Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.mft
File: XPRYPgFOuFcBj-61ySzhdToJy6A.mft (raw, json)
Hash identifier: 0FhdsGji5Rqz6UMg66FaX8n3VpTA3Yh+JXJb53fmqzo=
Subject key identifier: 52:C5:E7:46:7E:E7:2F:69:9E:88:D3:6D:A2:2A:5F:15:A9:B9:6C:38
Authority key identifier: 5C:F4:58:3E:01:4E:B8:57:01:8F:EE:B5:C9:2C:E1:75:3A:09:CB:A0
Certificate issuer: /CN=5cf4583e014eb857018feeb5c92ce1753a09cba0
Certificate serial: 01967C7C74DA7063F45A71A490B4F149A067
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRYPgFOuFcBj-61ySzhdToJy6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.mft
Manifest number: A5
Signing time: Mon 28 Apr 2025 13:00:53 +0000
Manifest this update: Mon 28 Apr 2025 13:00:53 +0000
Manifest next update: Tue 29 Apr 2025 13:00:53 +0000
Files and hashes: 1: TXFkFxk0go0Y2-GlYi6JLFAQr8E.roa (hash: /I3Hs2InDf2N1C0cd7n3+qfO4ge9onR8lMBOsgpKwyE=)
2: XPRYPgFOuFcBj-61ySzhdToJy6A.crl (hash: +8MSDjFvWtchORnxB6amcYp5rK9phNm39dFoKyIHAdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/XPRYPgFOuFcBj-61ySzhdToJy6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:7c:74:da:70:63:f4:5a:71:a4:90:b4:f1:49:a0:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4583e014eb857018feeb5c92ce1753a09cba0
Validity
Not Before: Apr 28 13:00:53 2025 GMT
Not After : Apr 29 13:00:53 2025 GMT
Subject: CN=52c5e7467ee72f699e88d36da22a5f15a9b96c38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:46:b1:86:72:0d:5d:e4:36:a2:78:45:7f:a4:
cd:ce:01:4c:b6:be:4f:1e:e1:3b:05:bd:6f:fc:c0:
27:61:2d:01:f7:d7:f4:36:22:e5:84:8d:81:55:97:
0d:49:77:10:21:b5:10:09:92:a6:c2:b5:98:67:3f:
bd:99:3e:cd:e5:33:13:94:00:36:45:d9:a0:6d:6c:
33:37:b9:92:71:21:5b:f2:02:71:66:a4:9c:e1:12:
78:8a:c5:62:f6:ea:37:1b:36:6c:bd:4d:41:06:9d:
f8:2c:af:4c:7b:25:ff:3e:57:bb:de:42:34:86:d6:
3d:11:d8:dc:c5:6a:06:ee:9a:c8:98:0d:7b:dc:e4:
70:7a:d5:2c:1d:d8:dc:e2:65:c0:12:6c:8b:88:2f:
ed:32:79:10:2e:cc:52:b0:44:ad:99:04:92:bb:cf:
cd:ad:54:06:d9:0c:9f:bf:ba:2e:b7:66:52:7f:01:
11:c6:2c:d2:fb:37:73:e6:0b:d8:86:d4:3e:84:d9:
84:69:b9:e5:7f:5b:f3:64:d8:fb:1f:98:46:41:3d:
f1:e4:49:37:b0:30:bf:bb:bc:14:c4:09:0a:36:27:
f0:7a:a2:80:4f:e8:db:ff:d5:4b:8a:3a:66:b9:8a:
27:e4:18:09:41:a6:1c:71:f9:69:17:c4:18:77:ed:
8e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:C5:E7:46:7E:E7:2F:69:9E:88:D3:6D:A2:2A:5F:15:A9:B9:6C:38
X509v3 Authority Key Identifier:
keyid:5C:F4:58:3E:01:4E:B8:57:01:8F:EE:B5:C9:2C:E1:75:3A:09:CB:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRYPgFOuFcBj-61ySzhdToJy6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/087d25-6db5-4285-ad76-ad7dec11bc5c/1/XPRYPgFOuFcBj-61ySzhdToJy6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:af:04:6f:d5:57:78:c0:71:51:f7:b1:87:b5:68:fd:b8:ef:
