Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
File: xafD9LFGk1EiAllaik-VsNa3oQE.mft (raw, json)
Hash identifier: kXMA1D/NUARtEf34d1ggVLZU4DeJbUmKTNpDKydsoYw=
Subject key identifier: 3F:9F:D4:38:85:06:87:E4:2F:DF:A9:84:68:C6:2B:B5:72:D4:2D:D8
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 01976EBE0CEFE34461A1FDC7D08BE575A626
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
Manifest number: 1523
Signing time: Sat 14 Jun 2025 14:00:38 +0000
Manifest this update: Sat 14 Jun 2025 14:00:38 +0000
Manifest next update: Sun 15 Jun 2025 14:00:38 +0000
Files and hashes: 1: Bbxo5GOkMtBPV4eyDiJBtgGCAvs.roa (hash: gPTOZ/QwaGNzYqcGskaYm0Q9CUgsB/kmTCxE6lNVoV8=)
2: GkWtiMh4Kekgq83feCXLfv_pub8.roa (hash: UboiG7GPy5Vm4OyfuuuEVh7hhcZoHsmQQgbXPLJ/4ug=)
3: ScP8kW7fVZKKIlJqtoPhrGG1uQo.roa (hash: kBK8cN2i6ByxK8RJnTQxES9FzgvOd8FoOcnJVY/e4Bc=)
4: xafD9LFGk1EiAllaik-VsNa3oQE.crl (hash: RCcTuNEpwKQT5Q0ITZAFWfxk/4YjANL9DHaJnJ3LUP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 14:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:be:0c:ef:e3:44:61:a1:fd:c7:d0:8b:e5:75:a6:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: Jun 14 14:00:38 2025 GMT
Not After : Jun 15 14:00:38 2025 GMT
Subject: CN=3f9fd438850687e42fdfa98468c62bb572d42dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3e:4a:98:e5:3c:41:72:03:c1:61:0c:39:29:
c1:fe:b9:50:1e:74:14:b7:37:4b:80:aa:8b:0f:d4:
cc:54:79:ee:1f:d3:de:22:43:f0:d5:c3:56:58:88:
1f:8c:0b:4c:32:03:0b:24:98:0c:81:92:22:f3:15:
5e:1b:33:57:3b:fb:85:7d:5c:d1:06:a8:ed:a3:4d:
47:e4:54:b4:c4:38:7f:be:8f:01:42:9d:69:41:c3:
fd:7c:e0:f9:07:6b:f8:21:fc:36:cc:ec:56:40:47:
8d:a4:5c:bf:42:21:db:37:29:8a:d1:97:56:bf:45:
99:fd:0c:04:43:f2:d5:7b:fe:78:22:28:f0:e3:8b:
29:63:ef:85:dc:57:ca:fb:34:ec:dd:09:42:e8:88:
13:37:72:fd:84:38:a4:d6:f5:17:c9:d5:9f:e2:65:
ee:bc:5e:10:dd:ac:eb:a2:6e:63:7c:3c:81:45:7f:
02:44:00:35:ca:51:c7:db:4a:ba:1a:18:7e:5f:c5:
f7:57:af:aa:7c:2a:94:74:73:9e:da:36:3d:84:0c:
fe:90:90:39:7b:ae:b9:6b:98:34:2f:45:dc:b4:8c:
44:44:d0:4d:38:ec:61:c5:10:ca:34:a0:ae:72:7a:
5e:9e:b6:78:8e:6d:73:81:a3:79:f4:1c:e6:7f:4a:
0e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:9F:D4:38:85:06:87:E4:2F:DF:A9:84:68:C6:2B:B5:72:D4:2D:D8
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:22:99:7e:54:e4:a6:24:bc:b5:22:0a:66:40:1b:e5:fd:75:
28:75:cc:7e:37:20:d7:5e:47:ed:bc:19:ca:40:23:0f:a8:12:
c8:9c:a6:f4:bb:33:6e:89:8e:aa:87:9d:ad:f3:11:34:5c:cd:
fe:4e:2c:57:36:e1:75:af:b0:bf:bf:16:d6:8d:de:db:21:f3:
eb:a9:e1:54:f3:da:bb:05:44:67:33:9a:ce:0c:6c:a3:66:74:
1e:2e:7e:ec:17:ce:7f:7d:ed:20:a5:a3:4d:58:5d:51:c4:85:
ec:c6:e0:40:75:a6:e7:bd:c4:7c:e1:e5:b9:b7:77:ee:cd:8e:
f1:4f:8d:ce:1f:d2:93:06:1f:9f:1e:2c:70:35:fb:83:56:d2:
e3:00:1c:6d:86:8c:1b:8f:b8:af:54:fc:e9:66:a8:27:b6:13:
c8:bb:b5:44:2e:4c:8a:76:89:ef:22:a6:d9:15:57:a2:5f:9c:
c3:aa:17:dc:b2:b1:d1:f5:02:01:22:de:02:f3:f9:e7:8d:b4:
2f:ed:4b:ab:e8:90:59:35:d9:7a:f6:4d:19:07:cc:2a:96:65:
fd:68:6e:6a:60:03:d5:57:8a:66:16:8d:cc:49:db:41:b7:be:
39:50:a9:91:72:97:3b:3b:63:fe:ab:53:00:6b:62:5c:92:19:
04:df:74:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:56:12 2025 by rpki-client