Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
File: XasLCOUfgYIkYp-zohHYPVvjVEA.mft (raw, json)
Hash identifier: 92rs2jHTKIjEgbZP/hQDOMb6AIn90S7coMuPEis64/M=
Subject key identifier: CF:99:D4:7D:5D:E0:F0:E2:A6:09:B8:4F:90:36:63:7A:AA:F3:A2:6F
Authority key identifier: 5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
Certificate issuer: /CN=5dab0b08e51f818224629fb3a211d83d5be35440
Certificate serial: 01976CCF91A073E6429A816405CED732CFAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
Manifest number: 139C
Signing time: Sat 14 Jun 2025 05:00:31 +0000
Manifest this update: Sat 14 Jun 2025 05:00:31 +0000
Manifest next update: Sun 15 Jun 2025 05:00:31 +0000
Files and hashes: 1: J3IfRy5hJG3sO5FFR3klCa0Rmag.roa (hash: y8cOLwfC28T1Q/CwomIs12ZpdB8agP1zP7ErrJL2HLM=)
2: XasLCOUfgYIkYp-zohHYPVvjVEA.crl (hash: AIsJor1En5Tuj99yxzH0fnyOGvp637FUGMVo64WzZMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:91:a0:73:e6:42:9a:81:64:05:ce:d7:32:cf:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dab0b08e51f818224629fb3a211d83d5be35440
Validity
Not Before: Jun 14 05:00:31 2025 GMT
Not After : Jun 15 05:00:31 2025 GMT
Subject: CN=cf99d47d5de0f0e2a609b84f9036637aaaf3a26f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5f:b9:e4:3c:b8:97:b6:cc:8c:38:c3:b6:7e:
5d:bf:6c:88:41:21:96:7a:30:a7:5a:de:5d:fd:ea:
10:5c:e9:67:a9:f7:4a:88:a8:33:be:b4:ae:c7:5a:
13:a6:4c:4a:f6:65:86:55:16:55:18:af:5b:eb:4b:
e3:a5:04:e5:33:44:7c:ca:35:2c:79:b2:e8:5a:34:
5a:8c:59:29:2e:51:a0:7c:ac:19:01:aa:0e:d9:8e:
0b:5a:30:f3:c4:64:79:e5:cb:ea:7e:7e:ca:bd:87:
d7:14:cc:34:2c:e8:4f:f5:94:b7:80:cd:80:df:f1:
09:01:b9:c5:2e:08:4c:3c:3b:8c:e0:4b:13:00:21:
90:ad:f9:7b:1f:a5:03:f0:d6:a8:f4:5b:91:bf:8f:
2f:8a:ef:51:c7:c0:80:3b:49:22:2e:e3:da:93:4f:
26:5e:d2:d9:17:88:40:d6:7b:e0:1c:0e:b5:98:fd:
30:79:a4:5b:4b:40:d9:40:59:c1:b8:b4:63:4f:a4:
f9:10:4b:7e:37:21:f3:7c:e8:cc:ea:4b:d5:1f:9d:
b3:7d:74:b3:a0:15:90:78:29:18:38:6b:68:51:2c:
fe:26:4e:3d:c4:10:48:c1:e3:0e:fb:59:5f:80:f6:
70:8e:9f:c5:b7:af:da:46:e7:ae:2f:ea:51:82:73:
0c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:99:D4:7D:5D:E0:F0:E2:A6:09:B8:4F:90:36:63:7A:AA:F3:A2:6F
X509v3 Authority Key Identifier:
keyid:5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:6f:6e:81:8b:82:f2:bc:2b:b1:b8:e3:cc:d7:59:69:32:02:
85:d6:53:e4:bb:cb:04:4a:57:c1:71:f3:81:cb:fb:cd:ee:e9:
67:15:b9:5b:72:66:49:9e:b9:47:63:f3:0b:ea:9c:e2:ce:b5:
a2:4f:9b:b8:79:b4:30:db:7e:14:70:dd:bc:3c:ea:86:b6:be:
1f:48:0d:83:4f:58:a8:cb:08:04:35:e5:1a:88:e2:10:13:64:
2d:e0:41:ea:35:b2:7d:bb:ac:2e:24:74:27:e4:3c:12:ba:98:
c4:13:ee:13:55:30:61:d7:d5:e6:57:e5:e7:6d:1b:8a:13:11:
d5:cc:df:4c:c5:dc:33:b7:a7:fc:d3:68:df:4f:ee:1e:37:70:
7e:f5:66:14:8c:c9:98:ca:d3:55:4d:d5:3b:d5:c6:bb:0e:8c:
12:e0:63:11:6f:bd:90:c7:79:a7:2d:df:00:cf:a4:23:8c:f5:
8f:dd:ba:77:70:0c:6c:90:2f:33:61:e6:e6:e0:2a:fa:af:f2:
a1:34:85:f5:b9:c2:5c:d4:10:8a:01:77:e5:85:7d:44:7e:1b:
40:22:8c:b8:31:a8:31:fd:5d:b3:68:6b:41:61:39:f8:53:37:
b2:fd:c6:04:d8:dc:96:0e:63:e9:e4:ea:2c:38:ed:5d:a7:56:
06:b7:40:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:50:47 2025 by rpki-client