
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier: Pf9nlZS6FPk5k/FGTAqsXy0gmy2z2TLWkVvZi5hvGrk=
Subject key identifier: 17:42:63:D9:9F:26:A9:54:CF:52:12:C9:A0:CC:65:01:69:FE:D7:53
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer: /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial: 0197586DC829C3805E61565AE0399D7C434D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number: 13D9
Signing time: Tue 10 Jun 2025 06:01:18 +0000
Manifest this update: Tue 10 Jun 2025 06:01:18 +0000
Manifest next update: Wed 11 Jun 2025 06:01:18 +0000
Files and hashes: 1: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: e4YqOHh1ryrDG2ePWxuHILif3/cNDdiLFMSq+jakj3I=)
2: zUVgbIXYeTGVKXvGEymmIIswak0.roa (hash: byi69vgfiULR5t5etKbYt0ap14VdTPxIUc5JBAXpbBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 06:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:6d:c8:29:c3:80:5e:61:56:5a:e0:39:9d:7c:43:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Validity
Not Before: Jun 10 06:01:18 2025 GMT
Not After : Jun 11 06:01:18 2025 GMT
Subject: CN=174263d99f26a954cf5212c9a0cc650169fed753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:df:33:72:95:96:ec:ad:45:f2:1a:2a:35:1f:
c6:5c:ac:33:4a:24:68:97:e7:af:d6:02:e5:45:06:
cc:bc:9e:0d:a5:5f:5e:1c:d6:68:4a:a1:b4:49:b9:
19:8e:5a:80:8f:92:1e:ce:88:73:08:d0:1a:46:4a:
8d:60:02:e2:9c:a2:1b:c2:b6:b9:69:6d:ab:24:f9:
62:18:12:d2:e7:cd:67:72:0a:35:7a:07:b5:65:00:
52:a3:31:7e:90:c0:25:bb:0c:85:79:22:08:d4:25:
6e:84:f2:bb:e6:2e:85:b7:4e:84:c9:0a:2e:0a:ba:
9e:38:fd:f2:9e:d4:0a:26:af:72:1b:d7:5d:b4:44:
e8:1e:a9:a1:b1:9f:10:9f:00:56:ec:a5:cf:79:50:
ab:e2:6a:7c:5c:e9:02:28:16:4c:bc:15:e8:8b:59:
65:b9:8d:56:0d:47:32:67:70:a8:13:a8:78:90:7c:
2c:91:b8:41:bb:f9:5c:f4:a5:aa:04:7a:29:e5:61:
63:29:ab:1a:d1:57:f8:df:0b:e9:6f:e1:ad:8f:77:
64:c7:49:14:39:4a:75:fb:f8:83:77:2f:22:a6:fa:
bf:18:4a:ba:bf:cf:ac:1f:22:01:b8:9c:eb:e9:d1:
6d:91:24:23:71:ae:19:09:81:e9:9e:f5:e4:17:f6:
30:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:42:63:D9:9F:26:A9:54:CF:52:12:C9:A0:CC:65:01:69:FE:D7:53
X509v3 Authority Key Identifier:
keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:cf:3f:ce:d9:ce:27:33:d1:29:d4:9d:99:2e:94:d9:5a:5c:
a3:29:4e:54:97:65:8d:b5:49:f7:6b:ab:72:cb:a1:9a:25:c8:
73:e1:5c:4f:b6:76:69:dd:fa:31:8b:86:af:6e:b3:5d:37:4d:
72:61:34:2d:ff:0a:03:86:08:a7:12:1a:82:d1:f1:28:c6:e2:
2a:90:65:11:9e:ee:78:d5:69:53:e0:fd:14:71:67:c7:9e:a4:
96:e2:af:5a:04:b3:e9:26:51:52:49:f4:11:7e:4a:01:64:8b:
a0:85:4d:81:e4:46:dd:46:7f:12:ca:82:f1:7f:a7:65:92:ec:
71:ff:de:6b:39:c1:2d:b5:46:f3:10:2d:ab:db:5b:72:0a:bd:
6a:9c:a8:9d:76:f7:c1:47:d4:36:8b:43:b4:b6:9e:3f:5b:30:
79:46:00:28:e2:17:cb:1e:9b:88:bc:97:ed:27:14:96:b8:7e:
f7:16:e8:13:00:a0:f6:7d:85:63:45:86:25:5a:62:69:c5:30:
8e:ba:b4:98:f3:d5:c7:8b:31:e9:13:e7:bb:8d:95:35:ec:d0:
7c:ee:91:05:1b:d0:de:58:a3:37:1b:a5:a3:2b:4e:c2:3c:73:
36:ce:0e:64:33:a3:59:48:4d:b2:c4:b5:1b:42:00:c1:f1:b1:
2b:ad:9f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 14:34:11 2025 by rpki-client