Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
File: XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft (raw, json)
Hash identifier: btP4+zSXQlh4f3tNLS2upENQBPQyYO/xqEm7UHKR3Qk=
Subject key identifier: 01:D7:94:95:F4:0B:4C:BC:77:E1:3B:27:C0:BA:59:A9:E0:34:87:49
Authority key identifier: 5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
Certificate issuer: /CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Certificate serial: 01967755E486A9D7C2A70E9F687F8B7F48D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
Manifest number: 1512
Signing time: Sun 27 Apr 2025 13:00:39 +0000
Manifest this update: Sun 27 Apr 2025 13:00:39 +0000
Manifest next update: Mon 28 Apr 2025 13:00:39 +0000
Files and hashes: 1: R0Y_8680398wT7CzR2ae2QTPR2w.roa (hash: T+VBi4m8dsst25C1j7+k5KuFCU7EfyAt7PpnICFW3s0=)
2: XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl (hash: 3QDtKPD0jMRexRZiVa7g0xmELcYZxt25gKIVPXrBUAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:55:e4:86:a9:d7:c2:a7:0e:9f:68:7f:8b:7f:48:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Validity
Not Before: Apr 27 13:00:39 2025 GMT
Not After : Apr 28 13:00:39 2025 GMT
Subject: CN=01d79495f40b4cbc77e13b27c0ba59a9e0348749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:55:3c:d7:11:ec:9d:b9:d0:14:e8:10:03:53:
07:f0:b3:4e:9a:3d:8c:13:e7:8f:33:3c:1b:9f:df:
ff:3a:d4:d2:e2:d5:5a:58:99:63:f4:83:72:c6:63:
52:94:9d:7d:d8:2d:a6:a7:30:d7:7d:7d:35:5e:77:
ea:43:57:86:0e:ee:7c:99:f9:ff:2d:fa:15:a8:7b:
fb:25:c9:34:e0:b5:f9:66:ab:cc:36:b0:c5:b2:16:
0d:74:a3:6e:29:cf:9e:53:10:e3:a9:64:56:4e:35:
c1:e6:53:75:5f:a2:71:fe:95:bb:d2:bb:5c:0a:4f:
2d:86:bc:62:1b:13:e8:ce:ca:89:29:d6:9a:38:7d:
bc:eb:23:f0:a8:38:0d:7f:01:02:ea:b6:bc:4d:a1:
63:31:7d:9d:f4:aa:a0:9d:e7:bd:53:e4:6b:f8:ec:
d0:70:5c:68:0e:ff:ce:d3:26:d8:ec:84:01:55:fa:
41:ff:e0:11:10:85:5a:84:81:ea:b8:c3:1b:65:38:
4a:7f:3a:41:dc:d0:fa:c7:57:fb:af:3c:1f:92:16:
d1:97:db:4b:6a:8c:b1:92:67:d8:e1:70:71:54:db:
d9:be:85:f6:fb:6e:f5:6e:a1:7c:71:a6:71:cb:f9:
5c:a6:50:3b:51:8a:bd:f2:de:d8:77:da:ae:38:e0:
da:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D7:94:95:F4:0B:4C:BC:77:E1:3B:27:C0:BA:59:A9:E0:34:87:49
X509v3 Authority Key Identifier:
keyid:5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:17:0d:d9:f1:0a:24:3d:37:73:26:34:c0:7c:5e:bd:f6:c5:
94:c9:11:21:d2:9a:05:5b:2b:81:b4:0a:1d:a2:66:72:88:4a:
