Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
File: XbWMRb7iUfx1daY-W0kN7GEU5so.mft (raw, json)
Hash identifier: Pb1fEvYJzTqNEEn9l1AuBN/4fxFaFGXhG1YeyaqXyFI=
Subject key identifier: 82:AF:E4:03:DA:00:F7:2A:A8:03:2A:0B:65:64:F1:C5:58:69:99:48
Authority key identifier: 5D:B5:8C:45:BE:E2:51:FC:75:75:A6:3E:5B:49:0D:EC:61:14:E6:CA
Certificate issuer: /CN=5db58c45bee251fc7575a63e5b490dec6114e6ca
Certificate serial: 0197462FC3985D14EA9741163F869CCEF859
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
Manifest number: 1326
Signing time: Fri 06 Jun 2025 17:00:24 +0000
Manifest this update: Fri 06 Jun 2025 17:00:24 +0000
Manifest next update: Sat 07 Jun 2025 17:00:24 +0000
Files and hashes: 1: XbWMRb7iUfx1daY-W0kN7GEU5so.crl (hash: jR6cunWvOc0vqkacHJz7pgbDOywGSVpHUo4JJklLHkY=)
2: rIHO9BGM8FbqBMmG5rRph997QKc.roa (hash: 8yht5PsqRnylMZKjON2/XT2bc+vyA/zY0feaEVSh3nw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:2f:c3:98:5d:14:ea:97:41:16:3f:86:9c:ce:f8:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5db58c45bee251fc7575a63e5b490dec6114e6ca
Validity
Not Before: Jun 6 17:00:24 2025 GMT
Not After : Jun 7 17:00:24 2025 GMT
Subject: CN=82afe403da00f72aa8032a0b6564f1c558699948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:74:c7:2b:87:ed:9b:b5:28:b3:e5:5e:ba:0c:
2d:70:87:12:57:18:f4:39:be:fc:ab:3a:3b:da:37:
08:f1:98:b4:67:f2:86:5f:69:e2:c2:ce:38:bb:24:
41:a7:bf:61:fa:75:3e:2a:28:00:9e:8e:4b:07:fb:
16:cc:c9:e2:f8:d8:11:99:cc:07:79:d5:78:06:31:
de:f6:73:35:a5:cc:b9:70:93:a9:68:dc:ad:9d:de:
b3:eb:a1:14:34:e4:e6:04:0d:07:a7:f4:ad:ce:5b:
5f:df:35:b3:37:42:37:cc:b2:95:b8:b4:0a:a4:dc:
41:39:92:8e:c6:00:c0:6b:35:db:3d:cd:27:22:28:
08:87:21:7c:40:83:0c:c7:2b:14:bb:43:ba:c6:84:
43:3f:72:ba:29:90:02:b0:62:28:46:97:6c:66:4f:
03:d5:5f:54:b4:6e:09:38:ad:40:ee:ca:2d:ce:8a:
b5:4e:48:4a:ad:3c:13:e7:f0:bd:71:f1:a0:a1:fe:
64:ec:6e:75:cd:2e:6c:2a:0f:8d:6e:47:e0:8f:3e:
32:d3:35:0a:41:35:9a:c9:25:31:42:9c:26:de:82:
04:f7:d2:af:84:e4:bf:9a:f4:62:ac:b7:ec:32:9d:
d5:7f:0a:39:96:17:83:39:93:a3:0e:b9:f1:0b:24:
9c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:AF:E4:03:DA:00:F7:2A:A8:03:2A:0B:65:64:F1:C5:58:69:99:48
X509v3 Authority Key Identifier:
keyid:5D:B5:8C:45:BE:E2:51:FC:75:75:A6:3E:5B:49:0D:EC:61:14:E6:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:1d:e8:da:f6:ed:e6:8b:58:01:f1:95:0b:45:eb:fe:d1:b2:
