Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
File: XwImpwTPYg6yAA8n56kZznMJkb4.mft (raw, json)
Hash identifier: PHTF16UKrvdVDhX7lAXyCa82VseTk25OcYwCkAxD4YA=
Subject key identifier: 9D:7D:1D:DD:91:BB:E7:88:6B:C0:FC:B0:BC:84:C4:29:4D:B3:A8:8B
Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be
Certificate serial: 01973E76ABFEE4AD1C9736768EB9E02F1E27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
Manifest number: 0DD5
Signing time: Thu 05 Jun 2025 05:00:54 +0000
Manifest this update: Thu 05 Jun 2025 05:00:54 +0000
Manifest next update: Fri 06 Jun 2025 05:00:54 +0000
Files and hashes: 1: P2NRYwvD64-ChL8WHsL3n2VNc0o.roa (hash: ieevRAfzDccOVGuN3ZGz3jBO2k67pRtiKtsN5CR5hf4=)
2: WePWXi4BVJvCbK70G_Bl8LvCy1A.roa (hash: KcxOlT86bPrqOuZYUTgExqyOPNUmMSnB0pr0K4kluRk=)
3: XwImpwTPYg6yAA8n56kZznMJkb4.crl (hash: 2b8E8VN0SVSoJkeqBddwkKiLJGHw/nFi4qXvEreKEso=)
4: ZN7LHZSqu6VYidqfpIPOfCxL2L4.roa (hash: HOkUkg1LrwSaHvSseUfJQzAJzpgcTNuaZCYPqCnldN0=)
5: fm5A4Lmh3Dyoqm8phCUbdJ-SJ50.roa (hash: y1l9jzGOcVZ0GENozcALgbMdp6ZfPx8sRn42vZfb0eg=)
6: mOQsXh6W-nguYweUEP-GggtQ8co.roa (hash: BRX6qGv8sEq7HbLRmf+hKda82RdBa8GI6j+263A+qA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:3e:76:ab:fe:e4:ad:1c:97:36:76:8e:b9:e0:2f:1e:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be
Validity
Not Before: Jun 5 05:00:54 2025 GMT
Not After : Jun 6 05:00:54 2025 GMT
Subject: CN=9d7d1ddd91bbe7886bc0fcb0bc84c4294db3a88b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:12:29:4d:bc:01:a7:f9:67:fa:1c:c1:85:00:
2d:36:70:e4:c2:9f:bc:33:04:c8:b0:4d:c8:ed:b7:
7c:a5:fd:19:52:a1:f4:aa:e5:78:9c:66:04:b8:2a:
bd:73:d0:50:40:03:b6:59:37:4d:35:58:0a:84:13:
45:b0:b5:4c:45:52:9c:19:cf:62:fc:fc:d8:d1:87:
91:a1:3d:c8:04:7d:70:dd:2b:0f:ed:2d:04:62:15:
e4:d5:92:11:8e:41:e5:70:da:7d:65:b7:a4:8b:1b:
31:92:02:3e:eb:ce:24:d3:a3:cd:21:3d:9b:84:00:
11:23:2b:64:00:e7:59:1b:54:b0:d9:91:da:77:d4:
08:14:d1:66:0e:a6:ae:d7:da:06:82:41:fc:89:e1:
e5:a0:0f:68:f9:15:f0:2e:5e:9b:08:fc:2d:ac:f6:
c4:8e:da:73:0c:6d:7a:bc:37:34:f8:9a:2c:a0:3b:
87:d1:6d:9c:40:42:31:48:c5:d6:f2:9e:38:49:6d:
8e:c1:c0:65:8f:39:2c:ff:b8:33:7e:78:30:36:65:
82:7a:39:2c:34:52:e3:1c:7d:51:21:9e:9d:20:3a:
fe:05:8a:63:ed:4b:04:f1:44:de:99:40:75:29:58:
fa:e0:90:a9:4d:42:d7:50:f4:db:6d:9e:62:41:a4:
bb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7D:1D:DD:91:BB:E7:88:6B:C0:FC:B0:BC:84:C4:29:4D:B3:A8:8B
X509v3 Authority Key Identifier:
keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:9f:59:97:9b:2f:95:4d:cd:3b:17:6b:a6:ea:e1:83:cc:42:
12:c3:15:42:b1:bc:4d:45:86:bf:06:1d:22:75:eb:93:f0:f2:
33:5d:89:f0:09:4b:89:59:79:a8:e7:63:ce:75:32:d6:7b:25:
eb:a9:37:ba:b7:6d:54:1e:1f:f1:10:77:52:06:bf:23:f3:e9:
79:e6:f5:dd:06:ec:95:2d:ff:5c:0e:d7:99:63:6f:7c:5a:9e:
0c:1e:4a:d8:f7:0f:f0:73:26:f9:a3:9b:92:bf:5e:a4:2d:0c:
02:58:74:82:3a:91:db:1f:78:43:85:3e:4a:bf:bb:83:c1:3c:
0e:e9:ff:e7:14:7e:43:d7:f2:38:1e:2f:c2:a9:ec:98:ed:8d:
89:7e:6c:7c:1d:ca:b7:1e:c5:01:e8:76:0a:cc:44:5f:9d:75:
da:f5:22:27:a3:aa:ab:ed:0b:a0:43:fd:2b:76:e3:2d:1b:e8:
79:22:10:a1:4a:e3:1a:ca:ff:b3:0f:50:ea:90:ee:24:b3:ab:
0d:0a:1b:b0:bb:92:17:b3:0e:08:df:82:45:37:94:54:32:3f:
bc:e2:04:34:85:91:28:21:d9:85:b2:77:2d:b7:bc:d0:89:01:
05:79:9d:0c:32:05:5d:2e:d5:ca:9d:db:fb:5d:fb:bf:12:ee:
69:5b:b7:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 06:47:56 2025 by rpki-client