Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: g5uYheMwsVZQjJlrTO5hIF7yCJjqrJPC++dzmue55Ng=
Subject key identifier: CE:56:70:FB:84:1D:2A:24:3C:21:C5:9C:2E:22:2F:58:80:E7:E1:A2
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 01974A43D93D2BF4A4930A16A0B455FDAE1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 071B
Signing time: Sat 07 Jun 2025 12:00:49 +0000
Manifest this update: Sat 07 Jun 2025 12:00:49 +0000
Manifest next update: Sun 08 Jun 2025 12:00:49 +0000
Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: QkJ2t0IXQY/G0bf8zQL4Qe/jnK6X4VQtaiRuh+tHpkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:d9:3d:2b:f4:a4:93:0a:16:a0:b4:55:fd:ae:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Jun 7 12:00:49 2025 GMT
Not After : Jun 8 12:00:49 2025 GMT
Subject: CN=ce5670fb841d2a243c21c59c2e222f5880e7e1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:8e:87:d1:ed:c8:24:e1:a4:f6:11:a3:8a:
10:f0:d0:98:14:aa:8b:a3:cd:e6:ef:ab:0d:ff:03:
ec:e7:6d:19:65:5f:74:dd:ef:8c:2e:c2:c6:f2:7e:
5c:81:b8:a0:90:9e:3b:57:c4:7e:80:d1:1e:cb:c3:
32:89:33:b8:38:3f:9f:b9:c8:05:93:30:5b:1e:04:
77:90:8e:eb:97:4d:42:84:60:c5:94:1f:b4:bb:a6:
f6:5a:4e:e3:36:f2:81:a8:2e:88:bf:96:76:7a:f1:
99:49:2e:d0:a7:65:fc:32:48:6f:80:2f:8d:f5:a1:
2b:cb:a1:7b:ba:4d:60:3b:94:a5:65:a1:7d:ac:f5:
71:9f:7a:0d:1b:9c:1a:f8:a9:b1:a9:53:9e:5b:90:
b8:57:e4:95:0d:87:c0:0e:c4:b6:50:f9:99:57:e2:
0d:42:be:50:f9:37:d8:1f:cb:ac:0e:b3:ad:c5:ad:
fc:21:75:80:81:1d:bc:9e:65:c8:61:b4:8c:5c:4e:
b7:ff:b3:f6:9a:bc:45:eb:33:79:df:2f:cd:f4:94:
0a:af:c3:b8:4e:e9:fb:4d:08:e2:3a:b0:48:94:b3:
d7:7f:af:12:a3:98:86:18:9d:ce:f0:af:10:46:e4:
9c:42:c4:5f:99:de:aa:a1:73:c9:e9:35:41:f5:10:
1a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:56:70:FB:84:1D:2A:24:3C:21:C5:9C:2E:22:2F:58:80:E7:E1:A2
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:7a:4c:ba:13:75:8c:23:04:33:7b:37:14:71:d5:0b:42:c2:
70:5e:ac:77:d5:a7:f4:5d:4e:93:8d:b1:16:5c:f8:23:b9:66:
cb:64:92:59:50:fa:22:0a:d5:ce:55:1f:4b:13:aa:fa:3c:24:
43:d4:5c:f2:27:5b:51:93:34:53:d4:b9:b7:39:1c:d7:f3:b7:
4b:b0:41:08:fa:d6:80:9b:00:dc:11:41:f9:cf:d8:fd:c4:75:
72:48:ec:52:ee:fc:e5:03:af:5d:bb:66:64:bc:96:9e:aa:d0:
46:c8:59:d1:b7:4e:60:a3:76:68:bc:1a:37:4b:2a:dc:92:1d:
ea:b5:a1:6d:62:e1:5e:82:49:4e:76:e4:62:a0:c5:e2:25:a3:
8d:74:32:4d:fa:26:21:8e:c9:76:35:33:de:1c:8e:53:8a:1b:
d0:c7:ed:3e:24:9c:f6:d6:bd:db:68:da:38:e9:27:05:1a:4c:
b1:14:28:0f:64:3d:4f:ff:5a:a5:41:cf:41:78:29:20:69:91:
b0:8a:57:9b:d3:b1:83:af:8f:b3:9e:f0:94:67:28:e0:80:45:
72:3a:c6:84:74:c8:51:e7:54:d7:3f:9c:1f:46:02:38:72:e5:
7c:ad:c5:01:90:fb:a9:8b:dd:4a:7c:ba:40:98:98:5d:b2:bb:
81:fb:02:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:14:55 2025 by rpki-client