Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: IZE2DehL7ugW0FnJNWoLJcJgV6Z4CubsjuQj8I1njkk=
Subject key identifier: C1:85:E6:8E:A3:64:3C:1C:EE:02:42:11:0A:0C:6F:29:3B:A1:59:1A
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 0199FBEAA37291857D8C3F114618FFF2A764
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 1426
Signing time: Sun 19 Oct 2025 10:01:22 +0000
Manifest this update: Sun 19 Oct 2025 10:01:22 +0000
Manifest next update: Mon 20 Oct 2025 10:01:22 +0000
Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: Fod2s6ZTqWcZvBn/OoJm/V6oqzcluFEO8s+o0b7NDtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:a3:72:91:85:7d:8c:3f:11:46:18:ff:f2:a7:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Oct 19 10:01:22 2025 GMT
Not After : Oct 20 10:01:22 2025 GMT
Subject: CN=c185e68ea3643c1cee0242110a0c6f293ba1591a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4c:77:6e:72:d7:f5:52:2e:10:2d:27:66:0a:
76:fb:c5:67:18:82:9a:7c:be:4f:24:17:bd:d8:97:
04:61:48:73:d8:34:f6:01:d4:3b:b4:b5:e7:39:eb:
2e:b0:c8:c1:76:09:64:b2:34:ab:03:ed:34:a0:32:
43:ff:fc:80:86:a6:27:e2:b6:14:e3:58:ac:7d:1d:
d0:bf:b9:3b:f2:69:3b:80:b2:10:48:49:84:d0:84:
1a:6d:51:47:7e:40:6a:4e:f3:e5:4a:ee:00:2e:52:
09:94:99:44:47:53:03:07:1b:8f:53:2c:3f:5c:44:
7b:f6:d0:8d:b5:15:62:ce:d9:7b:36:58:55:c2:5e:
6d:91:6f:90:4d:4f:f4:6f:53:56:5a:46:ca:dc:dd:
b2:a1:6b:e6:68:b5:60:1f:17:5e:6b:a2:b8:b6:76:
36:bf:ec:51:08:c3:b1:1b:c2:d2:25:80:a8:cd:01:
7d:06:7e:d5:ff:33:f6:ca:8a:4d:11:f0:b6:37:cd:
46:ae:a7:44:52:5d:77:8e:82:ee:bf:36:c2:f2:9a:
d1:5d:93:e1:b5:70:7c:ca:55:dc:90:d1:0d:09:34:
20:e9:0c:33:f8:f9:ad:0c:2a:cf:c4:69:e8:5a:64:
5c:f2:4b:8f:2c:e4:49:20:41:5e:ca:37:1c:07:4a:
83:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:85:E6:8E:A3:64:3C:1C:EE:02:42:11:0A:0C:6F:29:3B:A1:59:1A
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:af:98:c9:e2:4c:7b:ee:ba:f0:37:54:51:9e:8a:98:96:00:
b0:c9:bf:dd:fc:42:89:cb:90:6d:c9:42:4e:fe:98:f2:30:11:
d5:ed:3f:7c:db:9f:f1:89:5f:75:14:68:5a:3a:47:3c:4c:df:
86:48:f3:d6:b2:a2:44:83:c9:a3:cc:e4:49:3d:d2:ee:3b:d5:
a2:84:92:fa:92:dd:2e:f0:6c:60:90:68:79:04:cd:2f:e9:0d:
bc:df:ca:ab:fc:15:be:36:9c:79:e4:70:f8:a7:67:e8:d5:7b:
61:87:18:bc:7b:88:04:bc:a8:d0:f5:ef:62:2b:55:56:70:48:
8e:eb:d5:7d:71:25:46:14:cc:f3:e6:f1:cc:29:2f:37:0b:5f:
2d:2d:00:53:bf:bc:56:19:00:3e:ad:3d:9f:2d:29:f3:99:62:
e0:e0:35:7f:90:58:24:e6:47:40:ae:55:b4:b3:31:14:29:ec:
26:a3:34:e7:24:d4:40:b2:c7:c6:a9:1f:91:d5:bf:8b:07:d5:
5f:18:47:8a:8c:ef:7b:97:0e:f6:f0:62:47:b2:55:8d:d0:46:
cb:74:b1:65:8c:2d:ac:69:9f:af:20:b1:bd:cc:f7:20:d1:98:
a3:1e:d6:37:88:33:0f:57:9e:82:3f:aa:38:9a:98:4b:12:b8:
26:90:cf:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:09:43 2025 by rpki-client