Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: 1GNZPcAsu10jx8lKyur1SfattAIviL6JC0IJu68Tni4=
Subject key identifier: 0A:B6:FC:A4:98:81:B7:A1:E1:64:65:C8:15:83:EF:2D:0B:80:BD:19
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 0198D660230913C10AF33FCE64906177C5A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 138E
Signing time: Sat 23 Aug 2025 10:01:21 +0000
Manifest this update: Sat 23 Aug 2025 10:01:21 +0000
Manifest next update: Sun 24 Aug 2025 10:01:21 +0000
Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: 5X4jo2g3yn40i8V8UfaxVMK7Q3+RlL5goBDhjMX2qMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:23:09:13:c1:0a:f3:3f:ce:64:90:61:77:c5:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Aug 23 10:01:21 2025 GMT
Not After : Aug 24 10:01:21 2025 GMT
Subject: CN=0ab6fca49881b7a1e16465c81583ef2d0b80bd19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:71:d1:3e:a1:41:62:13:31:1a:b4:be:43:95:
93:0b:09:0e:d8:87:50:de:dd:0d:91:b8:f3:c3:0f:
81:04:8d:ed:cd:ee:95:89:4a:ed:7c:e8:53:2c:e4:
37:9c:6b:09:eb:3b:b4:90:9f:ad:fc:bb:68:f5:f8:
7c:30:87:e8:f2:02:7e:66:68:46:26:0c:d3:ca:bc:
23:5f:c3:ca:19:cc:1d:06:04:b2:0f:0d:6c:45:da:
81:cd:bd:ec:62:49:33:85:a9:48:7d:6a:80:99:fa:
9a:94:04:3e:a6:c2:34:dc:e6:54:22:ea:45:62:8c:
1d:c8:68:f1:53:87:fc:6a:8f:80:6c:24:62:93:dc:
c2:e4:6b:74:05:5a:cf:a1:2f:6e:62:bc:30:a4:09:
86:ad:7a:28:2e:db:9f:99:2e:ad:3a:d1:5f:1d:05:
bf:ef:8e:bf:a2:5f:f4:5b:a4:02:b3:a1:76:22:14:
a1:59:23:65:72:66:f4:08:b3:88:f7:7f:3e:c5:a7:
ac:f3:d4:c5:4c:42:82:d6:08:7f:77:be:51:0c:5d:
05:d6:67:b1:f2:66:7c:c2:44:69:1c:42:f9:97:07:
9a:bc:fd:67:0d:8a:8b:68:de:b8:69:d2:7d:1a:0f:
bf:26:c6:e3:81:c7:5d:01:1d:e0:ce:5a:78:11:f7:
97:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B6:FC:A4:98:81:B7:A1:E1:64:65:C8:15:83:EF:2D:0B:80:BD:19
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:3f:1d:6e:01:34:30:d2:dd:7c:03:63:f5:f2:dc:14:11:f6:
10:e6:d7:1b:15:20:da:f2:c4:b7:77:e1:0f:8d:5c:23:62:2f:
66:ea:58:eb:37:0d:04:03:40:cd:54:72:33:f2:77:a1:21:2d:
ad:13:28:74:94:2f:2d:23:4b:37:05:66:b8:8e:88:f5:66:8c:
70:ee:b2:eb:ea:58:fb:42:68:56:96:05:99:42:4f:02:dd:6a:
0e:c0:04:59:40:7e:2b:ff:50:e6:02:66:c8:a6:b1:3f:88:c7:
cc:f4:e0:0d:95:ed:7e:73:77:98:2f:fd:6b:68:a9:2b:a2:a3:
ff:64:21:6e:3d:e4:af:02:c9:10:f7:f6:42:49:82:87:d8:d4:
d7:fb:8b:7a:c5:cd:a3:92:11:d8:af:0a:8c:eb:ad:bf:2e:c9:
51:31:ec:5d:da:46:ce:d3:2c:8b:b9:a9:12:ce:29:b8:9d:70:
ce:d1:c6:30:e9:2c:54:2d:6f:23:10:07:7b:14:93:db:a4:7f:
b5:43:71:a0:1a:17:5c:70:02:97:46:1c:11:e0:7d:55:bc:17:
74:d5:07:96:d3:b2:c3:53:ae:c9:f8:ac:0a:cd:f2:da:b8:37:
45:1c:5b:08:c4:c4:ba:ba:09:3a:f8:d1:64:6b:0f:be:d5:bc:
b6:01:04:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:05 2025 by rpki-client