Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier: 28LH/hEWRiimg6028UrU76+rt/QB1NBUogJIbEZsG00=
Subject key identifier: 1C:E5:88:A1:B2:B1:98:FC:2A:2E:49:D4:6F:86:35:FE:26:54:59:B5
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer: /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial: 01975490F37C6135092AED37E10F8989E876
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number: 13D7
Signing time: Mon 09 Jun 2025 12:01:14 +0000
Manifest this update: Mon 09 Jun 2025 12:01:14 +0000
Manifest next update: Tue 10 Jun 2025 12:01:14 +0000
Files and hashes: 1: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: C49Xv3YU3FPkU1V2pEYKcVHyhtHVChWBnWdLJzw+p30=)
2: zUVgbIXYeTGVKXvGEymmIIswak0.roa (hash: byi69vgfiULR5t5etKbYt0ap14VdTPxIUc5JBAXpbBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 12:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:90:f3:7c:61:35:09:2a:ed:37:e1:0f:89:89:e8:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Validity
Not Before: Jun 9 12:01:14 2025 GMT
Not After : Jun 10 12:01:14 2025 GMT
Subject: CN=1ce588a1b2b198fc2a2e49d46f8635fe265459b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6f:a6:2c:8a:82:d0:e2:06:d4:1e:81:87:a4:
a2:4d:43:7a:89:9a:ec:c7:87:cf:7e:24:87:eb:3a:
f1:a6:e7:ac:fd:ea:35:54:25:9a:0b:74:81:33:6d:
7f:f2:1b:67:56:64:57:40:4e:09:b9:e8:9e:04:15:
8a:62:83:75:c6:a7:37:8b:3b:e8:c9:ee:1d:af:73:
02:42:da:85:0b:2e:a2:5c:a8:96:50:71:15:48:3f:
fd:94:1c:17:89:ea:6e:34:a5:6c:5e:84:9f:c0:4a:
5f:2d:82:7d:01:ea:ff:42:79:1e:e1:bd:24:d0:f7:
41:a4:a3:89:1f:13:80:b7:0d:be:da:59:cc:ce:56:
7d:1b:81:d9:b2:f8:55:6e:e6:c8:bd:a9:5d:d9:bc:
89:6b:57:ff:97:8b:93:51:9c:b2:1f:cb:c6:93:2d:
d3:0d:4e:51:20:95:fb:9b:8a:b5:0f:1c:f2:ce:cc:
99:b2:d9:53:65:8d:1c:fd:17:15:56:12:6f:4c:12:
f0:98:d1:cd:4e:ab:14:ff:bc:0f:de:d7:9e:be:f8:
37:59:82:f8:43:27:75:38:f3:1e:ca:15:51:dc:f9:
e7:75:b5:80:3a:57:8e:e4:9a:7b:d2:4b:45:4f:42:
5b:7b:0c:8c:bf:9b:d9:99:8a:8f:b9:aa:ea:dd:5b:
69:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E5:88:A1:B2:B1:98:FC:2A:2E:49:D4:6F:86:35:FE:26:54:59:B5
X509v3 Authority Key Identifier:
keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:a9:a0:eb:09:cd:9f:4f:31:53:70:3b:29:c1:e4:01:82:94:
e2:24:c8:38:a8:fe:be:91:c8:5f:b7:08:35:7e:be:2e:a5:79:
83:eb:2b:17:50:b7:12:ee:95:86:ee:84:53:59:b9:71:36:02:
f3:aa:d7:5f:8d:08:e8:86:8a:ac:55:ce:12:48:12:90:dc:66:
7b:4a:18:e3:65:77:6f:b5:4e:8c:0f:d0:3a:d1:f9:16:e2:42:
06:dc:97:8f:26:33:db:26:6e:a1:24:5d:af:9b:7a:88:6c:6c:
29:e1:a2:e1:d6:8e:b4:3b:00:3d:cd:6e:fe:40:05:2b:f7:02:
49:19:17:54:ad:b8:73:37:1e:32:8f:38:03:6a:a9:0c:28:be:
49:60:2e:f3:35:3b:da:2a:27:73:f3:0e:86:dc:63:c5:13:e2:
ab:d9:eb:3e:50:db:4a:c2:f1:31:55:8b:a7:db:b0:43:bb:39:
40:4c:15:d9:17:b8:9f:1f:aa:43:e0:f9:ff:b7:ea:98:3f:40:
f6:b8:9c:ea:0d:54:18:b8:f6:22:b4:e6:d4:ff:58:ad:bf:c8:
61:14:39:d8:59:f7:10:f2:93:4c:84:4f:3f:e8:fd:cb:39:72:
20:23:df:59:0e:12:7c:0c:ae:cf:25:a0:3c:41:0f:4e:e8:00:
cb:ec:56:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 23:08:30 2025 by rpki-client