Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
File: x0HESpzVjhJWkGY32TXDGQ9_6xo.mft (raw, json)
Hash identifier: 0In5I+pMPBZibHns00JOUzz2coHtCMqey0+NgJfKk9E=
Subject key identifier: F1:AF:9F:1D:4D:27:65:25:30:CB:6D:02:47:70:85:A2:74:86:AB:56
Authority key identifier: C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
Certificate issuer: /CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Certificate serial: 019770AC911C763322749CE927F8B8B8D73E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
Manifest number: 1332
Signing time: Sat 14 Jun 2025 23:00:46 +0000
Manifest this update: Sat 14 Jun 2025 23:00:46 +0000
Manifest next update: Sun 15 Jun 2025 23:00:46 +0000
Files and hashes: 1: qptSZ2XpOAOxaz7moTgQi3lsLeM.roa (hash: KtrtO/sBSgHAN1gAhTfDKw+KYUTZI/b5RNJ8EjfK/UU=)
2: x0HESpzVjhJWkGY32TXDGQ9_6xo.crl (hash: 0DxINH1hlRUl1Be52385uFGO2LvQaD6fpSpAep4PfM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:91:1c:76:33:22:74:9c:e9:27:f8:b8:b8:d7:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Validity
Not Before: Jun 14 23:00:46 2025 GMT
Not After : Jun 15 23:00:46 2025 GMT
Subject: CN=f1af9f1d4d27652530cb6d02477085a27486ab56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:73:05:53:49:fb:2a:ae:ee:91:c9:ee:46:b5:
73:7c:65:4e:a7:52:5a:23:cd:c9:7d:84:e9:fc:b7:
2b:38:b9:cb:a3:61:44:3a:f5:6f:ce:d0:a7:22:a1:
21:04:a3:10:d5:3f:35:3f:a1:c7:bb:35:52:27:9a:
e5:c7:dc:ef:4c:bb:5d:ef:dd:06:cc:6c:b2:26:55:
27:51:51:9b:30:1e:a2:d7:48:a9:66:a8:7e:1b:9a:
52:95:d3:a7:31:6b:af:76:26:77:b2:7f:5d:51:f6:
cf:f9:10:a5:0d:47:50:17:30:e5:ba:14:6a:33:6a:
92:08:b7:7f:44:e9:1a:e2:61:98:08:5e:37:b7:26:
03:ba:ef:5c:81:88:8f:58:7d:0d:71:0b:61:75:00:
a6:68:01:6b:2a:f3:f0:f8:1b:7c:10:6e:7d:bd:1f:
20:f8:8c:be:4a:fb:fd:d2:a7:ab:fa:5a:04:8e:39:
06:2b:c1:90:f2:0c:98:8c:83:7c:48:be:67:dd:0b:
f3:fb:13:2f:fd:c2:90:4d:0c:05:a4:a8:27:76:43:
63:e0:e4:f3:e7:e0:d0:89:91:7e:87:cb:0d:d5:25:
e8:76:69:14:f3:ec:99:52:f4:cf:7c:b3:0d:58:9f:
f9:6f:ac:71:71:39:c3:a3:85:3a:4d:23:cc:f4:c3:
60:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:AF:9F:1D:4D:27:65:25:30:CB:6D:02:47:70:85:A2:74:86:AB:56
X509v3 Authority Key Identifier:
keyid:C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:b7:84:f1:f5:9b:fd:4c:8b:09:68:18:cb:d6:d5:01:41:ac:
c0:4b:47:32:df:35:72:cd:2b:47:03:8c:d1:99:6d:56:b6:5e:
8a:9d:24:fe:b9:09:13:54:f1:04:36:0b:2b:5e:6e:f9:27:f3:
14:bd:a5:4a:46:1d:df:e2:72:4c:38:e2:c6:d2:16:ef:93:f9:
68:dc:b0:4c:b4:08:2a:7e:44:d3:d4:0b:bf:1d:db:a4:7f:56:
74:f3:57:ed:28:ad:48:13:d7:04:3f:a9:32:e4:48:9c:bc:0b:
9e:f1:de:65:8c:e5:83:e4:aa:bc:9d:60:49:af:d3:c0:53:6f:
7d:99:af:d5:fa:9c:74:15:db:15:55:d5:da:74:db:35:05:ee:
11:08:58:8f:f7:7d:96:09:93:70:8b:d2:ba:57:82:23:43:b6:
0f:8b:33:eb:05:a5:ab:81:7e:84:01:35:e3:6f:76:dc:0f:83:
a5:8d:13:b3:34:0e:0d:c8:1d:9a:17:9e:44:90:cd:3f:40:9e:
34:a3:46:d6:81:43:cc:44:f5:aa:6f:74:f1:60:39:37:15:23:
59:7c:d3:47:a1:c8:66:c6:7f:f4:b0:58:56:2f:98:41:d8:7e:
a3:4b:35:33:2e:90:66:c8:b6:b1:ec:77:fc:0c:f0:26:26:b1:
34:af:7d:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:12:44 2025 by rpki-client