Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
File: xhMz0OgQeIbQMFx72BvdNUiVJ64.mft (raw, json)
Hash identifier: evB6i9vN1Hk+xseh849cWwOEkS8WJVprLpTdYzsDdxw=
Subject key identifier: 41:56:27:D7:37:BD:52:11:FD:6D:6F:A1:73:83:BA:F3:B3:52:B3:EF
Authority key identifier: C6:13:33:D0:E8:10:78:86:D0:30:5C:7B:D8:1B:DD:35:48:95:27:AE
Certificate issuer: /CN=c61333d0e8107886d0305c7bd81bdd35489527ae
Certificate serial: 01977C0BC2153F59ADE8B1D7A3C4636DC586
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
Manifest number: 1597
Signing time: Tue 17 Jun 2025 04:00:34 +0000
Manifest this update: Tue 17 Jun 2025 04:00:34 +0000
Manifest next update: Wed 18 Jun 2025 04:00:34 +0000
Files and hashes: 1: vl15h6bSawu987-Q_9jiY_8d_bU.roa (hash: Ky1qbRFkXL3xxI3+FV1tNHYzBN6SggIg4pNwGCFKnF8=)
2: xhMz0OgQeIbQMFx72BvdNUiVJ64.crl (hash: HKjj2Wqr4/dwl9ouNdqC3EfnJv4VhwdwiP4N4EDtk9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 04:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7c:0b:c2:15:3f:59:ad:e8:b1:d7:a3:c4:63:6d:c5:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61333d0e8107886d0305c7bd81bdd35489527ae
Validity
Not Before: Jun 17 04:00:34 2025 GMT
Not After : Jun 18 04:00:34 2025 GMT
Subject: CN=415627d737bd5211fd6d6fa17383baf3b352b3ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:47:bb:f4:88:6e:be:41:9b:ac:36:98:00:d5:
e8:c1:05:f2:e8:dd:ff:54:85:1c:b9:74:31:54:66:
83:c4:9d:07:88:c6:f9:6c:d0:d4:d8:90:2f:62:55:
62:66:51:7f:e6:99:4b:5f:d1:44:7d:2e:a6:c0:ce:
ed:6e:66:8a:3c:0a:03:7b:00:de:5f:2d:f3:70:93:
f2:a8:0a:a0:b3:05:7a:5e:db:4f:ec:85:64:43:9c:
88:22:68:37:08:43:3f:aa:e0:d9:a5:34:bd:60:5f:
fb:7d:b2:ae:bf:3b:bb:d2:4a:a1:6d:6f:f5:c3:b1:
ab:b0:34:2d:e6:9c:e8:4e:31:13:b6:0c:eb:39:6c:
94:24:97:e5:66:f2:04:24:b7:08:e2:e7:7f:57:f7:
97:14:47:f8:0d:d8:57:dc:a9:57:95:64:b8:e0:9e:
8c:7d:45:4b:13:39:64:74:5e:99:93:d0:2e:a8:00:
78:b4:cb:f0:7a:34:be:b2:5c:72:ad:a7:d5:8e:66:
eb:8b:94:f2:8d:10:09:f8:a3:c6:91:d3:5e:de:8b:
62:50:17:a9:5e:c4:3f:3a:13:67:d7:f0:ad:91:a4:
5a:31:60:5b:09:16:8e:26:aa:1d:a9:72:ef:37:a1:
83:ea:3f:c3:1d:25:0a:2d:f7:d5:aa:e0:80:9c:e6:
e7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:56:27:D7:37:BD:52:11:FD:6D:6F:A1:73:83:BA:F3:B3:52:B3:EF
X509v3 Authority Key Identifier:
keyid:C6:13:33:D0:E8:10:78:86:D0:30:5C:7B:D8:1B:DD:35:48:95:27:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:1b:1a:94:a6:14:fa:38:8b:a8:4e:10:1b:40:eb:f9:64:ef:
42:07:d5:20:d4:b4:73:fd:76:13:53:7d:a1:b9:a0:86:e5:56:
43:f2:0b:39:1e:cd:5a:ca:8e:92:ec:f3:63:04:a9:d0:8a:a0:
4a:25:2e:6f:72:40:a0:7d:63:61:3e:4a:59:29:e3:62:73:4c:
53:4c:1a:87:87:1f:43:8a:a0:7e:53:71:e6:70:99:74:f7:14:
27:bc:ae:48:3a:86:13:13:60:15:5b:08:b5:86:f5:f4:97:ec:
f3:be:7c:1d:3a:ee:d4:74:7b:ee:fd:95:39:92:5b:a0:4d:95:
d0:73:3e:66:aa:64:d4:68:72:56:c4:62:b5:70:d0:24:eb:ed:
de:9d:49:e3:50:58:98:d9:88:0d:b6:e4:0f:9d:b5:8f:4f:a0:
b6:97:cd:b5:0b:56:dc:4e:79:a3:7d:de:66:aa:ae:82:22:81:
53:4f:fe:11:57:93:68:aa:85:0e:f4:e7:59:d6:ab:6a:a7:a4:
39:ca:0a:ab:84:e7:4d:47:8c:a9:1b:a6:13:93:17:aa:e7:10:
94:e3:39:44:a9:22:f8:83:3a:89:f4:cd:f2:71:99:2b:b1:88:
d9:7f:00:b0:5c:f4:99:15:00:81:26:80:74:07:c3:6f:60:ed:
a1:66:80:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 10:05:21 2025 by rpki-client