
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier: MT80o9p4y/TfAt9ZJQQI7KXonSeCeaZ/CqOzSvLb4mQ=
Subject key identifier: 3F:38:58:BC:AF:17:63:52:4F:F4:18:DC:14:5C:8E:BC:D3:DD:2C:40
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer: /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial: 01975A5C5885BA1674B418FB88E266655265
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number: 13DA
Signing time: Tue 10 Jun 2025 15:01:30 +0000
Manifest this update: Tue 10 Jun 2025 15:01:30 +0000
Manifest next update: Wed 11 Jun 2025 15:01:30 +0000
Files and hashes: 1: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: O4n0OMeSsMJ5joVO7/J/WJFr+md41K0IAQasVIO/cXw=)
2: zUVgbIXYeTGVKXvGEymmIIswak0.roa (hash: byi69vgfiULR5t5etKbYt0ap14VdTPxIUc5JBAXpbBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5a:5c:58:85:ba:16:74:b4:18:fb:88:e2:66:65:52:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Validity
Not Before: Jun 10 15:01:30 2025 GMT
Not After : Jun 11 15:01:30 2025 GMT
Subject: CN=3f3858bcaf1763524ff418dc145c8ebcd3dd2c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1e:f1:71:b0:5b:4f:78:b3:fa:1b:95:a1:df:
e9:ab:fe:d8:2b:46:df:e9:00:00:9d:a7:89:33:34:
a9:35:ea:e9:a9:6b:2c:ba:75:7f:89:b5:e8:a8:0b:
8c:5f:38:02:50:f8:8b:37:93:f1:3a:d1:a5:32:5b:
83:aa:95:3b:77:2d:6b:68:21:a5:e6:4c:48:3f:cd:
b5:04:ae:bb:ac:f9:ee:ca:a4:be:d5:49:ca:8d:92:
a4:46:d9:f9:cd:6e:7c:46:e8:8d:1b:68:ad:03:5f:
14:c1:08:74:ab:5f:65:57:89:00:81:04:69:e7:79:
99:cb:cd:77:06:19:93:31:9e:f8:63:6b:fc:f3:ff:
6b:8b:7e:79:32:04:47:52:13:7e:76:3a:53:b8:d8:
d7:da:04:3d:ac:e5:87:a9:44:ff:05:68:5e:42:3b:
8a:73:ee:4d:6a:f5:e1:ab:67:84:41:6a:1b:2c:af:
ba:6a:af:06:63:ba:23:99:4b:fb:1a:ec:09:d3:6e:
07:f9:6a:2f:ce:c3:c2:de:85:5b:f7:24:32:9c:4d:
5c:77:ea:11:72:6a:0b:89:5f:82:31:16:a8:6c:30:
d5:46:cf:d1:1e:34:8f:7e:ac:cb:59:4a:25:cf:0f:
8b:c6:f4:bc:9c:ee:54:c4:21:8a:51:f6:7d:14:6a:
00:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:38:58:BC:AF:17:63:52:4F:F4:18:DC:14:5C:8E:BC:D3:DD:2C:40
X509v3 Authority Key Identifier:
keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:57:e7:7e:b6:dc:62:4a:44:89:1e:04:32:98:6b:55:c5:e6:
74:ac:0c:47:eb:cf:16:4d:36:2b:22:63:be:64:d7:cb:f9:b1:
3f:08:9f:fd:9c:88:cd:b7:70:2d:a4:cd:14:b3:9c:f0:94:db:
d5:52:6b:4a:75:4f:2f:44:9f:84:37:d4:e3:6a:76:ca:bd:4e:
1a:04:e5:35:9d:13:9f:6f:ff:32:80:df:c2:7e:8a:0e:c8:57:
5f:b7:65:3e:2e:41:1a:ab:b5:87:24:1d:b9:d4:2a:f2:43:ea:
67:e7:00:4e:89:f1:3e:6b:50:29:2b:7c:62:48:8e:48:19:64:
59:af:07:dc:b2:14:1c:a6:a1:3b:fa:cd:f8:2a:6b:c4:8e:9a:
24:a8:35:7c:f6:6a:31:cd:e5:04:d9:9e:28:ec:8c:30:ef:31:
d5:7a:37:90:ba:ea:ec:10:cc:7b:bb:12:17:47:82:bd:93:be:
b4:1a:00:81:9e:b6:bc:eb:52:17:ce:59:6c:69:d2:09:ed:53:
50:9a:7e:2a:24:85:58:83:aa:ef:3e:a3:e1:78:24:fb:a0:c7:
a1:c6:59:55:ae:b8:ac:6d:98:fd:89:4b:e3:5b:5d:25:79:8d:
94:4e:3c:fc:43:e9:4c:8a:96:29:92:55:7f:8b:e2:f8:8a:94:
a4:e4:f4:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 20:56:11 2025 by rpki-client