Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
File: xFyYQwiFYolxMHxZtc8kFoIQI3g.mft (raw, json)
Hash identifier: OnVukcde4Egb15VvfeY8CqvXb5fRfJCjNnufoRNo2eA=
Subject key identifier: 2D:D9:81:DD:F6:22:AB:A2:8B:3B:41:8C:C9:27:73:6C:F1:17:52:54
Authority key identifier: C4:5C:98:43:08:85:62:89:71:30:7C:59:B5:CF:24:16:82:10:23:78
Certificate issuer: /CN=c45c98430885628971307c59b5cf241682102378
Certificate serial: 01974CD70B681F99CE8063D7B4A912FF2827
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
Manifest number: 157F
Signing time: Sun 08 Jun 2025 00:00:50 +0000
Manifest this update: Sun 08 Jun 2025 00:00:50 +0000
Manifest next update: Mon 09 Jun 2025 00:00:50 +0000
Files and hashes: 1: jvr-TtmshyO-21Athyko7-oCA0g.roa (hash: YbFNgrbQ4nYeYFpzPZPmunVsALPP8JY0whWvWBRLdqk=)
2: xFyYQwiFYolxMHxZtc8kFoIQI3g.crl (hash: WyNi+e5UrLvJ/cj8roAKJ5VWtNrWGft3Rea4o4r1Yl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 00:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d7:0b:68:1f:99:ce:80:63:d7:b4:a9:12:ff:28:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c45c98430885628971307c59b5cf241682102378
Validity
Not Before: Jun 8 00:00:50 2025 GMT
Not After : Jun 9 00:00:50 2025 GMT
Subject: CN=2dd981ddf622aba28b3b418cc927736cf1175254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:76:26:f1:5a:82:f3:70:d7:e6:1a:63:54:41:
32:48:79:b2:00:96:3d:d5:5b:f9:ab:d4:76:94:63:
79:37:e4:8e:e7:95:74:8c:c6:b4:4f:71:bb:1b:b5:
7b:48:74:15:7b:7a:23:74:6e:ba:19:53:3a:69:78:
4c:72:03:4f:9c:f8:54:4f:18:8c:ae:8c:54:fc:83:
c3:2b:fc:87:7e:ce:38:0f:30:ee:8e:74:23:db:9b:
fa:e5:0b:5b:d6:a1:98:bf:e1:7d:2a:43:a1:65:43:
5b:49:dc:5d:22:8b:50:5f:94:db:b1:65:71:ad:bf:
25:f5:bc:6b:80:08:ad:03:0c:3f:07:ab:84:08:88:
b6:53:82:13:42:61:1f:86:42:b8:62:f0:82:c8:6c:
1d:dc:24:8d:e9:9d:a9:7f:71:6e:93:05:8b:e2:97:
63:40:a7:53:0f:6c:3f:35:28:3c:d5:6c:fb:f2:23:
29:a4:df:dc:2a:81:ae:c9:7c:b1:3d:13:f1:56:6a:
f5:0c:5e:12:4c:3b:cb:c8:d2:18:11:c1:2e:a0:a7:
42:8e:57:eb:b7:30:42:54:44:47:ff:8d:1c:9e:ae:
8e:81:1c:33:5f:78:f9:0c:b2:82:17:54:80:fd:c5:
a8:fb:6f:59:c1:c7:a8:9b:22:55:1a:fc:c6:76:07:
15:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D9:81:DD:F6:22:AB:A2:8B:3B:41:8C:C9:27:73:6C:F1:17:52:54
X509v3 Authority Key Identifier:
keyid:C4:5C:98:43:08:85:62:89:71:30:7C:59:B5:CF:24:16:82:10:23:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:8a:59:83:5f:45:59:ae:64:b1:eb:51:92:e3:ec:e0:af:95:
54:52:1d:e3:97:5d:f1:d8:c3:37:2c:19:0d:82:6a:03:a9:1f:
75:df:b6:3b:c7:cc:30:88:d9:1f:3e:44:2f:c2:75:db:7e:d1:
a9:d9:16:0a:89:bc:30:f4:c1:81:45:38:5a:4c:3e:dd:5b:de:
ed:54:1a:b2:bc:cc:fb:f5:f9:74:ae:ae:2f:50:2c:82:b4:f9:
a6:a1:ee:67:28:e1:ef:7d:fa:b1:ec:62:13:d6:59:3a:76:33:
2f:67:6b:9c:79:eb:bf:87:44:a2:3e:7c:db:20:b4:88:31:69:
85:7f:c9:3c:30:6d:16:a0:7a:ea:e2:b4:36:15:b4:d7:1f:ab:
31:7d:19:1e:a5:74:bc:23:20:5e:56:37:4d:89:c0:b5:99:c3:
ea:ac:ff:6c:e0:ae:cb:df:24:d3:b2:74:ac:7a:16:ed:2f:b6:
e5:e0:6e:ea:45:97:f0:fa:48:83:79:0c:e3:8f:36:ee:ec:2d:
00:e1:9f:b0:f0:d6:83:94:6a:49:a2:08:a5:95:94:ea:11:6f:
aa:53:43:8f:9c:22:c1:30:73:13:13:d6:c0:8b:1a:d2:76:a9:
e8:59:d6:77:25:86:9f:8b:59:90:8a:58:82:6c:0a:f1:cc:84:
b2:f5:50:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:24:42 2025 by rpki-client