Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.mft
File: xBPXo3Zf-aIrvCKZ4ElpHilAy4I.mft (raw, json)
Hash identifier: 3oXJg2zhyj0Af0BBfdqmaNsQ9B5z8jGLMRXVcX2R9eI=
Subject key identifier: 3E:AE:46:09:D6:C5:52:EA:EC:10:35:D8:B5:51:D0:AE:66:15:2F:4E
Authority key identifier: C4:13:D7:A3:76:5F:F9:A2:2B:BC:22:99:E0:49:69:1E:29:40:CB:82
Certificate issuer: /CN=c413d7a3765ff9a22bbc2299e049691e2940cb82
Certificate serial: 01977565C3037B1F9473364F0C5C261D7D6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.mft
Manifest number: 1304
Signing time: Sun 15 Jun 2025 21:01:32 +0000
Manifest this update: Sun 15 Jun 2025 21:01:32 +0000
Manifest next update: Mon 16 Jun 2025 21:01:32 +0000
Files and hashes: 1: xBPXo3Zf-aIrvCKZ4ElpHilAy4I.crl (hash: wjmxLkdO/Ft2xDIviZ+h5sbiyExwwdR8PURRC1Isouw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:75:65:c3:03:7b:1f:94:73:36:4f:0c:5c:26:1d:7d:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c413d7a3765ff9a22bbc2299e049691e2940cb82
Validity
Not Before: Jun 15 21:01:32 2025 GMT
Not After : Jun 16 21:01:32 2025 GMT
Subject: CN=3eae4609d6c552eaec1035d8b551d0ae66152f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7e:16:cc:89:6e:8e:35:ae:67:fe:44:74:3d:
58:6a:5e:93:fa:c0:98:3b:30:65:44:29:4c:43:a9:
43:3a:49:c2:21:b3:14:13:83:d9:58:c7:97:c9:c7:
66:ed:9b:eb:31:34:da:79:75:f3:fa:e5:65:f8:88:
cd:38:d7:3e:98:32:ea:e1:42:e1:0a:a7:b6:ef:55:
3f:10:54:cf:8e:b8:e0:b1:9b:13:21:f0:e3:73:71:
7d:ee:02:38:7e:f8:0f:60:8e:29:a5:6d:9e:f4:e8:
8a:2d:cb:a1:96:6a:1a:a5:70:2a:d6:f1:a7:fa:31:
77:46:13:75:90:68:cb:d1:44:69:c6:7f:49:89:ac:
df:82:3d:a3:0d:92:49:3e:cf:4d:e8:79:ab:33:b5:
51:c0:09:bd:f6:d9:ab:95:aa:ea:fd:b3:ef:6b:a7:
d1:f8:42:f6:d4:45:28:15:61:95:f0:c8:1b:97:79:
57:55:47:19:19:e6:00:1c:36:2e:f5:1c:9a:ae:41:
4b:bf:fc:52:19:dc:90:8d:ed:c1:16:f5:c2:f1:10:
58:90:cd:b8:f4:ed:a8:2e:95:01:75:2e:64:3f:68:
2f:37:5c:0e:d8:37:a6:40:dd:9f:d7:4f:66:aa:30:
01:b5:09:f4:56:75:c0:61:f7:96:2c:72:ab:42:23:
ca:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AE:46:09:D6:C5:52:EA:EC:10:35:D8:B5:51:D0:AE:66:15:2F:4E
X509v3 Authority Key Identifier:
keyid:C4:13:D7:A3:76:5F:F9:A2:2B:BC:22:99:E0:49:69:1E:29:40:CB:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:84:17:1a:99:c2:b2:e9:4f:69:6a:d7:32:bb:f3:23:de:69:
1c:4c:c2:2e:b2:b3:4d:27:96:fa:7e:56:1b:74:69:34:a9:ea:
