Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
File: xKMWKFZYILOlo-HPyHdz4oP7lcE.mft (raw, json)
Hash identifier: hU7fg6A2bYWaq8I2x6ymya2iekXQ66dURloGjAy7TXs=
Subject key identifier: 15:90:71:11:5D:19:33:0F:56:35:C1:73:22:4D:6E:36:97:9B:E3:C5
Authority key identifier: C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
Certificate issuer: /CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Certificate serial: 01977DFA0C3DEE00F37E5C7F48193C5C876C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
Manifest number: 0ADD
Signing time: Tue 17 Jun 2025 13:00:28 +0000
Manifest this update: Tue 17 Jun 2025 13:00:28 +0000
Manifest next update: Wed 18 Jun 2025 13:00:28 +0000
Files and hashes: 1: O7JK_R6ip6iR244uyf3DBgROHco.roa (hash: GKH7o0xxF7nZfmB+4s7mUapBQQrsXrRHoDwbM7Hh8hA=)
2: xKMWKFZYILOlo-HPyHdz4oP7lcE.crl (hash: BqCSMSRf3KQp1RIkJ2uRSsAoIfPCl4utu0VRr4yPNew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 13:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:fa:0c:3d:ee:00:f3:7e:5c:7f:48:19:3c:5c:87:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Validity
Not Before: Jun 17 13:00:28 2025 GMT
Not After : Jun 18 13:00:28 2025 GMT
Subject: CN=159071115d19330f5635c173224d6e36979be3c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a7:d5:f6:d8:b8:25:cb:ac:c1:16:1f:5c:fc:
35:95:2d:b2:c2:ff:bf:5f:40:db:e2:4e:23:1b:54:
d3:5a:27:db:d9:70:9c:61:f3:17:61:0f:a9:88:34:
2c:46:09:3d:80:43:74:d2:7a:79:c9:a9:d2:24:2e:
c9:dd:b0:5c:78:eb:0a:e9:0b:4c:37:14:84:01:b7:
6c:0f:85:3f:6c:12:1a:fb:67:5d:a5:a3:1b:5d:24:
fd:5a:97:70:91:da:c5:19:54:ce:4e:95:c0:f3:59:
80:c0:8d:eb:07:81:79:9a:aa:d6:2f:0c:b3:a7:2c:
f1:8d:60:a8:86:de:e1:97:7f:d4:ff:35:74:c1:3e:
cc:aa:e7:e2:7d:95:3f:04:5d:86:21:c0:97:84:e9:
91:f9:e7:a4:f2:96:60:e7:d7:d8:ea:2f:db:95:e6:
45:fe:62:4c:5f:ef:02:9f:f8:52:17:3c:35:eb:c7:
df:5a:6a:26:ee:d8:a6:11:1e:65:95:6b:6a:00:0e:
94:a6:79:1f:d9:a0:29:3b:04:e1:a2:38:f7:f7:77:
10:6c:83:11:76:fd:06:57:db:85:65:6c:b7:14:ac:
70:8e:ef:fb:d3:fe:b0:db:7b:1e:26:c0:e6:74:69:
68:b2:25:1a:f0:f6:c7:ac:a4:56:40:93:f7:68:cf:
07:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:90:71:11:5D:19:33:0F:56:35:C1:73:22:4D:6E:36:97:9B:E3:C5
X509v3 Authority Key Identifier:
keyid:C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:a2:68:50:16:16:69:cd:ed:90:6c:ff:de:87:54:4f:ff:26:
75:35:b4:38:bb:31:bf:07:62:08:c3:84:cf:8c:aa:87:a4:76:
97:20:6b:16:d7:71:65:cb:e2:e9:18:c4:06:9b:24:8e:11:19:
6b:48:a8:5e:b6:2c:ed:2a:5d:73:57:6a:87:7e:f7:7f:fe:be:
24:db:62:7e:ae:37:79:ee:09:51:15:7e:74:81:ec:bf:d3:13:
3a:4a:8a:2e:aa:a6:fc:28:dd:bf:38:78:7f:fc:e5:b4:40:11:
be:f9:b0:f8:f0:a2:fe:03:ec:18:19:a6:d3:b4:3b:04:f6:dc:
e9:e1:b3:b4:0e:8d:b3:4b:c1:b4:c9:64:1b:30:92:d1:53:a7:
2b:8f:f9:7b:61:64:82:4a:bd:5c:51:99:b7:f9:5b:07:80:18:
54:1e:62:86:2e:56:f1:51:9c:14:d2:b4:13:29:12:b6:6b:b4:
50:e7:09:4d:c6:93:4d:7a:c2:ea:41:29:d8:b4:6e:90:34:f7:
52:c0:b9:3f:57:a0:9a:90:ae:f2:75:27:f3:77:de:16:b1:d7:
8d:93:da:85:55:25:bf:3e:ea:b6:6b:fe:97:c8:be:c4:67:1e:
b0:03:90:69:e2:65:8b:59:d8:5a:d6:64:aa:1a:11:ee:5a:ec:
54:54:04:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 23:03:15 2025 by rpki-client