Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.mft
File: xUIOtdlPD6uGLghAQU9DK3heYFQ.mft (raw, json)
Hash identifier: 9OUoYo7yauydhzwWQHFvGiUBoj3lX4HyLn4D7wSWghA=
Subject key identifier: 3B:F0:FE:34:CB:B0:F5:93:F2:E9:0C:37:66:6F:27:80:65:F6:03:27
Authority key identifier: C5:42:0E:B5:D9:4F:0F:AB:86:2E:08:40:41:4F:43:2B:78:5E:60:54
Certificate issuer: /CN=c5420eb5d94f0fab862e0840414f432b785e6054
Certificate serial: 01977CE7D40148E58438660226E327C9331E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xUIOtdlPD6uGLghAQU9DK3heYFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.mft
Manifest number: 03AB
Signing time: Tue 17 Jun 2025 08:00:57 +0000
Manifest this update: Tue 17 Jun 2025 08:00:57 +0000
Manifest next update: Wed 18 Jun 2025 08:00:57 +0000
Files and hashes: 1: Ta5lPzjSaWOGZmJzb8ldMeucHGI.roa (hash: d1Ea1L5jJ9KIi1NEhEpKqHGMktv6fUL4cljVIHxwf/0=)
2: xUIOtdlPD6uGLghAQU9DK3heYFQ.crl (hash: +XhWipI1tnuFHYjEqrcv635jOAxXUxEUv7FCXZXTHDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xUIOtdlPD6uGLghAQU9DK3heYFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 08:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7c:e7:d4:01:48:e5:84:38:66:02:26:e3:27:c9:33:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5420eb5d94f0fab862e0840414f432b785e6054
Validity
Not Before: Jun 17 08:00:57 2025 GMT
Not After : Jun 18 08:00:57 2025 GMT
Subject: CN=3bf0fe34cbb0f593f2e90c37666f278065f60327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f8:42:25:62:2b:9d:c0:81:c0:4d:2b:50:08:
84:c1:c5:c2:e9:24:75:76:4c:79:7c:af:a3:7f:7b:
c6:64:23:86:06:9e:cc:3b:1b:8f:3c:55:00:f0:92:
91:61:4a:24:2b:dd:dd:97:ce:e3:29:e2:94:aa:f7:
91:ff:ac:4b:c7:8b:6d:dc:64:a7:68:4d:1f:6e:56:
7d:8a:72:cc:14:83:1e:7a:64:05:b0:fd:3d:9a:33:
b8:61:d9:aa:2b:d8:c3:09:5c:17:29:db:ed:a9:4a:
37:00:8a:cb:ac:fe:ee:ec:0b:37:e0:cf:18:ae:e9:
33:50:30:51:f3:b8:6b:9a:54:6e:83:3d:c3:ac:fa:
1c:0d:da:d2:b7:3b:17:90:5e:2a:60:d9:99:21:8c:
38:52:17:1d:c2:a9:5f:00:83:ca:6d:25:f1:fe:c5:
45:d4:31:52:35:8e:21:96:6b:c4:b8:f6:a0:c8:18:
a9:3a:1c:98:ae:7f:c3:80:6f:1d:a3:25:b4:92:bf:
4f:e0:4f:19:cf:bd:20:0a:23:17:6a:3d:4e:50:e9:
9d:76:3a:c9:ad:8f:63:74:3e:a2:4b:3c:28:4e:eb:
f1:48:a2:8f:8f:33:3d:42:53:e9:a4:36:b2:c0:c5:
16:18:1e:ae:9f:64:ac:f7:da:17:e0:58:1f:37:ff:
d9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F0:FE:34:CB:B0:F5:93:F2:E9:0C:37:66:6F:27:80:65:F6:03:27
X509v3 Authority Key Identifier:
keyid:C5:42:0E:B5:D9:4F:0F:AB:86:2E:08:40:41:4F:43:2B:78:5E:60:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xUIOtdlPD6uGLghAQU9DK3heYFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:ca:a3:a0:e4:56:e6:2a:ad:23:8c:e3:40:9a:7b:4a:e1:5b:
db:f9:1e:db:b5:33:b9:c4:35:4f:d4:6c:1a:8b:f4:9c:26:9e:
7a:95:9a:a8:be:60:f4:f7:56:34:7a:3f:eb:ed:ea:81:6a:8d:
38:58:af:28:d4:95:ee:7c:88:06:dc:2c:17:61:d0:ad:d8:57:
1a:49:7f:6d:a4:37:59:e3:a7:48:0f:6a:e7:12:10:4f:a6:e6:
56:62:df:5b:56:50:8e:50:3b:cf:df:e3:a4:40:c3:a8:9f:1f:
73:c2:d5:56:af:7c:c1:61:ce:0e:4e:73:64:49:2b:5c:ad:0b:
92:b4:a1:77:bf:df:98:39:fb:d8:20:b4:18:ce:da:37:4b:48:
47:66:22:f2:45:28:7e:5c:3e:d3:aa:35:ea:60:9f:fa:38:c6:
3d:f9:7a:18:d2:91:94:38:be:52:51:d1:27:4d:14:8d:86:fe:
7a:5c:b3:19:4a:46:9a:5e:3b:7c:60:70:b8:55:86:a2:89:a9:
d8:18:e1:c0:d1:2f:6c:12:39:7e:01:7d:7e:5a:d7:67:87:22:
c2:32:52:c4:ed:63:8c:ea:1c:dd:3e:63:f2:8e:14:98:8b:a9:
1f:23:fd:02:0d:23:ca:ec:81:2d:31:68:ab:5e:91:2e:64:c7:
e2:8a:a4:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 15:34:55 2025 by rpki-client