Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier: V4ltws57M9f5U5TbjwUaoLIP0YSOuhMdX6Fygn8SARQ=
Subject key identifier: 8B:9C:83:02:76:FF:1F:18:D7:42:78:A6:E4:60:93:3D:48:79:87:DD
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer: /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial: 0197602798E8BF281987CC5D14FAFACD0DE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number: 13DD
Signing time: Wed 11 Jun 2025 18:01:37 +0000
Manifest this update: Wed 11 Jun 2025 18:01:37 +0000
Manifest next update: Thu 12 Jun 2025 18:01:37 +0000
Files and hashes: 1: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: 857MAqRsoC8WWHwk5hZLTY7AQ3UaDldVKgrPFuxcgcc=)
2: zUVgbIXYeTGVKXvGEymmIIswak0.roa (hash: byi69vgfiULR5t5etKbYt0ap14VdTPxIUc5JBAXpbBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:60:27:98:e8:bf:28:19:87:cc:5d:14:fa:fa:cd:0d:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Validity
Not Before: Jun 11 18:01:37 2025 GMT
Not After : Jun 12 18:01:37 2025 GMT
Subject: CN=8b9c830276ff1f18d74278a6e460933d487987dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f4:7a:85:51:c9:e6:2f:02:d6:ca:3f:20:95:
5b:39:ef:3f:9c:7b:aa:0f:99:e1:c7:41:f2:25:6e:
99:c9:ca:f7:bb:c4:77:13:53:6f:4c:83:10:4d:0e:
a9:eb:9c:1e:8b:6d:cc:ce:f6:21:0c:a4:3d:8f:26:
08:23:ed:d4:1b:bb:a8:0c:5a:f1:bd:93:04:ff:2b:
2d:a6:04:78:6f:60:bd:bd:f7:52:8b:b8:1a:1b:34:
39:eb:29:39:a5:73:6e:13:a2:2c:b6:0b:1d:7b:f9:
2c:b3:18:b1:4b:17:a9:9b:ac:e7:35:da:eb:1d:54:
f8:90:6b:bb:a3:a1:8f:ef:0a:69:7f:c1:52:ba:f9:
19:02:82:44:9a:05:c5:58:bb:e4:b7:b0:b7:5f:4a:
7c:7f:d2:1c:83:8d:78:dc:74:66:ff:14:92:be:80:
8e:e4:21:72:45:4d:59:82:88:fe:56:b7:df:1b:eb:
aa:7e:73:c5:19:b7:34:dc:55:1d:4c:ad:65:39:ee:
db:e6:d0:9b:b0:87:9f:29:4c:b7:37:cc:f6:d5:be:
d3:32:60:3f:53:d0:40:c0:e2:3b:10:d7:af:97:a2:
8d:9b:bb:96:0d:3e:32:1e:e4:ff:e6:fc:d2:7a:5d:
f5:09:e4:6b:a2:08:3a:01:ac:ef:43:a3:f5:bf:f0:
17:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:9C:83:02:76:FF:1F:18:D7:42:78:A6:E4:60:93:3D:48:79:87:DD
X509v3 Authority Key Identifier:
keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:e6:41:48:01:3e:c4:c0:2a:20:a1:22:5d:f4:ff:a8:b4:b8:
9c:ad:84:1c:5a:0a:95:e7:b1:7f:af:51:f9:05:98:70:d7:f6:
1b:57:10:1b:fa:7d:68:72:b6:8d:5e:fd:13:cd:93:f6:b5:1d:
a4:ea:c8:40:59:4b:23:49:04:c6:3d:6d:f2:67:0d:10:d0:0d:
5c:e0:c7:22:0b:fb:94:a6:54:8a:e6:d8:be:ab:15:9e:d7:cb:
16:a7:04:e4:95:5e:8c:13:41:0a:5f:54:7e:0d:8b:75:0f:f5:
ef:10:e3:5f:43:70:0c:31:cb:8c:03:5b:47:1b:20:dc:f0:87:
cd:0f:9f:c0:9d:93:28:6a:4d:20:e0:ea:b6:27:2d:d2:50:c5:
7e:40:64:70:d8:47:7a:a8:00:60:40:5c:63:4e:05:a1:b4:13:
1b:d7:aa:6a:87:42:c3:fb:f0:99:69:a0:47:37:3a:a2:5c:02:
46:c2:0d:bf:f3:02:92:cc:4b:a4:cb:0b:37:a3:ad:7d:e3:e3:
5a:13:92:af:26:9c:a2:78:0b:c6:c0:31:a7:81:2f:c8:85:e0:
03:ad:89:71:85:90:69:34:d7:b7:7f:da:6f:4c:73:66:b6:f1:
ad:bd:cf:97:72:10:97:e9:e1:ab:04:ee:a4:b8:bd:9f:1e:11:
fb:bf:b8:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:39:00 2025 by rpki-client