Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
File: XLtvfRHev55LqLH2nDg7j8PErhI.mft (raw, json)
Hash identifier: i1kfZFN643yMrVFJG4Lad394ex2WfhsBwpwM5BMUz0Y=
Subject key identifier: 43:42:D3:FA:21:0A:23:58:79:74:47:F9:3D:87:7E:0E:A1:80:F4:31
Authority key identifier: 5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
Certificate issuer: /CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Certificate serial: 01977BD492D6449F17A53DB3A4D4C438992A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
Manifest number: 09BC
Signing time: Tue 17 Jun 2025 03:00:18 +0000
Manifest this update: Tue 17 Jun 2025 03:00:18 +0000
Manifest next update: Wed 18 Jun 2025 03:00:18 +0000
Files and hashes: 1: GeKBRab06m2Sa_WEDlm2vrbqt80.roa (hash: rshNYrEYAk6Ccd9rs6FmkxFoBRIeaz8vJy7lI8MW13k=)
2: XLtvfRHev55LqLH2nDg7j8PErhI.crl (hash: BlM4kycYwD3ixudcUc+qb8Kkep2mFFwhHDx2ZShd8Y4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 03:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7b:d4:92:d6:44:9f:17:a5:3d:b3:a4:d4:c4:38:99:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Validity
Not Before: Jun 17 03:00:18 2025 GMT
Not After : Jun 18 03:00:18 2025 GMT
Subject: CN=4342d3fa210a2358797447f93d877e0ea180f431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f1:48:a0:d6:b9:76:dd:c6:fc:c0:ad:c4:30:
73:c3:2f:43:f2:1d:bc:4b:81:a1:4c:5e:fc:d7:44:
0b:88:5d:0e:2e:5b:d6:56:73:4e:f6:4c:b2:e1:66:
2c:16:15:e9:ed:f3:40:34:68:1c:20:a6:49:7d:11:
b8:e2:66:3e:f8:2c:8f:31:9b:dc:0c:a2:4c:6f:eb:
75:95:c7:30:5f:08:2a:d9:ef:c0:dc:46:60:ec:47:
8b:4b:f1:43:d1:46:6b:6c:51:2a:d1:10:74:e3:fe:
47:32:8e:f8:53:61:db:19:f8:17:c5:94:6f:f6:f4:
05:7f:85:5d:67:39:e9:0d:0e:40:1b:ea:51:bb:a2:
dd:fd:fb:fb:89:a3:39:6d:e6:71:5c:ae:b3:ab:4b:
86:94:12:f8:2f:57:e0:f6:be:6a:03:53:64:b7:68:
1b:5d:06:86:86:9c:81:dc:86:a4:60:7e:91:82:fc:
cd:bf:43:44:94:3e:3b:6a:a0:d3:e4:fc:56:c9:2c:
aa:24:d4:3a:84:7f:3f:40:5e:8f:e5:5f:95:2e:bf:
f9:c8:d8:06:db:e1:ba:d0:2a:f0:2d:e2:1f:3a:f9:
49:90:e6:86:90:c6:c5:b3:e3:48:e0:46:e2:dc:bb:
d7:83:3a:72:d3:b5:aa:39:33:e9:eb:fb:50:39:8f:
6d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:42:D3:FA:21:0A:23:58:79:74:47:F9:3D:87:7E:0E:A1:80:F4:31
X509v3 Authority Key Identifier:
keyid:5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:0d:e6:e1:5e:ff:9f:85:d4:9a:7f:6d:ce:ae:8d:cb:8b:a3:
f4:ce:e1:44:a7:06:04:2d:81:c5:94:ba:81:1f:db:c1:57:ba:
