Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: tbIO+101pGx+35alNY51djTpzO8SVf2YDKJ8GGCLqqI=
Subject key identifier: ED:27:6E:AB:ED:AB:A4:0A:33:67:6A:83:1D:18:07:1E:E4:F7:D1:6A
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 0197722CB76823ED039CB634C2CCA3622687
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 158D
Signing time: Sun 15 Jun 2025 06:00:22 +0000
Manifest this update: Sun 15 Jun 2025 06:00:22 +0000
Manifest next update: Mon 16 Jun 2025 06:00:22 +0000
Files and hashes: 1: kMIoPYj99g2K5sWXNcD0fsxHkHM.roa (hash: FopABAV6PSptIp6OTBNiTRgtYU723NWq9ChEZhzR3FM=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: mcM1Gg5eZdWgM33Jfohedwv0XEOKUhgbMPigCV5H+Zw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:2c:b7:68:23:ed:03:9c:b6:34:c2:cc:a3:62:26:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Jun 15 06:00:22 2025 GMT
Not After : Jun 16 06:00:22 2025 GMT
Subject: CN=ed276eabedaba40a33676a831d18071ee4f7d16a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7c:ae:64:c5:e2:05:74:9b:a6:5c:23:e3:70:
20:2a:81:c2:e1:0e:64:06:e8:ab:e7:c7:8a:60:5a:
6c:dd:bb:93:59:8e:5e:a0:24:66:22:9f:fe:ce:47:
70:c3:9c:f7:5a:3b:70:ae:f0:e3:5e:bc:ff:b3:94:
90:ec:fd:0d:d4:cb:66:65:ba:db:0a:a3:ba:fa:71:
cf:93:0b:ac:be:02:74:09:a1:dc:0b:3e:18:72:1e:
21:5b:6a:d2:3a:d5:63:40:89:b6:28:d2:3d:7e:8d:
7a:16:76:2b:be:4c:a5:17:89:b7:2d:a8:e7:d2:79:
73:0b:58:16:55:ec:d8:bc:2e:3c:20:f0:dd:18:da:
0f:98:12:36:83:6f:d2:50:c3:44:6a:ba:66:d3:3c:
42:bd:cf:5d:35:9f:c3:4f:35:21:b5:79:33:7f:0a:
31:2a:20:dd:9a:fe:70:85:36:ff:f3:b4:88:c2:19:
33:32:1c:99:50:b8:3b:f4:5f:9c:51:06:de:7c:f8:
71:33:c2:49:f1:a3:1f:c7:40:a4:03:b4:64:f2:37:
fb:bb:81:6c:bb:92:ff:71:ef:54:32:97:fd:e1:6b:
ce:8d:09:41:0f:61:8f:0f:ef:ee:a3:99:35:68:b8:
91:30:c7:e3:84:17:17:8e:ed:7c:65:67:55:6d:fc:
3e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:27:6E:AB:ED:AB:A4:0A:33:67:6A:83:1D:18:07:1E:E4:F7:D1:6A
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:ae:4b:3d:7b:44:f6:39:1e:04:15:18:bd:cc:ac:31:73:52:
c6:32:86:dc:1f:a3:bf:53:37:01:b7:a6:de:dc:82:6b:26:d5:
29:22:23:bf:c3:94:b6:46:9f:9b:19:45:75:0f:70:fb:27:11:
9c:46:fc:03:0a:40:a8:2a:ae:6e:38:08:4b:b2:53:7c:54:cf:
a4:76:75:80:0e:ea:26:13:99:47:d4:4d:29:ac:b0:77:39:b0:
e2:eb:17:2c:e1:a5:c4:d5:03:61:73:37:14:3e:2d:68:58:e9:
af:81:26:41:c3:32:4d:7a:f2:16:59:41:f5:ee:7c:47:6a:70:
2d:f7:d9:83:c9:0a:6a:53:1c:c9:42:f7:f2:9c:50:45:28:44:
6d:3c:b5:0a:61:17:91:ab:89:1f:4d:9f:9e:3b:7b:51:3a:da:
f1:06:d0:4a:f6:96:84:4c:2b:0e:3c:f9:69:45:15:d3:7b:42:
f4:8b:07:e9:b4:bf:df:2b:81:3d:f9:9e:2b:b2:9f:bc:d2:e5:
90:4a:e6:66:3e:65:35:45:fa:c4:3e:06:5b:c4:57:79:9e:03:
ca:60:98:8b:fc:be:cd:17:67:56:fb:a3:e9:08:c6:ca:9e:a3:
2c:16:6b:2a:9d:fd:5e:51:1d:8a:32:e7:04:50:8f:03:d7:31:
e1:40:d5:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:05:35 2025 by rpki-client