Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
File: _XBhwg1PCXYTrAMTI3pt8rsstdw.mft (raw, json)
Hash identifier: LGt2R85uecyNRN3alICiRry66D5CH0E7GrTOHNQ5OtU=
Subject key identifier: 53:44:D2:FE:30:8A:23:F8:00:80:B5:8E:80:15:05:79:4F:8C:5B:8D
Authority key identifier: FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC
Certificate issuer: /CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc
Certificate serial: 019748FA7688D8948EBE488F42D8950DABAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
Manifest number: 0111
Signing time: Sat 07 Jun 2025 06:01:03 +0000
Manifest this update: Sat 07 Jun 2025 06:01:03 +0000
Manifest next update: Sun 08 Jun 2025 06:01:03 +0000
Files and hashes: 1: _XBhwg1PCXYTrAMTI3pt8rsstdw.crl (hash: UmuUOm87PEplPdQcSClqR6I5wE9sL+zLpIks7p2BgC8=)
2: oenpcHzg8QPV-rJqJOxh7sUU4JM.roa (hash: pI8sI3HGC0XwZjUjUuA9QCNQ3HFZ2jSXO5rE2e12GoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:76:88:d8:94:8e:be:48:8f:42:d8:95:0d:ab:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc
Validity
Not Before: Jun 7 06:01:03 2025 GMT
Not After : Jun 8 06:01:03 2025 GMT
Subject: CN=5344d2fe308a23f80080b58e801505794f8c5b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c4:34:1f:aa:f8:16:75:88:50:51:82:d5:9d:
3b:46:32:bd:2a:5f:ca:14:80:92:19:20:cb:c1:f0:
a5:b9:2b:59:2b:38:c0:c8:99:35:ba:c7:4e:fe:20:
36:62:72:01:6f:08:e4:bb:ac:5c:25:4f:85:b3:d2:
38:30:b5:b1:97:51:13:62:25:72:4a:d2:04:45:e0:
f6:a2:00:71:0b:77:44:2d:dd:51:bd:5c:5b:9f:f4:
8c:4d:80:e8:9b:9a:15:57:e7:1e:63:a0:a0:fb:28:
19:b8:6c:31:21:f6:e1:11:e6:e8:80:6e:f9:5c:ac:
1a:66:ff:e4:6d:4c:ed:f3:b4:f8:8f:38:bb:d1:a6:
9c:7b:bd:f4:e3:8f:fc:39:8d:fb:5c:44:57:01:ab:
51:aa:c8:20:fa:68:8c:2a:53:78:f0:df:5e:a6:c0:
5b:f3:75:90:84:d5:5a:59:c4:91:4d:9d:2c:e9:80:
94:a3:d1:ad:d5:a9:e1:fc:aa:65:39:3e:ef:3c:25:
2d:6e:e0:e0:2b:07:5a:e9:8d:62:a1:62:fa:f4:9b:
cb:c9:b5:8c:69:69:11:8a:6e:b6:96:af:32:ae:f7:
0c:63:f6:5c:96:59:62:7b:11:0d:59:7e:db:73:f0:
ef:ae:0a:26:02:17:d6:21:2d:31:64:31:a7:ea:94:
0a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:44:D2:FE:30:8A:23:F8:00:80:B5:8E:80:15:05:79:4F:8C:5B:8D
X509v3 Authority Key Identifier:
keyid:FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:42:11:81:f1:41:38:98:95:55:16:39:cd:be:ad:eb:41:66:
1b:50:5f:7f:e2:f7:f3:5c:33:5e:de:12:d1:d6:d9:13:44:de:
ca:7a:81:74:06:1c:0c:4b:c2:b1:b6:50:65:24:52:82:a5:0e:
80:58:f4:8d:48:ea:51:60:c6:0e:19:f4:c6:8e:72:4c:e3:ef:
b5:68:8b:e4:ce:ac:59:e6:25:a9:06:d0:aa:3d:c9:1c:03:cf:
11:4c:14:ad:22:e4:40:a8:aa:d8:86:d1:57:96:5b:f0:d4:6a:
02:ee:38:86:5a:86:9b:6e:d4:45:3c:f8:b2:90:2c:9b:f2:db:
c8:20:43:9e:e8:bc:a3:6c:6d:b4:c4:f7:2f:23:f3:76:d0:c5:
09:8e:a1:fb:8f:b0:1e:74:71:99:4a:8d:30:45:5b:69:f5:d1:
35:67:f3:b7:92:7e:82:4a:64:32:f3:db:aa:59:d6:e2:1f:32:
b5:10:fb:bb:7d:47:17:72:d1:24:ec:96:47:31:bb:46:79:65:
b4:11:87:89:3d:92:62:2a:27:f2:14:a6:04:e3:05:69:80:15:
7b:b9:68:97:7e:8f:88:72:00:92:a5:c3:ca:3b:b0:06:85:9f:
dc:96:61:df:90:dc:fe:5d:93:d2:b0:4d:41:24:0e:2f:5d:47:
03:30:53:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:56:57 2025 by rpki-client