Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: SgWX/xvSvf+p082r15aOlZ/19EHSRafAROagBvCflA8=
Subject key identifier: 19:F0:60:B2:36:1C:23:D5:BA:EF:23:BC:8F:D3:57:7C:74:D0:4B:5D
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 0197846AAE127E1190BC13B156B09D97FDB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 152E
Signing time: Wed 18 Jun 2025 19:01:13 +0000
Manifest this update: Wed 18 Jun 2025 19:01:13 +0000
Manifest next update: Thu 19 Jun 2025 19:01:13 +0000
Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: kJEiznP73xJn4FnBSCgWfBf3vc7NweLuupAghuX7L2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:84:6a:ae:12:7e:11:90:bc:13:b1:56:b0:9d:97:fd:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Jun 18 19:01:13 2025 GMT
Not After : Jun 19 19:01:13 2025 GMT
Subject: CN=19f060b2361c23d5baef23bc8fd3577c74d04b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:54:4c:0d:fd:df:9f:62:ed:73:65:5a:93:b7:
11:c5:31:a3:bf:c2:4d:40:b9:70:52:f8:c4:8a:8d:
b1:29:db:5f:81:c2:da:09:dc:6a:18:c8:d2:37:e3:
38:2b:2b:3e:20:e1:2a:eb:dc:5c:0f:64:fc:7d:5b:
96:f7:44:f3:d6:d4:59:ac:86:06:00:d2:73:5b:e0:
9a:51:0c:15:40:69:c3:f5:c8:b5:d7:38:8d:a5:cf:
a4:0d:27:1d:c1:1d:cd:f2:e4:d6:b4:34:9c:cf:cc:
68:63:64:0e:12:00:0d:38:74:fa:d9:4d:91:a2:d4:
3d:7d:37:73:a4:d8:3c:21:11:48:4b:c0:1d:73:b5:
27:3d:74:18:f8:3d:62:c8:ea:52:a2:ba:24:8d:48:
b6:57:a7:a2:3d:ac:19:cb:44:e8:93:81:15:a5:27:
a3:bc:f7:b0:3c:38:ab:57:c1:46:47:20:9d:0a:69:
ca:79:7e:d0:2b:2a:1c:44:31:dd:4e:12:ad:b1:e1:
69:6a:8f:b0:da:61:fa:ef:c9:fd:9a:ca:e8:bf:14:
c9:d8:c8:0a:6f:5d:5e:79:ad:cb:85:1c:a6:e9:1d:
5c:94:03:66:e7:91:4a:81:b9:64:b2:72:e5:b1:fb:
69:ec:fb:73:d7:7b:d8:81:25:ea:92:68:3a:de:5d:
88:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F0:60:B2:36:1C:23:D5:BA:EF:23:BC:8F:D3:57:7C:74:D0:4B:5D
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:54:e4:d5:6b:0f:f5:42:d7:64:72:f6:47:21:6d:1e:1e:fb:
96:77:f6:02:91:04:84:f3:ff:74:b8:97:f8:46:9e:bf:55:e8:
3b:bd:32:7e:2d:47:c3:0a:08:a9:b5:19:8b:d6:b6:f4:4e:6d:
1c:99:f4:0c:00:06:56:49:85:bc:21:19:5c:47:a5:5d:ea:7a:
a9:38:04:8c:67:89:8c:aa:10:aa:61:14:ef:6f:f3:a2:77:a9:
da:a3:9a:7a:48:9a:e0:50:d6:19:9e:40:f5:f6:e3:44:0e:80:
46:c4:2f:74:e6:75:e5:2e:c0:73:24:71:ba:9a:53:0d:dc:72:
9c:47:9d:72:e9:11:e4:f3:5a:40:7e:74:f1:e8:42:7c:1c:08:
95:b0:86:3b:c6:be:0f:49:ee:9a:f0:12:e5:d4:f8:5b:4e:7f:
08:ec:00:70:86:45:78:45:5d:b7:6b:0d:c7:10:fb:9f:85:3e:
84:2c:14:5b:bd:03:d7:17:a2:74:51:2d:1a:a5:61:eb:4e:d9:
01:7b:7f:69:74:10:4a:21:0d:2c:d9:72:b3:6b:41:4d:67:65:
d6:64:32:c1:cd:ce:52:06:8b:46:a5:3f:20:63:e6:89:bd:e1:
f2:54:0b:44:65:33:1f:a9:df:92:47:dc:7e:52:84:ae:db:84:
2c:d8:3b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 01:35:44 2025 by rpki-client