Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.mft
File: XPRYPgFOuFcBj-61ySzhdToJy6A.mft (raw, json)
Hash identifier: ePARpnubhqud91hr8UiORqLg+WfzhyDK6BEH4NsZyEA=
Subject key identifier: B3:F5:27:C5:8C:B9:2F:4D:E6:6B:85:CF:9A:F6:6D:2D:1F:CB:45:A9
Authority key identifier: 5C:F4:58:3E:01:4E:B8:57:01:8F:EE:B5:C9:2C:E1:75:3A:09:CB:A0
Certificate issuer: /CN=5cf4583e014eb857018feeb5c92ce1753a09cba0
Certificate serial: 01976BF4853D4C46DB488043FA53F4237239
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRYPgFOuFcBj-61ySzhdToJy6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.mft
Manifest number: 0121
Signing time: Sat 14 Jun 2025 01:01:16 +0000
Manifest this update: Sat 14 Jun 2025 01:01:16 +0000
Manifest next update: Sun 15 Jun 2025 01:01:16 +0000
Files and hashes: 1: TXFkFxk0go0Y2-GlYi6JLFAQr8E.roa (hash: /I3Hs2InDf2N1C0cd7n3+qfO4ge9onR8lMBOsgpKwyE=)
2: XPRYPgFOuFcBj-61ySzhdToJy6A.crl (hash: xhXgITZhQ+LuProShnjuUk2d8y88VU7CmvOLDaNyDFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/XPRYPgFOuFcBj-61ySzhdToJy6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:85:3d:4c:46:db:48:80:43:fa:53:f4:23:72:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4583e014eb857018feeb5c92ce1753a09cba0
Validity
Not Before: Jun 14 01:01:16 2025 GMT
Not After : Jun 15 01:01:16 2025 GMT
Subject: CN=b3f527c58cb92f4de66b85cf9af66d2d1fcb45a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f3:b8:87:b9:f0:73:a8:2e:5d:94:d0:a6:94:
00:33:20:8d:71:50:9c:0b:23:e1:dc:e1:fd:0e:02:
9a:a2:70:8b:61:57:63:90:12:44:53:0c:7b:a4:b7:
2d:fb:0c:32:98:3b:74:04:59:37:0a:bc:b5:0a:9e:
dc:33:b0:da:8d:76:fb:ea:10:19:4d:b6:c1:36:e9:
02:35:30:d0:4f:0f:8e:c2:c3:07:cc:a6:98:c8:f6:
9b:f0:8a:51:f4:ef:74:e4:f9:25:20:30:1e:e8:64:
02:0b:24:74:9e:17:5d:7a:ee:4a:49:ef:8c:bf:3f:
de:10:97:fd:14:a8:3d:1c:d7:4e:e8:57:3b:4a:1b:
b8:bc:b5:e6:46:fe:10:9f:ac:65:18:db:04:f7:de:
20:7a:4c:d3:d3:bb:94:72:b1:ed:6b:70:3c:bf:a2:
46:f7:15:29:28:ce:7f:ba:a9:6e:a9:41:78:ea:04:
36:bb:5f:25:23:7d:5d:73:4f:f2:8f:16:16:12:7a:
93:ae:96:0b:91:e4:a6:0e:d9:d6:61:4a:f3:dc:40:
ec:0f:83:45:e3:63:de:a3:3d:80:d6:22:8f:de:4c:
1c:41:eb:31:1f:31:91:15:9c:20:64:35:63:11:49:
0c:2f:95:3a:2b:67:ff:29:43:1b:66:68:bd:c8:61:
b1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F5:27:C5:8C:B9:2F:4D:E6:6B:85:CF:9A:F6:6D:2D:1F:CB:45:A9
X509v3 Authority Key Identifier:
keyid:5C:F4:58:3E:01:4E:B8:57:01:8F:EE:B5:C9:2C:E1:75:3A:09:CB:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRYPgFOuFcBj-61ySzhdToJy6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ed:5d:d0:66:56:fc:d6:45:45:af:ff:ec:68:da:af:7a:42:
9f:8b:2d:c0:1b:65:f8:5c:8f:6e:6a:21:4e:55:3c:dc:13:f7:
e2:d8:a4:5e:2b:04:8e:1e:ad:5b:99:62:ef:47:7e:5c:94:18:
43:95:de:6e:ff:d4:6a:99:cd:d1:d5:8c:27:d2:c4:08:fb:7e:
76:da:79:de:3f:98:2e:bd:e5:6a:81:30:b4:96:b4:59:36:48:
c4:8c:62:d1:22:c8:79:1f:04:d4:74:60:f7:95:85:d0:9e:8d:
70:47:1f:fd:88:4a:6c:33:5a:ad:b8:9f:86:e9:e1:29:fa:65:
96:dd:f1:9e:2f:13:85:d0:4b:25:fa:60:33:c6:37:87:7d:e0:
20:72:52:12:eb:01:92:75:5c:2e:e7:b1:ac:06:3e:72:f8:0e:
94:ee:68:ae:96:f2:2e:ac:09:76:e7:d0:3a:73:2c:ba:57:72:
66:93:ad:cd:f0:f7:e4:14:8e:47:31:3f:86:a0:45:8e:f5:39:
6e:58:bd:2f:13:0d:6e:15:db:23:60:24:27:d2:50:e3:91:9c:
ff:63:67:48:6e:58:73:74:f0:66:19:25:8c:16:12:09:42:41:
a3:b3:5a:8c:4b:9e:c3:94:86:04:93:ae:d4:de:68:b9:4a:33:
e6:06:04:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:37:53 2025 by rpki-client