Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
File: xJkOwgER9C-2LzmoHHOSqSGVW_I.mft (raw, json)
Hash identifier: RbjSOlKSSeOCiFn3jAYCGc3G+43LP0iYsQhyWQLXRr4=
Subject key identifier: 02:05:90:4B:9A:35:34:56:04:29:22:B9:E0:E2:41:EA:07:42:1F:4D
Authority key identifier: C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
Certificate issuer: /CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Certificate serial: 0197470B8677C4E74C8FC0FCC619DA8168CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
Manifest number: 01DC
Signing time: Fri 06 Jun 2025 21:00:26 +0000
Manifest this update: Fri 06 Jun 2025 21:00:26 +0000
Manifest next update: Sat 07 Jun 2025 21:00:26 +0000
Files and hashes: 1: S6SgkEKXXupg9NGyg85ew2MKuNo.roa (hash: Ccy6wkPiSmvGfzLUcrIC/arlCjWDtB/tLTVQ150opBk=)
2: xJkOwgER9C-2LzmoHHOSqSGVW_I.crl (hash: HBGNspTgrW/Y4wb5Qj4p3FQVtkkJm5k02S1tI6Z0/KI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:86:77:c4:e7:4c:8f:c0:fc:c6:19:da:81:68:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Validity
Not Before: Jun 6 21:00:26 2025 GMT
Not After : Jun 7 21:00:26 2025 GMT
Subject: CN=0205904b9a353456042922b9e0e241ea07421f4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:96:f7:0c:62:3e:da:b2:ac:a2:28:78:46:d6:
30:d2:90:bd:7a:fe:6d:2d:9d:da:68:80:9d:33:6e:
fe:c0:7b:70:4e:7a:87:49:9f:36:74:a1:69:13:fb:
fe:a6:d2:df:f5:ce:b2:11:33:bc:ad:6c:1b:07:e2:
a9:d4:d7:6a:14:11:31:e5:f5:f5:2b:44:b0:13:68:
5b:80:27:a6:7f:09:ed:26:99:8e:88:a5:d9:f2:bf:
fd:a0:75:b5:83:b4:2a:63:3c:99:58:cf:ff:82:20:
55:d4:3a:76:d3:45:56:d6:15:2a:82:dd:00:1c:c8:
83:35:92:96:58:f8:dd:95:e1:02:06:29:8f:6b:9c:
e9:64:74:95:09:16:be:56:d3:7a:2f:bc:a8:09:7e:
9d:08:df:b8:1e:54:38:d9:e2:d1:7e:49:66:ff:28:
3f:39:82:b1:66:09:9b:83:e0:ac:1e:31:d0:7d:81:
91:05:b7:40:8a:b0:f3:85:b4:0f:f1:64:1a:1e:52:
ef:68:43:f5:6f:a8:bc:ec:9a:98:b3:01:03:2b:b2:
e4:97:2b:c1:e9:a3:d7:d3:df:32:2c:77:44:b6:32:
9c:e9:67:c5:ef:2f:2d:c2:1a:d8:12:27:19:6a:b6:
37:f8:9b:07:c3:d0:a7:d9:1e:3a:98:b1:cc:0e:6b:
b6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:05:90:4B:9A:35:34:56:04:29:22:B9:E0:E2:41:EA:07:42:1F:4D
X509v3 Authority Key Identifier:
keyid:C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:5e:de:0e:1e:24:a3:3f:30:b8:64:63:8f:d4:01:f8:0a:da:
b3:17:1d:bc:9f:e9:54:31:92:7a:a5:66:17:67:be:d3:01:53:
a7:44:5e:03:fa:40:c2:db:ec:1e:97:6d:87:0f:c1:b6:c3:78:
fa:46:7c:84:a9:8b:46:4a:00:f5:9f:7a:27:6f:19:a1:42:0d:
fa:70:32:46:e1:25:51:e7:bd:2f:a1:1d:5f:f1:c1:5f:4c:79:
a0:13:3f:e9:02:1e:d4:16:ba:87:4b:bb:52:7b:bd:d9:7f:55:
8e:04:e1:b7:98:3c:ae:5c:dd:4d:62:e6:65:3e:a4:0c:2a:28:
c3:82:39:07:be:24:c1:c5:50:2f:70:52:73:69:ec:01:69:e9:
31:c6:f9:9b:b3:78:84:96:01:06:c5:31:b5:7c:22:06:9e:68:
88:64:79:ec:32:25:9d:22:4c:27:f5:18:14:71:13:a4:ce:26:
eb:c5:d3:d5:1c:13:8f:86:7c:74:bf:be:52:67:1c:08:81:e7:
fd:44:29:6f:c5:b7:b9:33:00:47:56:75:81:dd:c2:13:43:07:
29:49:29:ef:b5:8a:ae:69:8c:b2:c1:8e:83:63:2d:e5:c0:87:
f8:b7:88:32:27:ff:65:be:98:c1:ea:ac:c1:5a:6f:db:5f:93:
54:58:75:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:08:37 2025 by rpki-client