Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
File: _XjxP_qS8HTr5VfSotKa0Noz5dg.mft (raw, json)
Hash identifier: gPBbmpK0x36G+3Yu2nOLBCdHDaFWrYqDtPpKAOoMYbQ=
Subject key identifier: 09:26:35:52:CD:CC:7E:3B:5A:68:75:39:23:94:33:40:92:37:38:26
Authority key identifier: FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
Certificate issuer: /CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Certificate serial: 01975BA4EA9188E95CD22B81796486C01BD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
Manifest number: 0ADE
Signing time: Tue 10 Jun 2025 21:00:23 +0000
Manifest this update: Tue 10 Jun 2025 21:00:23 +0000
Manifest next update: Wed 11 Jun 2025 21:00:23 +0000
Files and hashes: 1: IPVqTow4BPog0VgWrmL6j3UlRyc.roa (hash: yHocQSt6Dh1L30jflXp+Oc+mQ08tmbAfLa5FFYWt/64=)
2: _XjxP_qS8HTr5VfSotKa0Noz5dg.crl (hash: fg04BOHLdavA601KXQS/oS7g/hYgBgIxsQuUd/3VMX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:a4:ea:91:88:e9:5c:d2:2b:81:79:64:86:c0:1b:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Validity
Not Before: Jun 10 21:00:23 2025 GMT
Not After : Jun 11 21:00:23 2025 GMT
Subject: CN=09263552cdcc7e3b5a6875392394334092373826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e5:b9:c9:a8:08:31:14:d9:6d:6d:8c:96:d0:
15:ba:7b:91:d4:36:57:9d:7c:87:7a:3d:35:d9:87:
b9:f0:a8:7d:43:02:9e:33:b5:15:0f:ea:98:ce:f7:
cf:71:e3:c8:80:1e:a1:42:94:91:b7:f2:e9:a2:a7:
04:c4:fc:3f:6e:90:a6:13:e7:76:75:9a:be:b0:2d:
17:91:64:f4:50:30:db:88:82:06:78:fe:3e:46:4f:
ba:ce:13:d7:2c:9b:1f:49:88:22:4e:16:d5:91:38:
35:9a:75:d8:d3:a0:df:0d:02:71:9b:48:98:09:83:
ac:6d:ee:05:b3:2c:64:08:d2:d7:db:a3:ad:ad:0e:
20:0b:46:de:34:b0:16:fc:db:4a:6e:8c:f7:15:c4:
a2:8b:e6:3c:04:b8:bd:fd:6f:16:bb:13:cc:80:75:
e5:79:6c:a0:a8:32:38:d2:60:ad:ce:df:ca:72:75:
67:88:cd:26:60:6d:50:a1:d6:7d:ab:3e:1a:c9:e0:
bf:4f:ca:c9:ee:d6:c9:d7:79:ad:e4:8c:bd:d4:bf:
70:cc:ba:23:44:a5:a8:a3:80:42:ef:21:64:b8:89:
a9:99:c5:03:2c:94:63:cb:d7:77:26:44:f9:59:e9:
59:36:f2:6d:1c:b3:ba:75:e8:5b:86:cd:0b:09:75:
ce:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:26:35:52:CD:CC:7E:3B:5A:68:75:39:23:94:33:40:92:37:38:26
X509v3 Authority Key Identifier:
keyid:FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:7e:31:13:ea:a4:db:d3:91:21:6b:3d:a3:84:3e:a0:c0:14:
ae:b1:42:00:99:40:f1:67:42:9c:6b:27:34:36:89:06:d8:f1:
05:13:ac:33:f7:18:f1:02:bd:20:c4:7f:16:6b:5a:fe:48:13:
37:9a:3c:86:54:b9:eb:cf:f7:5c:97:2c:57:61:5e:5e:1d:3d:
02:93:b6:31:76:eb:21:06:d3:70:bc:49:09:83:41:19:76:03:
b0:6b:1b:d0:7d:11:6b:b7:af:2a:bb:96:13:b8:c2:b3:2d:ea:
27:67:1a:ba:e7:e1:9d:ac:36:d2:44:a9:96:0e:01:03:db:f9:
c2:67:2b:4f:a2:39:6c:32:61:93:a2:7f:ef:33:72:a0:9c:65:
e0:30:01:ff:ff:b6:33:a7:25:69:f8:7e:77:8e:6d:f6:b7:5f:
d6:b7:76:b4:99:e5:b9:31:f5:3d:78:4e:3e:5d:34:23:e7:f0:
93:4e:79:32:66:5e:8e:f4:81:76:48:bf:3e:ae:a9:22:70:15:
82:b5:82:a8:e3:6a:08:ff:10:bd:d9:72:49:c7:0b:2b:a8:58:
e1:99:7b:a5:9d:6e:1d:5a:3e:86:f4:9f:59:0f:f8:a5:e9:f5:
36:f9:84:5b:c0:2a:4c:3f:1d:fa:a1:48:df:81:30:51:eb:e1:
b5:64:bb:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 00:42:54 2025 by rpki-client