Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
File: XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft (raw, json)
Hash identifier: LKaFEgCsbSRS4E9/cr9RTaceTIB7tvbEJabEB3j+auo=
Subject key identifier: 8A:78:CF:8D:C2:CA:DB:9C:B4:A9:FF:7C:42:A6:2B:24:52:0E:02:0A
Authority key identifier: 5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
Certificate issuer: /CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Certificate serial: 01976C9904038FA5FD254A03C4E812EC55C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 04:00:56 +0000
Manifest this update: Sat 14 Jun 2025 04:00:56 +0000
Manifest next update: Sun 15 Jun 2025 04:00:56 +0000
Files and hashes: 1: R0Y_8680398wT7CzR2ae2QTPR2w.roa (hash: T+VBi4m8dsst25C1j7+k5KuFCU7EfyAt7PpnICFW3s0=)
2: XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl (hash: n3/do3Pw7V/i5B4Tc2dFfZBU+MlcDgclulbhiocpiw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:99:04:03:8f:a5:fd:25:4a:03:c4:e8:12:ec:55:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Validity
Not Before: Jun 14 04:00:56 2025 GMT
Not After : Jun 15 04:00:56 2025 GMT
Subject: CN=8a78cf8dc2cadb9cb4a9ff7c42a62b24520e020a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:15:ad:8b:85:b4:9f:bf:bc:3a:00:8f:e9:29:
03:ae:a1:ca:89:ef:9c:43:d7:88:48:da:db:32:ff:
1c:de:76:06:59:05:fe:66:b2:4c:bb:69:8a:db:ac:
88:f4:3f:18:52:e5:13:80:fe:2f:36:5c:6a:83:15:
2b:24:31:95:82:1a:54:9f:99:0a:0a:7c:82:0c:57:
d6:3c:b7:67:25:b6:2d:df:e0:55:25:bd:f1:01:d1:
68:f9:d9:e2:33:37:3c:62:5a:dd:db:bf:08:84:6b:
5b:8f:58:e1:86:a6:de:b0:57:af:74:cb:ec:db:89:
89:f3:e1:72:35:60:6d:1a:36:95:5f:0d:1d:18:e5:
91:78:67:75:df:19:47:7d:9c:65:13:4c:48:bb:c8:
3b:69:04:74:65:b1:7e:c9:a6:e2:3b:46:0a:c8:0b:
23:9c:55:7c:1f:b4:ec:28:3d:36:7f:04:2d:31:37:
80:9a:37:c7:2b:df:bd:f0:b3:94:aa:4a:d8:08:07:
6e:7a:32:60:69:74:bc:61:6b:e4:a8:c9:3b:aa:0d:
93:e5:14:6c:92:91:3e:11:60:95:0c:7f:86:9a:f5:
b9:a1:97:fc:e5:e8:bc:36:be:df:32:b0:81:81:76:
04:a7:ce:78:68:a9:2d:7b:ea:8b:77:65:58:1e:c1:
d4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:78:CF:8D:C2:CA:DB:9C:B4:A9:FF:7C:42:A6:2B:24:52:0E:02:0A
X509v3 Authority Key Identifier:
keyid:5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:b1:18:1d:0b:51:00:39:39:9c:a2:6b:53:9f:60:07:e7:a2:
c1:50:89:e8:f9:f3:02:7e:b6:d6:3e:c6:ef:64:3f:9d:20:55:
d4:12:a6:97:08:99:2e:0c:2e:4b:08:1b:eb:6e:64:e9:32:ff:
51:b2:35:47:7e:4d:33:46:7f:16:77:4f:32:5e:30:b5:9a:09:
4c:9f:8c:2c:f7:66:b9:bb:44:b8:d3:c8:cb:62:3d:2b:c0:bc:
a8:8b:48:54:c0:74:a6:e4:dd:d6:da:67:70:6c:0f:4e:f2:83:
58:c9:1f:02:4c:c5:90:b9:6b:79:72:31:50:db:70:bc:e5:1d:
c6:60:d5:c9:15:a7:92:33:9b:35:cc:76:85:10:e1:17:c9:8a:
a5:86:ed:5e:c9:39:be:78:fb:cc:85:e1:52:4b:c0:68:29:55:
a4:7b:3b:7f:6c:1d:e4:ad:d8:df:8b:19:38:af:17:ea:c8:8c:
67:75:49:fb:88:33:ec:b8:fe:e5:17:2e:3f:d8:66:0c:ef:ca:
36:23:17:72:4f:22:d2:36:21:e7:86:39:d5:a6:c2:53:cd:bb:
d4:12:6a:0a:a5:b5:d4:4e:d0:c2:2b:2d:6f:42:57:3f:bf:f9:
0d:94:87:48:67:cf:8f:03:aa:6a:87:a7:a1:76:17:51:90:1e:
f2:57:f7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:24:37 2025 by rpki-client