Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
File: XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft (raw, json)
Hash identifier: APPVBq3NMyalflwp6hcoAtwWCZNBh4pA62CilIqaZFI=
Subject key identifier: 37:2B:71:EC:54:C4:35:2B:68:1B:0B:72:16:C4:1D:85:80:3C:17:AE
Authority key identifier: 5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
Certificate issuer: /CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Certificate serial: 01974F32E78FB0638C2F295D60CD0DB2E038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
Manifest number: 0CFC
Signing time: Sun 08 Jun 2025 11:00:25 +0000
Manifest this update: Sun 08 Jun 2025 11:00:25 +0000
Manifest next update: Mon 09 Jun 2025 11:00:25 +0000
Files and hashes: 1: 1-EeSCCOFCUoz0VplGP1Lo0h-9As.roa (hash: ZLnUsrTQcRzljBuufN+eacOU/oxAjJXf2wRzESRepgg=)
2: XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl (hash: PH/qtNgc9e4YBtPP0izfURqPMx2pU0FJK5C4zaktxM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:32:e7:8f:b0:63:8c:2f:29:5d:60:cd:0d:b2:e0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Validity
Not Before: Jun 8 11:00:25 2025 GMT
Not After : Jun 9 11:00:25 2025 GMT
Subject: CN=372b71ec54c4352b681b0b7216c41d85803c17ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0d:7b:5e:8f:ae:ff:3d:ce:50:44:bc:a0:19:
5d:30:fe:3a:42:52:f2:fd:53:d0:f6:62:2a:54:df:
e8:e7:5c:0b:85:82:86:3c:06:79:f8:af:2e:04:ae:
8d:d4:16:04:b1:ab:23:2b:b0:81:f0:2e:88:39:92:
74:29:35:4a:ed:30:99:5c:e2:1f:be:42:19:e9:11:
86:39:dd:c2:0f:cb:15:ea:31:62:b2:33:e3:19:a2:
c7:11:6c:9a:92:f9:73:c4:59:22:44:af:11:0a:1d:
f9:86:29:22:4b:9c:2e:0c:dd:a9:ac:a8:7e:83:4f:
25:d3:5b:7c:b9:f5:f3:e3:d6:21:d8:ba:81:4c:9b:
20:0c:34:04:46:af:7b:0b:af:45:0a:92:fb:66:74:
91:56:df:3a:b1:ca:87:6b:f7:b3:63:de:ab:f9:a2:
b7:80:35:e8:a9:4c:25:b2:58:17:c0:16:cf:1c:0f:
72:ee:ba:d5:77:bb:fd:b4:cd:47:e2:c6:c8:ae:61:
ba:f8:6a:88:96:3a:64:ac:5c:63:7b:e1:1b:c9:18:
26:4d:74:27:b7:55:a1:fd:26:71:d3:9c:94:a6:b6:
ed:ee:15:7e:2c:3b:63:15:97:a1:51:8c:2d:74:f5:
b2:05:2d:32:93:c3:5b:f9:cd:79:36:00:af:d6:11:
9e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:2B:71:EC:54:C4:35:2B:68:1B:0B:72:16:C4:1D:85:80:3C:17:AE
X509v3 Authority Key Identifier:
keyid:5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:4b:53:1f:ab:4a:c8:bc:6f:20:c5:74:08:73:e6:53:51:c9:
02:77:4e:fe:82:4b:e7:9b:48:7e:dd:d8:54:87:fd:f1:0c:3e:
77:ab:c2:0e:a3:db:ea:70:f0:d4:b5:50:c3:03:b4:2c:da:7d:
f8:4f:7c:84:81:bc:a5:8e:c0:fb:5a:ab:3d:ab:fe:ae:c7:55:
67:16:8e:a1:64:6b:65:9e:6d:fe:ea:ca:af:42:72:94:e4:dc:
1e:ad:91:06:24:1d:c2:9f:da:54:f0:3a:c4:86:a6:01:ff:1a:
1a:ba:fe:e9:b1:d6:f6:8f:7d:1c:d6:3e:8d:88:2c:e5:d1:70:
a6:aa:8e:14:1d:63:58:f4:cd:20:79:ff:8e:ba:99:69:c9:5a:
d5:fd:e3:cc:b4:f5:cb:60:34:9f:11:72:3f:fb:50:97:4f:78:
23:ef:77:e3:3d:c6:d4:c5:09:a4:fa:d9:0b:2c:5b:04:d1:31:
8c:81:8a:54:05:12:e1:c8:9b:3d:00:42:f8:de:59:db:f9:96:
a3:23:94:83:e6:e2:ee:7b:4d:8c:00:9f:35:e5:69:03:d3:99:
3d:a4:c5:d6:c3:c7:9e:15:a8:3b:1b:1c:82:4b:c1:37:c0:2c:
41:77:2b:c2:f0:a1:6c:30:e6:f0:a9:fc:49:77:b6:6b:4f:d6:
be:dc:e3:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:32:25 2025 by rpki-client