:8b:ea:
28:96:62:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:07:13 2025 by rpki-client