Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: Iv7AmebBIjmg7CBSWoxKJhka8eCBeXAwOlDUN3uUXqU=
Subject key identifier: DE:E3:41:72:E4:55:CB:DC:91:0A:5F:12:93:B1:90:80:77:EB:5E:15
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 01976929F215A7325563FDF3DBB7872D7A74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 048B
Signing time: Fri 13 Jun 2025 12:00:45 +0000
Manifest this update: Fri 13 Jun 2025 12:00:45 +0000
Manifest next update: Sat 14 Jun 2025 12:00:45 +0000
Files and hashes: 1: S6aYdrXE8VeCcP5w8D7hhhcOGoc.roa (hash: csN/l/mC6C7LyFwDFQUEKU3wX0HgZWqjImlEztzBO3Q=)
2: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: fc7UYmu9p0Cp0MZs9xfFkYpT7vFaDgJUn/khr5BtvSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:f2:15:a7:32:55:63:fd:f3:db:b7:87:2d:7a:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Jun 13 12:00:45 2025 GMT
Not After : Jun 14 12:00:45 2025 GMT
Subject: CN=dee34172e455cbdc910a5f1293b1908077eb5e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4a:ad:84:51:64:eb:6b:9e:d0:02:c5:3c:a0:
be:1e:04:8d:12:0d:98:69:c8:42:c5:01:ea:3f:c5:
f7:71:41:a2:62:be:ea:10:da:fe:9a:0a:47:1b:f6:
1d:87:67:c5:6e:b6:b1:53:83:30:e4:81:e7:56:e8:
a1:fe:4f:3d:15:4c:b2:6a:96:95:13:a3:fe:80:bd:
41:49:bb:c0:68:72:25:0c:f6:ed:2d:a5:93:55:e4:
41:60:0d:56:b4:8e:94:d8:75:f0:9d:9d:ef:ea:39:
d4:94:6e:d9:43:0b:06:7c:c4:57:5c:94:5b:76:ed:
df:a0:2a:cf:40:c7:66:41:51:9a:1f:58:0a:52:39:
72:aa:79:d9:40:94:c6:0c:fe:43:17:14:ff:5b:a1:
69:51:93:ac:a8:95:de:07:5f:0a:c5:35:ca:56:62:
20:aa:72:d4:83:9b:d1:ac:b3:04:2c:4d:d7:67:e6:
de:a7:39:f1:d9:ac:89:4a:fe:c1:fc:23:ff:e5:e7:
10:e0:d1:73:12:15:4e:1e:5d:42:8d:00:4e:68:95:
22:d0:28:e3:56:40:a0:7e:01:ea:85:81:6a:22:8c:
74:01:97:76:8c:df:c3:27:48:5d:a8:d0:db:13:8b:
af:7f:ac:59:ff:79:a8:be:e4:7a:cf:c1:27:29:ad:
6a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E3:41:72:E4:55:CB:DC:91:0A:5F:12:93:B1:90:80:77:EB:5E:15
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:59:90:61:a1:11:53:e3:83:95:87:4e:73:3e:16:8b:c7:d3:
42:a4:92:eb:76:b4:29:6f:d9:81:d4:17:da:85:66:e2:42:9a:
72:20:5f:34:bc:46:8f:92:57:c4:bd:1e:04:a2:61:8e:01:68:
a1:31:08:f5:ac:e4:ed:50:81:5e:4c:17:60:41:ec:e9:20:45:
4d:68:7c:1e:e0:e2:de:59:21:45:4b:50:98:7b:0e:f8:15:24:
f7:c2:30:00:74:6f:74:3f:c0:3a:30:02:2a:b1:92:83:d1:1e:
d9:46:b8:a4:27:3e:89:fc:88:44:ac:db:e0:d4:cb:43:67:2f:
5e:21:5c:12:6f:9b:c2:c2:cb:25:79:15:34:a1:2d:9f:82:0a:
a8:51:e6:3c:ef:9b:e0:79:78:f2:a8:eb:cf:0f:23:6b:ee:ec:
81:bf:68:e1:1c:da:b6:d4:99:86:9f:dc:ba:b0:1f:ec:4b:43:
49:d6:2e:98:9c:76:eb:2d:ec:69:3c:70:fc:71:fe:eb:7f:e0:
68:b4:cc:28:63:43:12:4e:16:4f:83:6b:9b:aa:d8:52:f8:10:
f4:a5:ae:b9:bd:b2:c8:36:db:1a:cd:25:d0:4b:6e:ee:6d:57:
38:06:72:70:86:45:b5:2f:04:d6:38:8a:90:42:2e:72:60:f3:
2f:ea:4f:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:15:39 2025 by rpki-client