Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
File: xaL0JAfyHJ12kPsw_YzbK_320DA.mft (raw, json)
Hash identifier: 9DhsG5mSsDpYzYOrk0B19DyiQui54aaFQtAFhey0u/k=
Subject key identifier: 47:13:7A:4E:E7:7C:E0:3C:4F:9D:54:70:92:9E:C3:74:82:F4:82:9D
Authority key identifier: C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
Certificate issuer: /CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Certificate serial: 01976C2B1C9821F7ABE0D09DF223F11B5E1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
Manifest number: 15A1
Signing time: Sat 14 Jun 2025 02:00:53 +0000
Manifest this update: Sat 14 Jun 2025 02:00:53 +0000
Manifest next update: Sun 15 Jun 2025 02:00:53 +0000
Files and hashes: 1: kvgwT2CIxiAz0KGy17PsocByagw.roa (hash: uswWYZe8p+8Gmx/n8zkQaGQ6Q2+Rru2JGoDveoK/xUw=)
2: xaL0JAfyHJ12kPsw_YzbK_320DA.crl (hash: tS6fPRuoGVMcIhfk75OXFT3pV0wzoQ/ylKQtqiouncU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:1c:98:21:f7:ab:e0:d0:9d:f2:23:f1:1b:5e:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Validity
Not Before: Jun 14 02:00:53 2025 GMT
Not After : Jun 15 02:00:53 2025 GMT
Subject: CN=47137a4ee77ce03c4f9d5470929ec37482f4829d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0b:25:46:db:e4:dd:86:79:de:09:9d:b6:64:
62:69:29:52:6b:0c:13:a8:23:10:c0:39:0c:fe:cd:
df:6c:2c:74:21:20:86:d7:0c:a9:de:48:cf:39:53:
bd:a7:1f:d6:71:b6:4e:7e:ec:17:d5:93:96:cf:a3:
5e:3f:fe:72:74:90:45:58:32:8d:38:be:b6:6e:d4:
7e:8a:10:ae:7a:07:1f:3a:cb:3f:02:4e:d1:10:72:
36:e7:d4:75:49:60:d5:57:87:c8:97:8f:8c:78:2d:
de:3b:69:0c:fb:c2:75:3e:6f:23:8e:1d:c0:aa:d1:
6d:be:15:6f:26:aa:b8:d4:23:95:a4:3a:74:c4:5c:
43:75:5d:c5:5c:b0:ea:ad:9d:f2:f9:1f:b2:b8:1b:
7b:c4:bf:15:c2:7c:71:40:ef:d0:69:77:58:31:aa:
e2:34:f0:85:12:ff:36:b9:0c:a0:03:a7:03:60:e5:
67:ad:b7:f6:53:fa:45:fe:ea:c3:e9:0a:97:7c:5a:
cd:94:19:b2:85:78:1c:73:43:92:37:86:f5:a5:f9:
42:fe:b2:92:bd:24:19:25:cb:65:f7:a3:71:75:3e:
df:0c:19:b6:8b:d4:69:cc:f7:d5:61:fb:3a:ce:9c:
34:40:49:fc:9b:63:4e:a8:65:3f:9e:11:a0:0d:ec:
ea:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:13:7A:4E:E7:7C:E0:3C:4F:9D:54:70:92:9E:C3:74:82:F4:82:9D
X509v3 Authority Key Identifier:
keyid:C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:1d:35:26:c1:ec:7e:b9:94:03:85:16:9d:5c:69:91:7a:3c:
89:37:52:ef:39:1d:42:d4:1e:4c:5f:07:6d:70:9e:01:6b:7c:
73:ae:50:93:77:a3:1e:78:78:c1:34:c0:f2:92:bf:f0:a3:5c:
7a:44:6b:26:cc:bb:31:bc:6f:ed:09:6e:44:c1:52:3b:4d:59:
50:71:b0:df:d5:80:a1:f0:41:ef:9a:e2:3d:9e:7c:73:a5:c5:
34:4d:08:46:42:00:22:f1:8d:79:a6:69:54:2f:09:ad:18:ea:
8b:10:a5:9b:94:41:e3:de:ad:25:98:93:fe:a0:ae:52:fc:2a:
37:7b:e8:75:21:59:9d:98:2e:df:71:22:e0:a3:fd:f3:23:5c:
19:ba:0a:d8:2b:d8:aa:56:97:97:8b:02:ac:0f:58:87:fb:e6:
eb:52:6b:d2:4f:af:9b:1f:7a:75:f7:89:e4:f4:ab:ec:66:20:
09:3d:84:9c:0c:27:0f:e1:cf:b2:de:97:4c:58:5a:14:cf:ef:
19:26:83:4d:cb:e1:1b:4e:82:1c:80:47:0c:6b:d0:4a:34:2c:
fa:55:00:97:ea:c6:c0:39:d2:c4:17:a1:37:f4:53:d8:14:c4:
5d:8d:14:79:19:a2:23:80:6a:76:a7:cb:ac:bc:85:f0:50:98:
8d:9e:66:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:58:08 2025 by rpki-client