Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
File: X017eQ8_STQyjhKaLd5N10qj4T4.mft (raw, json)
Hash identifier: u0BxZn9uOFdY3M4yOnRoM9i/e3iEVyrZgKpC6mki0fA=
Subject key identifier: AF:39:C7:1F:6F:A9:DD:B2:E1:DB:DF:AF:E3:E2:4C:F7:92:0F:AC:9D
Authority key identifier: 5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
Certificate issuer: /CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Certificate serial: 0197868F69373CC80D54A0C779BE0A2DC0C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
Manifest number: 19
Signing time: Thu 19 Jun 2025 05:00:34 +0000
Manifest this update: Thu 19 Jun 2025 05:00:34 +0000
Manifest next update: Fri 20 Jun 2025 05:00:34 +0000
Files and hashes: 1: X017eQ8_STQyjhKaLd5N10qj4T4.crl (hash: VGXNfGRIklIJIs/t8JfCtIqpRJf1svKrkMerTTYwa/w=)
2: oF0UnfdG9SgR1YrjEvyyzHdI2NQ.roa (hash: C+won2ayhOZhVuYFZ85jDDGUEWPlmXvRmRnHCUNjIgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 23:47:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:86:8f:69:37:3c:c8:0d:54:a0:c7:79:be:0a:2d:c0:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Validity
Not Before: Jun 19 05:00:34 2025 GMT
Not After : Jun 20 05:00:34 2025 GMT
Subject: CN=af39c71f6fa9ddb2e1dbdfafe3e24cf7920fac9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ef:e0:23:af:59:fb:43:07:f7:80:fb:d6:47:
b7:cf:ee:47:f4:57:2c:f7:2b:2a:82:2f:f8:df:04:
4a:55:8d:36:11:c8:53:5d:54:7d:42:e5:8a:ab:38:
6b:62:c5:46:50:b6:2a:3e:1e:6d:8a:40:58:70:0b:
65:3c:c2:92:93:0c:10:08:9d:b9:7b:49:5b:99:bb:
1f:ae:b2:1d:88:a0:d0:c2:a9:58:4e:c1:43:cb:62:
dc:1c:71:6d:9f:d7:3f:41:22:f8:a7:6d:9e:ed:fc:
f7:db:63:95:87:a3:85:c5:55:95:b5:8f:2c:cf:6b:
cd:d7:d0:e7:40:00:31:54:ac:ea:5c:9f:80:76:c4:
6a:bf:e6:b2:f9:a3:a3:03:1b:84:ee:91:73:08:32:
94:a0:b4:09:ad:e8:44:bc:93:47:90:1d:e0:cf:db:
9c:a3:94:da:5f:1a:88:ad:b9:f2:eb:e9:1f:e7:e6:
ae:9c:20:09:0f:12:68:ef:6a:15:09:36:29:1f:20:
95:3c:92:5e:bb:a3:72:e2:20:1c:77:fc:dc:28:b2:
17:f9:ef:c0:3e:85:88:29:50:35:c3:27:8a:0b:ea:
60:95:eb:2e:73:32:43:69:c5:9d:69:ab:74:32:8a:
25:6d:64:c5:d5:af:c8:bc:79:1d:2f:b9:e6:92:38:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:39:C7:1F:6F:A9:DD:B2:E1:DB:DF:AF:E3:E2:4C:F7:92:0F:AC:9D
X509v3 Authority Key Identifier:
keyid:5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ba:d9:ee:0a:80:8c:71:d0:62:c2:6d:3b:02:2e:6b:74:df:
92:58:0b:93:48:e7:5a:57:42:5e:80:7a:a3:91:bc:29:f9:52:
49:75:5d:d7:4e:ab:77:f4:5a:d5:8e:ab:f9:88:c0:76:ef:58:
c2:11:7f:c1:8f:f4:a5:8d:10:a4:a0:36:05:ce:4a:30:cb:cf:
16:b9:f5:1c:37:ac:0a:3f:4e:d3:5f:f5:2e:41:da:da:42:e3:
fa:28:97:5a:1f:81:7e:23:fe:d2:83:b2:cd:27:c6:11:c8:92:
1a:96:28:16:d5:77:dc:5a:31:0e:5f:55:b1:fe:06:93:95:37:
d0:de:4c:11:fd:19:a2:fe:ab:4c:b5:f3:77:1a:6d:5f:f8:8a:
13:14:5a:66:ab:b4:3b:0e:23:4b:ae:52:19:b0:f1:4c:4d:70:
15:98:a3:ff:1d:d0:df:6d:37:92:f5:f3:0f:f4:97:0f:62:13:
84:ec:f5:1e:da:ee:21:c1:38:ed:35:0b:76:a5:e2:27:fc:07:
b2:47:b5:6f:2f:a0:0c:ce:c3:7d:46:73:59:d0:3e:f4:30:6c:
c6:53:fa:61:06:9c:0d:96:89:77:56:e8:82:68:f7:2e:15:d2:
b0:c9:39:eb:31:13:f9:3b:3c:e6:d1:2e:bf:38:76:d9:f5:88:
6a:35:81:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 08:41:43 2025 by rpki-client