94:3d:f1:b2:9b:b7:6f:12:46:8e:c8:7a:3e:0d:63:4e:bb:ae:
c4:e7:76:1d:83:2c:63:5f:bd:36:d1:2d:f5:5f:f4:83:ef:60:
57:e2:68:ab:5d:60:51:87:65:4f:32:e5:28:b2:a7:aa:da:ce:
3a:bf:50:c8:4a:26:93:a4:56:76:45:c0:02:fe:ef:8b:76:0a:
b8:8d:d6:2c:5a:1f:b5:be:da:30:ed:f5:c6:e5:aa:19:2e:29:
98:1a:31:78:98:fe:07:0e:0d:a9:5c:f0:30:2c:0e:d4:3f:3d:
45:01:f1:85:58:ec:89:9a:b5:1c:cf:91:82:3c:5d:e9:99:6e:
34:3f:4a:45:db:44:48:80:df:a6:e6:14:81:51:5a:5d:c3:54:
8c:ef:d5:95:72:4c:a3:70:64:2e:b2:f9:74:21:f3:4b:47:53:
69:bf:de:eb:59:22:fa:41:c4:2a:51:c0:dd:66:2f:c4:f4:e8:
1f:55:f3:dd:f8:22:fc:85:43:0c:5a:36:9b:49:7f:03:6d:a3:
0b:d0:01:e8:21:25:80:b0:4d:68:7f:49:77:e6:ff:b8:d4:3a:
a0:97:21:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3VeSGqdfCpw6faH+Lf0jVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZjVlZDA0MGVmZTJlNTgxNzU0ZGViNWMzY2Q4MmQ5OWRm
ZWU4ZDkwHhcNMjUwNDI3MTMwMDM5WhcNMjUwNDI4MTMwMDM5WjAzMTEwLwYDVQQD
EygwMWQ3OTQ5NWY0MGI0Y2JjNzdlMTNiMjdjMGJhNTlhOWUwMzQ4NzQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFU81xHsnbnQFOgQA1MH8LNOmj2M
E+ePMzwbn9//OtTS4tVaWJlj9INyxmNSlJ192C2mpzDXfX01XnfqQ1eGDu58mfn/
LfoVqHv7Jck04LX5ZqvMNrDFshYNdKNuKc+eUxDjqWRWTjXB5lN1X6Jx/pW70rtc
Ck8thrxiGxPozsqJKdaaOH286yPwqDgNfwEC6ra8TaFjMX2d9Kqgnee9U+Rr+OzQ
cFxoDv/O0ybY7IQBVfpB/+AREIVahIHquMMbZThKfzpB3ND6x1f7rzwfkhbRl9tL
aoyxkmfY4XBxVNvZvoX2+271bqF8caZxy/lcplA7UYq98t7Yd9quOODaWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAHXlJX0C0y8d+E7J8C6WangNIdJMB8GA1UdIwQY
MBaAFF317QQO/i5YF1TetcPNgtmd/ujZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGZYdEJBNy1MbGdYVk42MXc4MkMyWjMtNk5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iM2Q3NmYtNmVmOS00YzRhLTgxMmMt
YmVmZTRiMzRjNmYwLzEvWGZYdEJBNy1MbGdYVk42MXc4MkMyWjMtNk5rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9iM2Q3NmYtNmVmOS00YzRhLTgxMmMtYmVmZTRiMzRjNmYw
LzEvWGZYdEJBNy1MbGdYVk42MXc4MkMyWjMtNk5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiBcN2fEK
JD03cyY0wHxevfbFlMkRIdKaBVsrgbQKHaJmcohKlD3xspu3bxJGjsh6Pg1jTruu
xOd2HYMsY1+9NtEt9V/0g+9gV+Joq11gUYdlTzLlKLKnqtrOOr9QyEomk6RWdkXA
Av7vi3YKuI3WLFoftb7aMO31xuWqGS4pmBoxeJj+Bw4NqVzwMCwO1D89RQHxhVjs
iZq1HM+Rgjxd6ZluND9KRdtESIDfpuYUgVFaXcNUjO/VlXJMo3BkLrL5dCHzS0dT
ab/e61ki+kHEKlHA3WYvxPToH1Xz3fgi/IVDDFo2m0l/A22jC9AB6CElgLBNaH9J
d+b/uNQ6oJchdQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 18:13:03 2025 by rpki-client