71:29:d1:0a:a3:28:1f:19:55:8b:7f:93:0b:91:b5:f4:9a:76:
15:31:37:de:4f:ae:75:d4:ac:9b:79:f9:ee:81:f0:1c:39:6b:
3c:17:f6:8a:3a:94:42:ad:c3:d2:05:23:31:d3:20:46:8c:6b:
c2:da:00:46:2e:50:ef:f9:6d:d8:99:ef:8b:d9:4f:38:7d:14:
08:65:6f:96:1e:7b:65:fd:6b:cf:1d:c5:63:fe:9d:06:49:15:
1d:c9:a5:a1:07:75:71:2e:2c:01:9d:6c:4b:72:b5:0d:7b:47:
7d:24:f8:6b:af:ac:8a:1f:52:14:da:12:71:20:38:b3:24:23:
13:c7:20:50:1b:ed:ce:f9:7d:01:03:e8:7c:fe:e1:83:1c:fd:
ae:91:4b:d9:1d:86:e0:32:74:fc:34:63:81:6f:73:dc:31:d6:
18:3b:56:ea:91:dc:fd:0a:ac:0e:7c:5a:54:2e:c7:d9:ea:3a:
3f:2e:a6:dc:d3:fa:4f:03:a8:c1:a0:3f:2e:53:85:24:12:cd:
8b:5a:d6:21:76:aa:6f:f2:cf:28:03:8f:11:72:b3:7e:b4:f0:
9e:c8:f7:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd71JLWRJ8XpT2zpNTEOJkqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjYmI2ZjdkMTFkZWJmOWU0YmE4YjFmNjljMzgzYjhmYzNj
NGFlMTIwHhcNMjUwNjE3MDMwMDE4WhcNMjUwNjE4MDMwMDE4WjAzMTEwLwYDVQQD
Eyg0MzQyZDNmYTIxMGEyMzU4Nzk3NDQ3ZjkzZDg3N2UwZWExODBmNDMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3/FIoNa5dt3G/MCtxDBzwy9D8h28
S4GhTF7810QLiF0OLlvWVnNO9kyy4WYsFhXp7fNANGgcIKZJfRG44mY++CyPMZvc
DKJMb+t1lccwXwgq2e/A3EZg7EeLS/FD0UZrbFEq0RB04/5HMo74U2HbGfgXxZRv
9vQFf4VdZznpDQ5AG+pRu6Ld/fv7iaM5beZxXK6zq0uGlBL4L1fg9r5qA1Nkt2gb
XQaGhpyB3IakYH6RgvzNv0NElD47aqDT5PxWySyqJNQ6hH8/QF6P5V+VLr/5yNgG
2+G60CrwLeIfOvlJkOaGkMbFs+NI4Ebi3LvXgzpy07WqOTPp6/tQOY9tmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFENC0/ohCiNYeXRH+T2Hfg6hgPQxMB8GA1UdIwQY
MBaAFFy7b30R3r+eS6ix9pw4O4/DxK4SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEx0dmZSSGV2NTVMcUxIMm5EZzdqOFBFcmhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9jYTgxMjUtNTQ3Ny00MjIyLWIwNTUt
YmJlYjQ1NTBkOWU2LzEvWEx0dmZSSGV2NTVMcUxIMm5EZzdqOFBFcmhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9jYTgxMjUtNTQ3Ny00MjIyLWIwNTUtYmJlYjQ1NTBkOWU2
LzEvWEx0dmZSSGV2NTVMcUxIMm5EZzdqOFBFcmhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAig3m4V7/
n4XUmn9tzq6Ny4uj9M7hRKcGBC2BxZS6gR/bwVe6cSnRCqMoHxlVi3+TC5G19Jp2
FTE33k+uddSsm3n57oHwHDlrPBf2ijqUQq3D0gUjMdMgRoxrwtoARi5Q7/lt2Jnv
i9lPOH0UCGVvlh57Zf1rzx3FY/6dBkkVHcmloQd1cS4sAZ1sS3K1DXtHfST4a6+s
ih9SFNoScSA4syQjE8cgUBvtzvl9AQPofP7hgxz9rpFL2R2G4DJ0/DRjgW9z3DHW
GDtW6pHc/QqsDnxaVC7H2eo6Py6m3NP6TwOowaA/LlOFJBLNi1rWIXaqb/LPKAOP
EXKzfrTwnsj3YQ==
-----END CERTIFICATE-----
Generated at Tue Jun 17 12:19:33 2025 by rpki-client