Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
File: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft (raw, json)
Hash identifier: AuIQPrGEPHkAlXxrA/QDLcsEIHB7m61VdxsqoIXqP1E=
Subject key identifier: 39:81:6C:8B:8E:08:C1:89:75:50:DC:E3:AA:9E:C0:83:FD:C8:99:1B
Authority key identifier: 5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
Certificate issuer: /CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Certificate serial: 01976EBDF32AF61BCE48E1232B9A36FABDE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
Manifest number: 104D
Signing time: Sat 14 Jun 2025 14:00:31 +0000
Manifest this update: Sat 14 Jun 2025 14:00:31 +0000
Manifest next update: Sun 15 Jun 2025 14:00:31 +0000
Files and hashes: 1: 3Lwgv8G7H1M7aUpcEvNgmowlLx4.roa (hash: mpBdcgU7I+uQ5H1oVCfF7A1oXC3Ul6uCrit0pbGiORo=)
2: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl (hash: t1bgIDC0ScPz0NgWRW8xEiGDkDQ90nQcRznIPoHi6/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 14:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:bd:f3:2a:f6:1b:ce:48:e1:23:2b:9a:36:fa:bd:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Validity
Not Before: Jun 14 14:00:31 2025 GMT
Not After : Jun 15 14:00:31 2025 GMT
Subject: CN=39816c8b8e08c1897550dce3aa9ec083fdc8991b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2e:76:92:c8:8e:1c:e0:0a:7e:cb:51:70:f8:
6a:e4:cc:2e:dd:bf:b4:41:7f:e4:37:f9:91:d4:ac:
4a:79:31:34:19:ee:7d:5e:84:64:ef:75:70:fb:e8:
e2:ce:a3:55:49:a1:6e:54:d7:df:f3:15:da:87:df:
7a:bf:19:d2:6c:c1:72:43:63:5a:aa:43:76:83:3f:
a4:62:a7:ed:ec:84:96:ea:fc:8b:0e:9f:2a:b6:93:
4d:ea:19:34:55:63:2a:98:94:84:64:5a:9b:64:12:
41:0b:4d:f0:54:2f:0e:3e:d4:3d:5f:06:c7:ee:43:
32:fc:18:1c:51:61:19:ee:a4:c6:24:89:89:fe:e4:
dd:25:bd:d3:14:32:6f:4c:65:96:74:87:04:65:9f:
6c:af:14:a7:7b:e0:1f:8c:1d:0d:9e:7e:64:02:09:
04:f3:9b:a8:55:ce:ba:cc:8c:06:f3:6e:65:c4:cf:
8b:6e:47:9f:c9:78:98:be:bd:5f:92:10:87:5f:e7:
e4:fb:1d:a7:a7:74:43:a1:47:ee:43:ba:2e:ff:5c:
11:04:6e:9a:ac:4b:f6:7d:b7:33:b3:38:98:5a:18:
c6:7a:95:a4:3c:f9:f9:96:56:7a:ae:cc:c0:be:f1:
5f:5f:b2:46:0c:c7:45:96:e4:9c:38:7c:4b:ff:45:
33:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:81:6C:8B:8E:08:C1:89:75:50:DC:E3:AA:9E:C0:83:FD:C8:99:1B
X509v3 Authority Key Identifier:
keyid:5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:00:3f:92:61:a5:bf:21:b3:65:07:ab:0a:de:62:b0:33:bd:
d2:9c:ad:67:62:7a:92:d1:97:ee:d4:d8:8b:74:59:87:eb:6a:
5e:42:46:28:b3:dd:9a:51:ce:2e:27:56:40:80:cd:a6:62:11:
cb:d0:c0:52:9e:ca:40:f6:7b:7b:ac:71:7f:92:7c:49:06:73:
9b:62:ec:4c:3f:45:ff:e9:5d:ba:e4:48:34:0d:9b:32:8a:67:
a7:b2:9b:9a:b9:f0:d9:a6:87:ea:4b:dd:0b:0d:9c:5a:79:76:
bd:38:7b:da:7c:97:47:e5:0e:55:27:71:b9:3a:5c:37:49:f7:
70:92:2e:dc:ec:3b:d2:cd:8c:fe:ed:96:08:00:3d:4b:65:51:
b2:d7:5f:d6:dd:e1:99:41:ba:5b:19:68:c3:32:02:84:2f:96:
68:28:1c:98:52:40:ef:99:95:c1:87:b2:68:64:46:67:59:9b:
57:f6:44:e3:a5:58:2c:1a:95:21:9b:2a:58:88:45:a1:04:05:
62:de:17:66:27:ad:df:80:45:6c:1b:ad:b0:e5:a0:99:96:24:
d1:c9:61:a9:87:55:ad:28:20:f9:a9:d7:47:2d:78:3a:1e:15:
4f:3b:55:cc:9a:8a:c2:c5:43:ed:f8:90:7e:ca:e0:73:63:78:
e5:f1:ea:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZduvfMq9hvOSOEjK5o2+r3mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlOWI5YmVkOGY4ZDNkNTc5YmIwNTUyZTRmYzRiODE5ODY4
NjFlNjQwHhcNMjUwNjE0MTQwMDMxWhcNMjUwNjE1MTQwMDMxWjAzMTEwLwYDVQQD
EygzOTgxNmM4YjhlMDhjMTg5NzU1MGRjZTNhYTllYzA4M2ZkYzg5OTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3i52ksiOHOAKfstRcPhq5Mwu3b+0
QX/kN/mR1KxKeTE0Ge59XoRk73Vw++jizqNVSaFuVNff8xXah996vxnSbMFyQ2Na
qkN2gz+kYqft7ISW6vyLDp8qtpNN6hk0VWMqmJSEZFqbZBJBC03wVC8OPtQ9XwbH
7kMy/BgcUWEZ7qTGJImJ/uTdJb3TFDJvTGWWdIcEZZ9srxSne+AfjB0Nnn5kAgkE
85uoVc66zIwG825lxM+LbkefyXiYvr1fkhCHX+fk+x2np3RDoUfuQ7ou/1wRBG6a
rEv2fbczsziYWhjGepWkPPn5llZ6rszAvvFfX7JGDMdFluScOHxL/0UzWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDmBbIuOCMGJdVDc46qewIP9yJkbMB8GA1UdIwQY
MBaAFF6bm+2PjT1Xm7BVLk/EuBmGhh5kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHB1YjdZLU5QVmVic0ZVdVQ4UzRHWWFHSG1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC80NDhjODUtYTk2Ni00ZGYyLTk4ZTQt
YTVhNWFkMDZlYjQzLzEvWHB1YjdZLU5QVmVic0ZVdVQ4UzRHWWFHSG1RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC80NDhjODUtYTk2Ni00ZGYyLTk4ZTQtYTVhNWFkMDZlYjQz
LzEvWHB1YjdZLU5QVmVic0ZVdVQ4UzRHWWFHSG1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYgA/kmGl
vyGzZQerCt5isDO90pytZ2J6ktGX7tTYi3RZh+tqXkJGKLPdmlHOLidWQIDNpmIR
y9DAUp7KQPZ7e6xxf5J8SQZzm2LsTD9F/+lduuRINA2bMopnp7Kbmrnw2aaH6kvd
Cw2cWnl2vTh72nyXR+UOVSdxuTpcN0n3cJIu3Ow70s2M/u2WCAA9S2VRstdf1t3h
mUG6WxlowzIChC+WaCgcmFJA75mVwYeyaGRGZ1mbV/ZE46VYLBqVIZsqWIhFoQQF
Yt4XZiet34BFbButsOWgmZYk0clhqYdVrSgg+anXRy14Oh4VTztVzJqKwsVD7fiQ
fsrgc2N45fHqzQ==
-----END CERTIFICATE-----
Generated at Sun Jun 15 00:05:45 2025 by rpki-client