Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: O+Ba5zr+7FNX/Q0Fzk0Vg8vql0tosSIvpeXHN6aRK50=
Subject key identifier: BB:44:77:BC:1F:C1:A0:DF:B4:71:95:38:2E:11:45:CF:00:2F:BE:DF
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 01976D06B0F857065F7AD5033B4EB99D8BB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 072D
Signing time: Sat 14 Jun 2025 06:00:44 +0000
Manifest this update: Sat 14 Jun 2025 06:00:44 +0000
Manifest next update: Sun 15 Jun 2025 06:00:44 +0000
Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: U6ueX6NVFG0rqTacJYclMw7vLAjIQfMgraV2bdO5j2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:b0:f8:57:06:5f:7a:d5:03:3b:4e:b9:9d:8b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Jun 14 06:00:44 2025 GMT
Not After : Jun 15 06:00:44 2025 GMT
Subject: CN=bb4477bc1fc1a0dfb47195382e1145cf002fbedf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a6:d8:d4:85:42:69:d4:89:51:c0:1a:57:2e:
63:af:cf:86:c6:cf:f9:26:10:3a:01:cd:2f:a2:8f:
9a:90:f4:b1:df:16:c5:32:1e:a4:92:bd:96:96:e7:
b7:a0:66:23:60:b9:18:57:af:a1:29:32:bc:b7:9c:
ed:75:d3:50:15:8a:06:05:e8:cf:a0:42:c6:75:fb:
9b:d1:45:b0:53:90:5e:f8:f5:4f:5e:82:6d:2f:31:
46:f6:9b:b2:f5:db:94:e8:72:86:35:9c:38:b6:06:
c8:a0:e1:86:20:7d:bc:e3:3b:2c:e9:de:52:a4:75:
89:bb:fb:10:a7:54:c7:54:46:c6:35:09:6c:e2:38:
a5:71:5c:89:f4:92:2d:fe:82:14:65:3c:c4:08:56:
8d:6c:48:b0:d1:e9:2e:f7:a7:ea:97:39:9d:f4:c2:
50:1a:e7:4c:6c:6b:7d:de:70:2e:61:0f:2b:77:18:
c9:98:6f:da:47:60:64:bb:1a:f2:81:8e:05:97:db:
04:45:a4:d8:19:29:ee:42:c5:9f:3a:84:6f:bc:ac:
02:0a:90:1a:bb:b7:e3:02:31:b7:93:b9:f1:e2:4b:
1f:43:af:b4:fb:3b:13:90:82:4c:e0:fb:b0:73:bf:
02:28:b4:1c:b0:77:13:45:4d:1b:3c:27:ac:07:3a:
b2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:44:77:BC:1F:C1:A0:DF:B4:71:95:38:2E:11:45:CF:00:2F:BE:DF
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:15:37:5c:30:f2:65:42:80:27:ad:e4:f3:2c:a5:bc:95:5d:
b9:42:ae:76:f6:bc:16:b6:99:79:29:62:70:b1:34:0d:f6:fe:
2d:c1:85:08:b3:de:0e:a2:59:79:11:06:d7:29:24:35:8a:68:
62:70:2d:d5:ef:de:9c:5a:fc:c6:b1:77:fc:fb:07:0b:21:2f:
23:27:c0:55:23:53:ae:08:e0:1e:56:75:2e:b8:db:88:91:3e:
96:ec:ba:66:d4:02:7e:d8:2c:eb:c0:2a:e5:dd:d5:18:7b:88:
c7:81:40:06:8b:76:10:c2:d0:e8:07:f7:b8:3e:7c:b4:56:7c:
e1:ce:e9:45:d3:b1:c1:be:35:3d:e0:f0:2b:96:10:98:77:12:
e0:e8:e2:38:dc:a3:a0:eb:4f:4c:76:ee:6d:2d:b1:ba:58:e9:
e3:24:b8:3a:9a:f5:51:75:0c:19:d6:b3:5e:ad:03:05:ae:4b:
df:6d:a5:d0:2f:9c:6c:35:8d:5f:bb:55:93:0e:7d:d7:ba:c9:
3d:0b:24:0d:19:d8:51:a0:58:2e:30:6d:08:76:70:cf:ca:ea:
c7:9d:81:77:81:02:06:01:98:ab:77:01:ac:aa:a6:79:94:67:
4e:2b:1e:5a:86:c3:08:35:81:dc:de:55:b4:a5:8f:54:25:48:
d2:60:48:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:32:13 2025 by rpki-client