2b:95:80:0c:42:ba:9a:e4:9a:6c:83:40:08:f9:97:c8:02:dc:
9d:dc:23:86:c7:31:7b:d5:09:ee:c5:46:5a:eb:94:e6:79:58:
dd:b2:ef:de:31:12:c9:fc:0e:57:44:6f:8a:5f:e1:39:f9:9c:
c4:f7:73:31:e8:4e:f6:44:e8:4d:30:0b:67:16:ce:b3:05:5a:
be:e5:1d:97:36:50:3e:b7:a4:5f:e4:88:7c:18:32:e9:25:cb:
66:d0:80:6e:ea:e5:b4:53:1e:38:d9:c8:9d:32:5d:5d:d8:09:
b8:ad:70:62:57:b0:d3:f3:0b:73:59:44:a8:4c:ff:ce:15:20:
04:f0:49:b7:39:0d:09:be:13:dc:fe:d3:1f:9f:21:dd:e7:86:
36:26:a3:9e:bf:da:3b:21:db:cc:ee:6d:46:5e:f9:8e:4d:98:
a1:46:96:78:68:58:f4:65:0b:3d:61:a9:ed:cb:7f:fd:72:bc:
60:94:30:00:ed:51:8a:1d:dd:d9:f2:d1:84:a9:fe:fc:89:8a:
43:0b:af:89:c5:d8:c4:27:6f:3d:f4:b0:d3:60:eb:8c:4e:df:
06:50:d6:0d:d0:37:b6:d2:a4:0f:7d:85:4c:9d:b5:21:8b:c0:
ae:23:0d:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGL8OYXRTql0EWP4aczvhZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYjU4YzQ1YmVlMjUxZmM3NTc1YTYzZTViNDkwZGVjNjEx
NGU2Y2EwHhcNMjUwNjA2MTcwMDI0WhcNMjUwNjA3MTcwMDI0WjAzMTEwLwYDVQQD
Eyg4MmFmZTQwM2RhMDBmNzJhYTgwMzJhMGI2NTY0ZjFjNTU4Njk5OTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHTHK4ftm7Uos+VeugwtcIcSVxj0
Ob78qzo72jcI8Zi0Z/KGX2niws44uyRBp79h+nU+KigAno5LB/sWzMni+NgRmcwH
edV4BjHe9nM1pcy5cJOpaNytnd6z66EUNOTmBA0Hp/Stzltf3zWzN0I3zLKVuLQK
pNxBOZKOxgDAazXbPc0nIigIhyF8QIMMxysUu0O6xoRDP3K6KZACsGIoRpdsZk8D
1V9UtG4JOK1A7sotzoq1TkhKrTwT5/C9cfGgof5k7G51zS5sKg+Nbkfgjz4y0zUK
QTWaySUxQpwm3oIE99KvhOS/mvRirLfsMp3Vfwo5lheDOZOjDrnxCyScPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIKv5APaAPcqqAMqC2Vk8cVYaZlIMB8GA1UdIwQY
MBaAFF21jEW+4lH8dXWmPltJDexhFObKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGJXTVJiN2lVZngxZGFZLVcwa043R0VVNXNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9hZGY5M2QtOThkYS00MWNjLThhNmQt
OWMyYWQ0NzVhMjMxLzEvWGJXTVJiN2lVZngxZGFZLVcwa043R0VVNXNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9hZGY5M2QtOThkYS00MWNjLThhNmQtOWMyYWQ0NzVhMjMx
LzEvWGJXTVJiN2lVZngxZGFZLVcwa043R0VVNXNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArR3o2vbt
5otYAfGVC0Xr/tGyK5WADEK6muSabINACPmXyALcndwjhscxe9UJ7sVGWuuU5nlY
3bLv3jESyfwOV0Rvil/hOfmcxPdzMehO9kToTTALZxbOswVavuUdlzZQPrekX+SI
fBgy6SXLZtCAburltFMeONnInTJdXdgJuK1wYlew0/MLc1lEqEz/zhUgBPBJtzkN
Cb4T3P7TH58h3eeGNiajnr/aOyHbzO5tRl75jk2YoUaWeGhY9GULPWGp7ct//XK8
YJQwAO1Rih3d2fLRhKn+/ImKQwuvicXYxCdvPfSw02DrjE7fBlDWDdA3ttKkD32F
TJ21IYvAriMNDw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:18:56 2025 by rpki-client