Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: /iW5y4IgEf7H/YCN9MxV0nUuLqCJsrV1Vx6de0I/PHU=
Subject key identifier: 19:B1:91:6B:1F:96:B5:0D:FF:9D:D4:0F:9B:D8:34:3D:01:95:9F:6B
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 01976EF4CAD22EFAD83FDD4A44F476D256C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 12D4
Signing time: Sat 14 Jun 2025 15:00:25 +0000
Manifest this update: Sat 14 Jun 2025 15:00:25 +0000
Manifest next update: Sun 15 Jun 2025 15:00:25 +0000
Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: hMzKBjM0E74eQZulmsSq6IDPuGkAox5et9XU+gokw94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f4:ca:d2:2e:fa:d8:3f:dd:4a:44:f4:76:d2:56:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Jun 14 15:00:25 2025 GMT
Not After : Jun 15 15:00:25 2025 GMT
Subject: CN=19b1916b1f96b50dff9dd40f9bd8343d01959f6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ad:7a:a8:b3:87:dc:4a:29:0d:02:af:42:8a:
c9:b0:5e:fd:f4:a6:9c:17:8d:17:8c:d9:78:de:a7:
f1:b7:e5:a0:a3:52:f7:7d:d0:4b:dc:87:fc:28:e7:
0e:fc:83:ea:46:aa:4d:59:31:f4:0a:45:7e:28:9c:
52:9b:d2:6c:9c:56:96:71:15:be:07:1d:6d:19:d1:
aa:f8:bd:bc:fa:5d:89:b3:ba:2d:29:8c:78:a9:a8:
c6:ca:19:9f:80:b0:a6:ca:ba:70:4d:e7:4c:f0:75:
f2:a1:64:d1:78:18:d7:04:68:2a:1b:45:16:87:9d:
b8:88:36:73:e5:9b:1c:e7:28:43:8f:a4:3b:3e:61:
23:5e:e1:f1:3f:9e:00:50:5d:7f:db:4e:af:8e:37:
50:ae:5b:da:b4:3b:ab:1f:cb:32:61:ca:ec:b8:19:
99:11:5b:6b:e2:51:3a:4e:23:55:d7:c7:aa:5a:45:
5d:7f:55:9d:0e:ce:5b:1a:50:4c:1a:21:83:3f:5a:
f3:01:62:5b:98:c0:88:07:e0:30:55:e4:a2:50:16:
1a:0f:ae:f9:11:ca:bf:40:9f:73:e9:00:27:08:ec:
81:6b:90:31:b7:5f:76:75:71:72:6c:04:f4:29:98:
9a:5d:2c:e7:c1:08:2a:16:07:3b:6c:6d:0f:b9:da:
d7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:B1:91:6B:1F:96:B5:0D:FF:9D:D4:0F:9B:D8:34:3D:01:95:9F:6B
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:f4:65:57:e9:52:21:cd:50:c2:f1:e5:69:b8:66:e7:9c:76:
3c:fa:14:ea:f8:06:1d:52:fd:c3:03:d8:94:da:bf:25:94:d4:
db:d2:56:9d:c7:38:bf:97:02:26:7c:31:d0:c9:f1:b2:61:2b:
85:0a:a9:dc:97:c5:c1:2e:aa:7d:9d:c0:2f:fa:ae:ab:e4:90:
da:01:95:83:89:f7:28:49:0b:8b:d7:25:6c:f8:89:43:09:fd:
8f:47:c1:94:95:27:4f:27:44:62:07:9d:35:d9:14:8b:ee:31:
29:c3:6e:89:bf:df:bf:7c:df:6e:e3:16:a1:c6:db:9a:c1:d4:
64:07:7c:51:49:e2:05:3d:88:fd:76:fa:94:cd:5a:af:12:4f:
f3:d1:c5:ca:bb:28:e8:01:7a:67:19:f7:30:b2:a9:f2:eb:c6:
30:a7:45:a8:31:ec:a9:4a:e4:d1:08:53:db:6c:65:2c:63:28:
a0:0f:35:6b:49:15:22:c0:f5:1d:f6:de:1d:4a:f2:9c:8b:41:
b0:6e:0c:ae:9b:ab:fb:e7:4d:f2:12:b4:60:80:89:49:d4:71:
a9:5f:9d:d3:f4:69:c6:9f:4b:8c:0e:38:33:43:cc:b9:93:a7:
a9:01:58:a2:85:3e:69:0f:9c:42:08:82:63:43:ed:41:66:ba:
cb:36:f4:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:41:52 2025 by rpki-client