Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
File: xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft (raw, json)
Hash identifier: jTttA73gWOi6gWtZkVgPMdtPFYtsyyzFP1jwoDtV6rk=
Subject key identifier: E6:71:25:BA:0D:6B:02:D5:8F:DA:64:6B:69:13:B6:5A:1D:89:F1:57
Authority key identifier: C6:3B:E7:53:74:67:8D:B3:A0:49:F6:A3:EF:2A:FA:B7:0D:4F:6F:27
Certificate issuer: /CN=c63be75374678db3a049f6a3ef2afab70d4f6f27
Certificate serial: 0198D73AEED5C71FA06DB2E144B6C51ECF17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
Manifest number: 05B6
Signing time: Sat 23 Aug 2025 14:00:20 +0000
Manifest this update: Sat 23 Aug 2025 14:00:20 +0000
Manifest next update: Sun 24 Aug 2025 14:00:20 +0000
Files and hashes: 1: e-ekxZnIJuci57HrEPz7zGue28s.roa (hash: 8H4l0N/E0NCOJoBHvZIBH7Jz+P9G/e+mdO0E4zzVLoo=)
2: xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl (hash: wkCnKXNqUf1rFYZeq/5ouugcLrB+OB/8dNX2vhCRKNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3a:ee:d5:c7:1f:a0:6d:b2:e1:44:b6:c5:1e:cf:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c63be75374678db3a049f6a3ef2afab70d4f6f27
Validity
Not Before: Aug 23 14:00:20 2025 GMT
Not After : Aug 24 14:00:20 2025 GMT
Subject: CN=e67125ba0d6b02d58fda646b6913b65a1d89f157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:db:9e:71:31:b9:9f:95:cb:c1:ac:9b:c7:93:
81:eb:3d:c7:63:84:45:e1:4f:8d:7e:70:7d:0f:c0:
38:d3:94:80:b5:3f:4c:98:d9:ea:ce:bb:5a:0f:39:
c7:8b:e6:d5:52:3d:6b:15:94:d0:a8:14:d4:fb:94:
02:2e:e6:f1:07:c3:30:4b:9f:5c:91:aa:f8:d8:fe:
40:24:fe:47:a8:f7:d5:f5:a7:27:9f:7b:c2:42:7c:
58:15:c2:e8:83:d8:06:c3:91:9e:1a:ad:c1:fe:32:
35:81:9e:62:a1:86:0d:4a:be:b4:63:d8:8c:92:78:
8c:e6:06:45:7a:f0:3c:82:71:a6:67:33:5d:bf:15:
56:14:21:54:cc:c5:bf:67:0f:79:b9:0c:62:37:f5:
0f:e9:60:ac:83:55:4c:05:49:0c:0e:7b:5f:a6:e9:
8d:3b:12:e5:4e:00:7f:8d:cb:d5:90:c2:47:93:52:
cb:69:1d:08:3c:a0:e7:39:e9:30:b3:34:cb:b6:9e:
94:20:b3:5c:68:4f:cf:ef:10:e4:1f:82:69:23:96:
1e:e8:30:91:a9:50:9a:b2:2d:0d:de:e8:fa:45:0b:
4a:10:38:26:e8:c7:67:1f:23:b2:c4:19:d5:b9:bb:
8a:88:24:19:5f:8b:58:44:01:68:02:f1:07:a0:2a:
3e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:71:25:BA:0D:6B:02:D5:8F:DA:64:6B:69:13:B6:5A:1D:89:F1:57
X509v3 Authority Key Identifier:
keyid:C6:3B:E7:53:74:67:8D:B3:A0:49:F6:A3:EF:2A:FA:B7:0D:4F:6F:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:2a:c4:2c:22:38:55:64:c3:fa:b9:e2:94:73:ea:96:86:90:
7f:80:d8:0d:bf:21:a8:43:27:ab:e3:86:c4:a8:26:49:79:b9:
2a:34:0a:50:48:44:6d:69:51:80:e2:1e:eb:d9:25:6c:2f:1c:
ea:8c:43:88:a3:35:84:b7:6b:80:eb:f9:31:c0:35:2a:6d:08:
2e:2b:30:23:b5:37:46:db:74:31:4c:40:f9:f8:83:46:74:aa:
3c:a6:19:8c:34:bc:06:90:4e:f1:b9:e5:55:08:9c:7b:b2:47:
8e:64:1f:48:08:c8:df:ec:7f:e8:03:96:11:d3:d6:e9:39:22:
55:d5:63:b2:53:9b:94:8a:cb:96:64:ed:5d:2b:22:e0:7b:f8:
9d:9d:d5:6d:8a:b7:26:d6:08:79:de:e7:a1:3c:e7:d1:a5:90:
e1:5d:84:a5:0f:68:89:e1:50:f0:63:55:0d:a3:d4:e5:55:23:
c7:ee:e3:d7:45:ac:e7:53:62:b7:25:4a:9a:55:ee:18:b4:91:
17:2c:92:7d:c3:cc:05:6a:e1:eb:a5:84:f0:e3:a4:f0:fd:0f:
9c:76:b5:93:f8:3e:97:b5:a5:01:93:23:04:26:f9:31:55:37:
97:fe:bc:4f:b9:7c:93:f6:7e:7d:bd:7d:c9:d0:41:d2:46:c6:
bb:19:88:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:25:32 2025 by rpki-client