2b:ce:cc:2b:be:b7:52:60:f4:57:79:58:ce:a4:26:a6:76:3e:
61:77:e7:f3:6e:4c:08:68:db:c0:1d:49:46:1d:09:74:9b:5b:
a1:27:68:9b:97:9a:6f:d3:53:47:68:ff:73:6e:9a:52:a7:a5:
da:9f:5e:e0:5f:f7:72:40:93:50:35:ad:27:44:22:86:d0:49:
3b:68:32:a8:fe:5f:79:42:cf:c1:83:2d:ff:2e:84:68:45:f6:
9a:67:77:1b:43:8d:e7:bf:d4:51:43:a0:a6:1f:89:ec:27:c5:
c5:98:2d:17:88:c0:f7:02:63:e2:36:15:61:98:94:1d:0f:14:
40:f2:84:c1:f8:48:e0:b9:e1:e7:82:32:be:f6:22:8f:40:eb:
74:86:d2:09:0a:7e:a0:fe:4e:57:9c:b2:4c:30:9e:b2:c3:eb:
9d:47:17:1a:b2:3d:72:79:9b:8c:34:85:30:82:88:9c:6d:57:
9d:26:c7:dd:2d:00:75:ba:2d:fb:c9:44:41:6d:ab:56:3e:bd:
51:5e:8d:63:24:f0:93:56:4d:6d:cc:d1:e2:3d:c7:97:22:cc:
a6:ac:5a:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd1ZcMDex+UczZPDFwmHX1tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0MTNkN2EzNzY1ZmY5YTIyYmJjMjI5OWUwNDk2OTFlMjk0
MGNiODIwHhcNMjUwNjE1MjEwMTMyWhcNMjUwNjE2MjEwMTMyWjAzMTEwLwYDVQQD
EygzZWFlNDYwOWQ2YzU1MmVhZWMxMDM1ZDhiNTUxZDBhZTY2MTUyZjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsn4WzIlujjWuZ/5EdD1Yal6T+sCY
OzBlRClMQ6lDOknCIbMUE4PZWMeXycdm7ZvrMTTaeXXz+uVl+IjNONc+mDLq4ULh
Cqe271U/EFTPjrjgsZsTIfDjc3F97gI4fvgPYI4ppW2e9OiKLcuhlmoapXAq1vGn
+jF3RhN1kGjL0URpxn9Jiazfgj2jDZJJPs9N6HmrM7VRwAm99tmrlarq/bPva6fR
+EL21EUoFWGV8Mgbl3lXVUcZGeYAHDYu9RyarkFLv/xSGdyQje3BFvXC8RBYkM24
9O2oLpUBdS5kP2gvN1wO2DemQN2f109mqjABtQn0VnXAYfeWLHKrQiPK3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD6uRgnWxVLq7BA12LVR0K5mFS9OMB8GA1UdIwQY
MBaAFMQT16N2X/miK7wimeBJaR4pQMuCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEJQWG8zWmYtYUlydkNLWjRFbHBIaWxBeTRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9hN2JjODYtMDk1NS00NjhiLTllYjUt
ZTg2MGJlN2U3YzU0LzEveEJQWG8zWmYtYUlydkNLWjRFbHBIaWxBeTRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9hN2JjODYtMDk1NS00NjhiLTllYjUtZTg2MGJlN2U3YzU0
LzEveEJQWG8zWmYtYUlydkNLWjRFbHBIaWxBeTRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYYQXGpnC
sulPaWrXMrvzI95pHEzCLrKzTSeW+n5WG3RpNKnqK87MK763UmD0V3lYzqQmpnY+
YXfn825MCGjbwB1JRh0JdJtboSdom5eab9NTR2j/c26aUqel2p9e4F/3ckCTUDWt
J0QihtBJO2gyqP5feULPwYMt/y6EaEX2mmd3G0ON57/UUUOgph+J7CfFxZgtF4jA
9wJj4jYVYZiUHQ8UQPKEwfhI4Lnh54IyvvYij0DrdIbSCQp+oP5OV5yyTDCessPr
nUcXGrI9cnmbjDSFMIKInG1XnSbH3S0Adbot+8lEQW2rVj69UV6NYyTwk1ZNbczR
4j3HlyLMpqxa+Q==
-----END CERTIFICATE-----
Generated at Sun Jun 15 23:47:19 2025 by rpki-client