ee:a8:03:0a:38:58:1d:26:97:97:7c:9f:03:f4:99:c7:12:61:
af:e8:43:26:05:5b:52:54:b2:46:e1:87:9b:09:25:9f:76:bf:
cc:5b:bf:83:af:53:93:b3:77:a4:d5:1e:1d:e5:4b:4a:d7:ef:
38:a3:34:64:d6:8b:d6:9b:f3:11:72:8d:75:61:f9:89:5f:bf:
9b:54:be:55:8f:2c:8e:99:6a:45:76:81:a9:0a:2c:46:79:e0:
15:0d:c4:b2:65:68:ef:6b:5a:2f:8a:27:7f:cf:ce:c7:86:89:
46:8e:a5:1c:62:65:d0:65:8a:5f:d1:aa:89:b3:08:f4:3b:75:
00:4a:39:48:b6:01:15:5c:73:eb:1c:80:38:a8:06:9d:b5:5f:
e7:b4:79:92:7a:42:81:1e:f6:2e:06:19:e5:04:72:a9:6e:f5:
c4:f9:28:00:f5:2b:93:1a:be:80:48:25:4f:89:4b:a7:87:34:
0c:8d:a2:0a:ff:93:11:6a:3a:6e:b0:92:bc:96:e5:b2:90:8a:
3a:39:1c:16:91:55:ef:ff:af:c2:28:02:b4:bc:3c:58:fc:18:
32:41:db:0a:c9:4c:78:c0:46:be:07:3f:d2:76:25:fc:17:2f:
5c:ed:ed:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ8fHTacGP0WnGkkLTxSaBnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZjQ1ODNlMDE0ZWI4NTcwMThmZWViNWM5MmNlMTc1M2Ew
OWNiYTAwHhcNMjUwNDI4MTMwMDUzWhcNMjUwNDI5MTMwMDUzWjAzMTEwLwYDVQQD
Eyg1MmM1ZTc0NjdlZTcyZjY5OWU4OGQzNmRhMjJhNWYxNWE5Yjk2YzM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8UaxhnINXeQ2onhFf6TNzgFMtr5P
HuE7Bb1v/MAnYS0B99f0NiLlhI2BVZcNSXcQIbUQCZKmwrWYZz+9mT7N5TMTlAA2
RdmgbWwzN7mScSFb8gJxZqSc4RJ4isVi9uo3GzZsvU1BBp34LK9MeyX/Ple73kI0
htY9EdjcxWoG7prImA173ORwetUsHdjc4mXAEmyLiC/tMnkQLsxSsEStmQSSu8/N
rVQG2Qyfv7out2ZSfwERxizS+zdz5gvYhtQ+hNmEabnlf1vzZNj7H5hGQT3x5Ek3
sDC/u7wUxAkKNifweqKAT+jb/9VLijpmuYon5BgJQaYccflpF8QYd+2O+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFLF50Z+5y9pnojTbaIqXxWpuWw4MB8GA1UdIwQY
MBaAFFz0WD4BTrhXAY/utcks4XU6CcugMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFBSWVBnRk91RmNCai02MXlTemhkVG9KeTZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8wODdkMjUtNmRiNS00Mjg1LWFkNzYt
YWQ3ZGVjMTFiYzVjLzEvWFBSWVBnRk91RmNCai02MXlTemhkVG9KeTZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi8wODdkMjUtNmRiNS00Mjg1LWFkNzYtYWQ3ZGVjMTFiYzVj
LzEvWFBSWVBnRk91RmNCai02MXlTemhkVG9KeTZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgq8Eb9VX
eMBxUfexh7Vo/bjv7qgDCjhYHSaXl3yfA/SZxxJhr+hDJgVbUlSyRuGHmwkln3a/
zFu/g69Tk7N3pNUeHeVLStfvOKM0ZNaL1pvzEXKNdWH5iV+/m1S+VY8sjplqRXaB
qQosRnngFQ3EsmVo72taL4onf8/Ox4aJRo6lHGJl0GWKX9GqibMI9Dt1AEo5SLYB
FVxz6xyAOKgGnbVf57R5knpCgR72LgYZ5QRyqW71xPkoAPUrkxq+gEglT4lLp4c0
DI2iCv+TEWo6brCSvJblspCKOjkcFpFV7/+vwigCtLw8WPwYMkHbCslMeMBGvgc/
0nYl/BcvXO3t5w==
-----END CERTIFICATE-----
Generated at Mon Apr 28 15:27:33 2025 by rpki-client