Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
File: xcgmUInL3eamxXnNd2tfgMD4rdQ.mft (raw, json)
Hash identifier: STINTkCch3jQtmRa0ftg32z+yRG1QoA80aOv/ScfaB8=
Subject key identifier: B9:E9:D3:EA:80:B8:F3:1A:A5:CC:C1:D7:7C:75:22:D3:1B:F1:98:38
Authority key identifier: C5:C8:26:50:89:CB:DD:E6:A6:C5:79:CD:77:6B:5F:80:C0:F8:AD:D4
Certificate issuer: /CN=c5c8265089cbdde6a6c579cd776b5f80c0f8add4
Certificate serial: 0198D515F1F010B35942534C2805FC6888AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
Manifest number: 0161
Signing time: Sat 23 Aug 2025 04:00:41 +0000
Manifest this update: Sat 23 Aug 2025 04:00:41 +0000
Manifest next update: Sun 24 Aug 2025 04:00:41 +0000
Files and hashes: 1: HnXYP_nGkSYGI2gsUnR5joaBv0k.roa (hash: QHASI9erDv03GyXaVaSPKxwrTHTkAuv0FPn5tlS8GC8=)
2: xcgmUInL3eamxXnNd2tfgMD4rdQ.crl (hash: fgdDvBALf5dlLd7MZZpG49zWQ+4NBbrsFG+XvSp/RI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:f1:f0:10:b3:59:42:53:4c:28:05:fc:68:88:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c8265089cbdde6a6c579cd776b5f80c0f8add4
Validity
Not Before: Aug 23 04:00:41 2025 GMT
Not After : Aug 24 04:00:41 2025 GMT
Subject: CN=b9e9d3ea80b8f31aa5ccc1d77c7522d31bf19838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ea:d0:6a:09:6b:ff:7b:89:c1:19:44:b4:70:
ef:1b:51:16:05:93:11:e0:5e:21:a4:e8:d4:50:b9:
41:ba:34:42:59:4b:77:51:5f:ea:1a:b0:2f:5a:2d:
8c:6d:3e:38:b3:d8:9f:0d:44:c1:c7:63:6f:d8:1d:
31:35:90:31:c5:cb:45:e2:b1:39:b7:59:24:74:b0:
b2:4f:e6:e5:34:86:65:e8:ae:e7:4f:27:6a:b5:e5:
e0:0f:29:de:18:29:ac:ba:b9:60:ba:0c:6a:f2:64:
eb:01:21:44:7b:b1:72:e3:17:4b:2a:ed:5f:aa:eb:
95:24:a1:f1:fe:ba:6d:94:16:9a:b6:dc:2f:b0:1f:
7d:44:d9:79:3f:e6:db:61:a5:eb:94:7e:9e:21:80:
21:b7:cc:9d:ef:ce:44:8b:d8:36:d9:b1:af:26:41:
b9:c3:85:7e:35:60:a5:ad:2e:b6:be:c6:fe:0a:9c:
13:20:6c:d5:4a:9b:b2:b8:f7:80:61:fc:35:b6:5c:
e4:2b:a8:86:3a:36:0e:ae:13:97:96:1c:ca:25:42:
8b:ac:3b:4a:55:42:cf:66:27:65:56:a9:b6:d3:39:
19:f8:12:58:e9:b4:86:16:58:35:73:ee:2e:76:0a:
30:b2:78:12:3a:e5:6b:98:23:4a:3f:71:3f:63:d5:
aa:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E9:D3:EA:80:B8:F3:1A:A5:CC:C1:D7:7C:75:22:D3:1B:F1:98:38
X509v3 Authority Key Identifier:
keyid:C5:C8:26:50:89:CB:DD:E6:A6:C5:79:CD:77:6B:5F:80:C0:F8:AD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:05:fa:97:b7:f6:12:79:b4:0e:98:7c:04:17:36:bf:8b:4e:
21:fb:a2:3f:0c:41:f1:68:a7:f1:75:da:f4:2b:2c:8f:90:ad:
9a:ea:dd:2f:60:db:de:cc:13:99:8e:e6:2c:ac:04:5f:7e:19:
9d:d8:a3:02:32:8a:d3:3b:6c:74:9e:ec:4c:de:ad:f4:bd:4b:
bf:27:9e:cd:0f:54:6d:a2:17:04:3a:4c:3a:b2:36:ec:0f:2c:
3c:6d:01:6a:99:4e:7c:31:ca:19:69:72:ff:69:55:9c:77:db:
d0:79:56:fb:ef:c1:34:e3:ca:86:e7:a4:c8:60:c3:88:68:8f:
1d:c1:4e:6b:93:88:59:fa:c4:59:62:db:a6:35:05:f4:7d:c7:
81:8c:d8:dc:37:9d:1c:96:bf:ad:1a:6c:fd:2c:f9:b1:ea:97:
8e:bc:19:8d:82:89:14:42:38:fd:c3:6b:c1:a3:58:88:ce:bd:
be:23:a4:85:1b:98:84:46:c8:b0:e5:d6:98:0d:39:7c:17:36:
56:e0:8b:56:e3:dc:7e:b8:51:ca:e4:5e:b4:ce:4f:1f:81:98:
af:67:57:a6:b1:12:7c:b2:76:8c:3d:c1:1d:62:55:92:29:1a:
f3:d5:22:ef:4f:49:08:6a:cb:04:e3:c9:ea:18:9f:9f:44:f2:
6a:7b:dc:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:18:57 2025 by rpki-client