Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
File: xTG2PRGmzC0c5p4TEch6waanBzM.mft (raw, json)
Hash identifier: tE/IJEFbdzytNw2GHfF4LdpXCf5Z6GjiLA7Pxd4JPEg=
Subject key identifier: 85:46:FF:A3:46:DE:45:8B:36:8B:C2:7D:88:70:4E:40:5D:B6:1C:83
Authority key identifier: C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
Certificate issuer: /CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Certificate serial: 01974AE8A619CA8654B750DEBEF245D28C24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
Manifest number: 0E01
Signing time: Sat 07 Jun 2025 15:00:50 +0000
Manifest this update: Sat 07 Jun 2025 15:00:50 +0000
Manifest next update: Sun 08 Jun 2025 15:00:50 +0000
Files and hashes: 1: 3cKiOm3cqL9AuF9PS6f53tN4Gdg.roa (hash: HiF4cbbVkgMNvvCZGg36cGuMWinu6Z8X1/cmYfYlH0w=)
2: 7dlaDlkKgi4dAirWDUWBZGBGqcU.roa (hash: p1fbv33BP/4U3m5pS2Ws4rI2vfUa3r6QuSWQWQR+Iw4=)
3: xTG2PRGmzC0c5p4TEch6waanBzM.crl (hash: UDj8Tyl7AWylj7sGIxWgqPe518tW1iNehq8FLmiN1NU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:a6:19:ca:86:54:b7:50:de:be:f2:45:d2:8c:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Validity
Not Before: Jun 7 15:00:50 2025 GMT
Not After : Jun 8 15:00:50 2025 GMT
Subject: CN=8546ffa346de458b368bc27d88704e405db61c83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9c:95:ec:f3:2d:01:a7:cc:71:8e:4a:f6:f6:
d7:e6:db:49:b3:68:59:32:86:58:f3:e8:9d:f8:c9:
c4:69:52:63:a5:3c:f6:2f:eb:e0:c3:36:15:f7:a6:
d0:1b:ca:de:e6:24:a8:ec:b0:4f:b7:cb:80:15:0e:
74:59:aa:69:dc:46:1b:c1:7c:8b:a8:f7:bc:c0:ba:
f5:e6:c6:78:4e:9f:83:e5:d0:4f:ab:5d:91:ef:55:
3b:03:e8:c8:cf:22:e2:f2:b7:33:f0:6d:dc:1e:47:
9d:4e:ec:c7:f3:9f:fc:b6:05:79:ba:3c:97:fc:db:
73:b1:4b:e0:1f:40:2e:73:04:40:ac:92:d8:90:b0:
d3:c1:88:3e:ad:4e:87:ed:b9:8a:19:63:b9:c8:0c:
d2:ef:2e:08:b7:3a:a4:d3:1e:6e:21:65:e5:e2:fa:
cf:d2:5e:83:88:ca:d5:d0:19:9e:90:2a:9f:b8:40:
4d:43:28:17:c2:1b:f1:4a:3d:35:b7:52:cc:2c:f0:
05:38:0a:15:a9:c4:47:ab:18:27:71:e2:42:06:8b:
38:da:19:54:14:50:08:7a:79:a6:26:1d:a6:23:fc:
eb:0e:ce:48:ed:41:c9:96:3b:18:3b:36:85:c9:d4:
f1:f2:31:98:1d:e6:c7:f4:75:67:b1:47:5e:f2:fd:
09:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:46:FF:A3:46:DE:45:8B:36:8B:C2:7D:88:70:4E:40:5D:B6:1C:83
X509v3 Authority Key Identifier:
keyid:C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:e9:7d:be:be:4f:39:11:76:81:bd:f0:45:15:eb:71:17:43:
c4:0c:11:e8:5d:02:e6:32:1c:07:51:e9:1c:ed:67:b6:5b:d4:
c9:62:3c:1d:3a:64:64:6f:09:a9:26:5a:ca:d9:03:da:60:88:
4e:5b:4c:48:07:94:bb:68:da:dd:b6:08:c6:89:e8:f0:fb:be:
3b:9c:24:05:ec:89:96:e7:1d:c6:e7:8a:3b:22:5c:35:b6:c6:
fc:6f:4d:4d:cc:a7:cf:9e:68:35:c2:f0:f3:94:17:05:2c:3c:
e3:ce:2a:5f:74:ad:58:c7:42:96:67:51:93:75:61:c7:ad:94:
79:3c:72:ef:2d:d6:5b:d4:d6:cb:98:a3:d3:44:2e:06:49:27:
f6:7f:84:cf:e6:31:92:70:f8:c2:c3:e1:03:23:c0:0a:f1:a4:
64:6b:65:17:67:19:a5:f3:50:d3:62:a9:ce:5c:d0:da:81:0f:
d2:ea:ca:df:cd:0b:9c:51:d0:d8:bc:a8:45:33:f4:7b:9e:87:
e1:07:b1:16:e1:b2:4c:c7:6b:1b:c0:1c:9b:c1:7c:aa:3b:41:
c1:c5:ce:e8:2f:c1:54:15:4d:2e:09:27:1b:c0:0c:3c:30:19:
71:a9:1c:e9:22:d2:57:db:66:2b:dd:2d:ae:aa:1a:b8:9c:fd:
16:6b:81:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:11:02 2025 by rpki-client