Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
File: xTG2PRGmzC0c5p4TEch6waanBzM.mft (raw, json)
Hash identifier: nJLKsK1HrPoDKuJzrb1lGqf/ugl81JIZND1c6PEg534=
Subject key identifier: 91:7C:26:46:49:DC:4B:E1:2B:A9:78:04:A0:9C:88:70:19:86:A4:B5
Authority key identifier: C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
Certificate issuer: /CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Certificate serial: 01976BBD05CF24F5320BC022F32905A55A9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
Manifest number: 0E12
Signing time: Sat 14 Jun 2025 00:00:39 +0000
Manifest this update: Sat 14 Jun 2025 00:00:39 +0000
Manifest next update: Sun 15 Jun 2025 00:00:39 +0000
Files and hashes: 1: 3cKiOm3cqL9AuF9PS6f53tN4Gdg.roa (hash: HiF4cbbVkgMNvvCZGg36cGuMWinu6Z8X1/cmYfYlH0w=)
2: 7dlaDlkKgi4dAirWDUWBZGBGqcU.roa (hash: p1fbv33BP/4U3m5pS2Ws4rI2vfUa3r6QuSWQWQR+Iw4=)
3: xTG2PRGmzC0c5p4TEch6waanBzM.crl (hash: 8p1uq9Y3TeF3QvZcy/D1hh+CLaarp36rqZTTUkVRGBA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:05:cf:24:f5:32:0b:c0:22:f3:29:05:a5:5a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Validity
Not Before: Jun 14 00:00:39 2025 GMT
Not After : Jun 15 00:00:39 2025 GMT
Subject: CN=917c264649dc4be12ba97804a09c88701986a4b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d7:6a:ca:43:a3:b3:bc:09:92:fb:56:5a:bd:
f1:15:ae:6e:01:ec:81:37:c2:e9:07:a1:af:9b:0f:
b2:82:11:e4:c2:55:71:56:70:f5:c4:59:80:25:1d:
76:2a:08:09:54:45:91:86:d7:3d:d8:1e:22:01:b4:
f2:9a:ae:7e:e2:b7:f1:7d:d6:e4:47:59:8f:af:a0:
68:72:24:8a:bd:32:2b:e0:ac:2c:b3:98:71:db:fd:
09:7c:5e:3e:46:79:f0:0e:aa:ed:96:56:6b:f0:d5:
08:86:dd:de:25:20:f2:0e:29:9e:ef:9a:60:71:72:
0a:dd:cc:67:78:76:78:e4:95:ae:d8:91:07:da:6f:
b7:2a:35:70:8c:71:44:02:52:c7:cc:ad:a5:85:1e:
d4:a3:cc:4d:de:7a:46:a4:91:23:c7:ea:a8:66:46:
94:52:99:19:a4:28:11:bf:9d:54:4e:99:74:8a:22:
8b:65:62:be:6d:47:ae:bd:5f:15:62:9c:78:ff:8d:
ad:a3:5c:92:a8:a9:35:aa:5a:ce:0f:21:3d:4d:79:
04:e1:04:1e:19:45:b3:23:e2:90:b8:4a:f2:de:11:
64:d5:3b:7e:bd:9b:67:c5:b4:8c:3c:1a:75:e1:e9:
e2:22:10:3d:6d:41:56:d9:4d:25:e2:33:fa:2c:97:
3c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7C:26:46:49:DC:4B:E1:2B:A9:78:04:A0:9C:88:70:19:86:A4:B5
X509v3 Authority Key Identifier:
keyid:C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:2d:4b:f6:36:5f:87:fe:19:99:62:78:7c:e0:d7:dd:af:09:
0f:c9:43:f3:d2:e1:e6:44:5f:77:36:21:f3:d0:68:56:97:5a:
55:9f:1d:43:bf:3a:48:42:67:f2:9e:87:bf:84:8e:7a:2a:ec:
b4:bb:cd:c7:3d:86:47:b5:83:bc:65:26:05:4e:52:48:0a:30:
04:8a:eb:6f:e9:54:08:45:22:7b:84:cc:cf:49:7e:4d:b6:50:
3e:2f:37:2f:89:18:d7:93:80:cf:10:d3:be:a8:68:43:0c:79:
8a:fd:43:ee:93:41:6a:e7:ce:a9:b8:32:81:87:b8:c8:5a:d5:
fb:18:21:bf:be:af:74:8b:c9:8f:dd:da:c1:50:6b:8c:e7:90:
74:7f:87:24:e2:0a:24:60:6d:a7:97:3e:fd:83:8f:0d:b7:02:
f7:30:1a:65:61:1f:c4:95:7e:64:10:08:5e:49:d4:71:d8:17:
6b:6c:a7:a6:67:f1:db:6d:e2:ec:92:cb:72:cb:89:3a:90:07:
34:6e:2c:01:f4:30:be:30:86:75:69:ab:49:f5:18:0e:ff:b9:
65:02:91:be:6e:f8:e4:e0:5e:0a:42:f1:e8:f6:7c:a0:26:82:
76:bf:de:ff:4c:85:18:a3:13:84:d5:18:59:2d:71:4e:c1:c2:
cd:77:9b:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:15:45 2025 by rpki-client