Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
File: XfEaGA3xeZTkitMxhyz9AK2augQ.mft (raw, json)
Hash identifier: 5Mu2Owuqq6w2aSubntA8PS5Z2pkVf+8B2bAvqJXFDQA=
Subject key identifier: D6:AF:89:57:27:DD:3F:90:01:D9:8F:25:10:73:80:7A:A8:49:E2:60
Authority key identifier: 5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
Certificate issuer: /CN=5df11a180df17994e48ad331872cfd00ad9aba04
Certificate serial: 0197801F675BC08B22A9F469757AE4B53EE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
Manifest number: 1599
Signing time: Tue 17 Jun 2025 23:00:31 +0000
Manifest this update: Tue 17 Jun 2025 23:00:31 +0000
Manifest next update: Wed 18 Jun 2025 23:00:31 +0000
Files and hashes: 1: Ncjyog8MF3WbF2yJkOiT3QGNrY0.roa (hash: mac69omVU5l4vKMkEn8yNVakFQh8bBKDgGibhl+5Pew=)
2: XfEaGA3xeZTkitMxhyz9AK2augQ.crl (hash: MtWE5C96FWTH+R1XPXHo77Mxs6+iQnJjh/ze3eyw7p8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:80:1f:67:5b:c0:8b:22:a9:f4:69:75:7a:e4:b5:3e:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df11a180df17994e48ad331872cfd00ad9aba04
Validity
Not Before: Jun 17 23:00:31 2025 GMT
Not After : Jun 18 23:00:31 2025 GMT
Subject: CN=d6af895727dd3f9001d98f251073807aa849e260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fd:14:cd:88:d5:84:b4:1f:f0:e8:aa:55:f7:
19:47:1c:2b:1f:8b:30:ab:2a:a1:6a:dc:c4:67:a1:
b1:2c:02:04:d6:27:4a:83:ec:7e:f4:a5:47:32:81:
b5:75:1e:3f:36:68:f3:8f:42:85:0c:0c:c3:37:28:
13:2c:78:98:b2:ba:d4:52:51:a1:ee:47:06:87:63:
05:52:14:8b:da:33:ed:85:d3:36:4e:e9:50:c2:b2:
63:48:5c:38:f1:30:02:5c:8e:e9:02:a4:33:28:8c:
1e:9e:1b:b9:30:04:6c:f6:4e:83:a1:08:57:5e:13:
2b:de:c1:ff:84:be:78:a5:3f:05:9c:9f:5b:94:32:
f2:7f:a0:ec:61:06:b1:3e:5c:68:a5:24:0f:05:99:
f8:4a:83:a8:80:12:4a:35:af:02:2a:ec:d2:e4:66:
7e:39:eb:7c:33:0b:f9:85:4b:e4:14:5a:f0:43:f2:
27:bf:70:95:96:46:05:00:5a:bc:3e:36:91:15:9a:
b4:6a:77:b5:64:d6:fb:33:bf:d4:9c:b5:73:8d:c9:
d3:f8:3f:da:47:be:45:c8:11:1e:37:7b:ad:38:3c:
70:b1:95:aa:1b:b2:09:83:b8:3a:58:17:e4:40:f6:
1f:cc:b3:7f:ee:90:07:c0:29:b9:95:f2:82:50:c8:
9c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:AF:89:57:27:DD:3F:90:01:D9:8F:25:10:73:80:7A:A8:49:E2:60
X509v3 Authority Key Identifier:
keyid:5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:e6:a1:19:e6:95:ca:2c:08:49:f9:4c:3f:01:e3:2b:b0:94:
77:4b:fb:18:4b:53:7a:d7:55:44:81:77:aa:5c:53:9b:53:0b:
9a:65:7f:8e:08:15:c3:2f:2f:ce:a5:64:3b:2c:22:d8:d1:db:
b1:80:cb:5f:9d:4d:39:a7:b0:4f:11:72:b2:93:09:78:63:23:
05:f3:94:4f:f5:73:97:a0:66:63:fd:39:91:45:32:3d:8c:c9:
87:cb:b5:bb:57:65:1e:cc:62:d8:98:bb:17:63:f4:4f:d8:be:
45:66:7d:5f:20:cd:7b:20:c8:5b:63:7f:e1:0d:86:22:f7:84:
45:81:02:52:89:ad:7f:01:c2:08:60:99:05:5d:24:04:e0:5e:
18:08:35:b0:f4:22:b2:7d:0a:52:c3:bd:46:eb:9f:d6:76:08:
a1:01:b8:93:40:c0:61:08:54:05:c7:33:b8:34:be:f7:79:d5:
cf:58:9b:eb:0e:d4:f6:d2:45:e0:6d:b1:10:7b:7d:94:70:9e:
ec:71:6e:b5:9a:3a:d3:61:9e:88:93:9a:43:52:25:d9:1a:b3:
96:e8:7a:91:ca:8e:a3:98:9d:95:4d:c0:4c:85:2f:d0:fc:38:
ee:74:98:fb:dc:4e:76:59:b5:b8:22:bd:ac:ff:af:cb:f1:61:
1e:46:1f:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 06:01:47 2025 by rpki-client