Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: lnb7nfH8JmmuKCTeygFSbu0QY05mRMHY5SA8VwHGr3A=
Subject key identifier: F1:50:EB:B6:F3:F2:1F:96:FD:BD:06:E8:61:46:E9:64:10:7A:8D:7E
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 0198D5836972E2E5D99012CB30E1092930DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 06:00:15 +0000
Manifest this update: Sat 23 Aug 2025 06:00:15 +0000
Manifest next update: Sun 24 Aug 2025 06:00:15 +0000
Files and hashes: 1: kMIoPYj99g2K5sWXNcD0fsxHkHM.roa (hash: FopABAV6PSptIp6OTBNiTRgtYU723NWq9ChEZhzR3FM=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: KdZopWEZdGHQCoYbmMumTmdSpTROh10a6LIgRzMQB8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:69:72:e2:e5:d9:90:12:cb:30:e1:09:29:30:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Aug 23 06:00:15 2025 GMT
Not After : Aug 24 06:00:15 2025 GMT
Subject: CN=f150ebb6f3f21f96fdbd06e86146e964107a8d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b7:77:5f:4d:1b:dd:e4:89:23:0f:15:5c:97:
fd:87:11:1b:07:59:21:8a:97:40:24:c5:8a:9a:35:
f9:95:fb:7a:c2:8c:bf:45:ea:6c:64:83:c8:f9:77:
99:0e:a9:32:eb:cd:8b:cd:8a:38:92:4e:87:e0:1b:
59:06:b7:8f:99:53:71:ec:4c:03:29:d3:32:ca:3b:
64:02:3a:ac:65:49:bb:d0:45:42:6d:e2:bc:07:08:
75:02:7f:f7:9a:2d:62:60:d9:91:8b:a7:60:fb:dc:
28:97:4f:35:be:ff:3f:78:4c:c9:03:a2:23:3b:f1:
47:51:45:f0:73:ec:67:84:fd:69:93:bb:5e:b1:38:
8a:c7:01:d4:57:81:2f:a0:e9:d7:51:a6:d9:e7:68:
e3:e3:9a:e2:a3:61:cf:30:c8:87:02:6e:56:c3:e6:
14:53:69:3b:0d:52:19:0f:6b:73:9c:07:89:4a:08:
73:81:53:de:4b:9d:20:dd:cf:29:93:29:99:e9:4f:
cb:d7:7d:f5:dc:ea:bd:d3:c9:ee:a9:8e:0e:79:98:
77:91:cf:76:a4:87:6c:fb:24:6b:57:ef:cd:5f:34:
de:c5:2b:47:76:16:e7:27:1b:b4:dc:90:81:87:5f:
2d:0f:e4:60:42:04:4c:e8:d3:fd:1c:c5:a9:8a:51:
02:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:50:EB:B6:F3:F2:1F:96:FD:BD:06:E8:61:46:E9:64:10:7A:8D:7E
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:40:5d:ba:66:06:f7:9c:05:69:81:10:82:ca:33:4c:ea:a4:
07:7b:63:f7:63:6d:1b:03:fd:ea:31:2c:95:1f:f1:76:d0:b8:
e7:d7:09:81:eb:22:7a:5a:f3:57:1e:f4:dc:f3:69:21:8d:30:
49:08:a8:90:03:5e:89:79:8f:07:3e:4d:e9:2a:27:2e:a5:e3:
1c:60:54:7c:7b:77:be:c5:07:29:6e:62:72:05:df:58:21:46:
d3:b4:43:c7:c9:d0:5b:19:6b:3b:07:73:9a:6f:95:f7:bc:74:
b2:51:f0:bd:87:b9:11:77:b5:03:30:67:54:ed:53:b7:63:cc:
ab:78:51:be:15:36:62:fa:bc:48:20:51:b7:b5:bd:2a:8d:a6:
04:94:16:84:02:e3:c6:09:da:88:0e:3b:dc:45:a2:23:32:1b:
81:59:49:33:47:64:e8:9b:cc:1c:e9:f5:7d:d3:0d:bf:ed:a5:
3e:72:34:7d:60:d7:b5:36:ed:f9:4b:e7:bf:7d:a3:52:77:34:
4c:d1:b5:31:89:67:ce:40:ef:bd:93:b3:cc:05:9c:80:9b:ff:
de:0e:c1:b0:58:c0:68:94:12:23:4f:85:13:5e:6d:1b:ee:2f:
ce:0e:7d:7b:ec:dd:d4:19:f8:ef:9e:74:df:5e:83:71:98:51:
85:09:ac:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:10:55 2025 by rpki-client