Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
File: sxagaE0dOLrPQzjCsB2ztBNw60U.mft (raw, json)
Hash identifier: AGcjHbrMqT9weB6wg37SesF99aS0o/oS2TSUv5rgEEM=
Subject key identifier: C0:59:2A:8B:56:96:1D:3C:6B:77:7C:A8:D6:EF:69:2A:E2:4A:DC:52
Authority key identifier: B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
Certificate issuer: /CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Certificate serial: 0197654CFEC151C996A944C2231E43265CFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
Manifest number: 0409
Signing time: Thu 12 Jun 2025 18:00:34 +0000
Manifest this update: Thu 12 Jun 2025 18:00:34 +0000
Manifest next update: Fri 13 Jun 2025 18:00:34 +0000
Files and hashes: 1: pBOBaEWXkYoN8gJBhZMkD24bH8M.roa (hash: yYFHTbbCS/jQtr+ov28WxXyLXELdV4Do2QZ+inX5RdA=)
2: sxagaE0dOLrPQzjCsB2ztBNw60U.crl (hash: 98rAUySBLJZtYzNKL2i/VYNsoOPZgwM02rkgF9CTaNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 18:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:65:4c:fe:c1:51:c9:96:a9:44:c2:23:1e:43:26:5c:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Validity
Not Before: Jun 12 18:00:34 2025 GMT
Not After : Jun 13 18:00:34 2025 GMT
Subject: CN=c0592a8b56961d3c6b777ca8d6ef692ae24adc52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:74:a3:8f:f6:80:91:c8:58:d6:b6:b0:9e:28:
65:ee:7c:9c:b7:8c:ad:81:50:e2:18:21:1e:eb:17:
6a:da:bc:3d:0b:21:31:3a:d2:04:13:37:8b:56:be:
b0:70:b0:47:be:93:b9:6e:13:41:36:ea:12:20:42:
3c:16:eb:49:64:ac:3a:b8:e2:4d:0b:a9:89:57:e8:
5c:b8:e3:29:ff:35:cc:15:69:e5:18:ca:0b:2a:d5:
1a:1c:b0:aa:43:4b:1d:04:96:5d:4d:01:ac:b9:31:
cc:d7:40:ac:44:73:2e:54:e3:63:cd:ce:92:f9:f8:
c3:58:ff:cc:aa:13:a8:8e:0b:91:23:da:c2:da:53:
97:69:0a:2d:84:64:c1:48:6a:68:b9:fd:c1:9a:3a:
fd:79:68:0b:0c:44:fb:dd:47:62:a9:e8:e0:be:2a:
c4:75:45:2e:8b:81:de:fc:0a:37:b0:96:02:b7:dd:
6f:58:47:a8:0f:53:2b:8b:7f:02:c0:b3:9e:d0:8d:
9e:f9:b3:e3:ef:fd:38:c1:7c:cd:83:b5:70:b5:d6:
fd:6e:cd:46:14:c6:97:df:84:98:fd:4d:c4:c0:ba:
1f:7d:46:a0:ef:36:06:7c:d0:3e:29:58:e7:83:45:
2a:95:1b:0d:5d:51:50:e9:d5:56:95:38:7d:00:9e:
e9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:59:2A:8B:56:96:1D:3C:6B:77:7C:A8:D6:EF:69:2A:E2:4A:DC:52
X509v3 Authority Key Identifier:
keyid:B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:b6:e5:e1:cf:6c:1e:e3:5a:15:e4:67:9c:70:fd:f6:33:4d:
a1:3d:c1:69:09:9e:6b:29:de:72:cf:8c:9c:dd:ab:91:8d:87:
a3:17:79:39:8f:8b:cc:b1:b7:ff:32:62:cd:67:85:8c:b6:13:
31:6f:87:5b:c5:2a:e2:0b:53:15:7a:4f:6b:2b:34:76:a6:ab:
5f:8c:42:e9:6d:53:a9:ef:ec:54:c9:c9:ad:d9:e0:ca:c4:62:
a9:3f:7f:a2:38:0c:53:9a:a4:f6:37:8e:35:d0:10:33:de:52:
4b:55:df:2c:cc:29:31:36:76:42:e7:7b:28:02:ff:5f:a5:69:
dc:38:b3:41:f3:fa:4f:1b:8e:ba:e8:cc:d9:4e:43:9b:7e:ab:
62:be:90:64:c3:a1:2a:12:1f:76:d2:fa:a9:f9:a4:75:d9:56:
3d:78:9c:04:da:94:c4:57:58:64:a7:e5:83:8b:2f:21:c0:f4:
a3:a9:3f:1f:ee:2d:5d:3b:0e:35:f8:86:e5:b5:a2:b6:73:33:
9b:7b:fe:d4:2a:1c:36:29:d4:35:80:5c:ce:25:53:bd:35:fa:
03:31:9c:c6:5e:e2:0a:0b:1e:44:3c:3c:c3:ab:ed:3d:f8:0b:
29:a3:14:da:33:6a:e0:55:2d:94:dc:26:23:fe:83:33:eb:a2:
ba:35:42:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 02:50:47 2025 by rpki-client