Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
File: xVFHJIBoPGGXD2BfsZnuturhIYs.mft (raw, json)
Hash identifier: OcMofUiWpkoxgd437oGWa7s34r6hG87sy3csVfmHCiM=
Subject key identifier: ED:46:B2:85:95:BF:45:97:48:6A:56:5B:A0:A6:B6:F4:06:20:10:82
Authority key identifier: C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
Certificate issuer: /CN=c551472480683c61970f605fb199eeb6eae1218b
Certificate serial: 0198D473305D960D4B8871A32C9BC3A09F1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
Manifest number: 134B
Signing time: Sat 23 Aug 2025 01:02:55 +0000
Manifest this update: Sat 23 Aug 2025 01:02:55 +0000
Manifest next update: Sun 24 Aug 2025 01:02:55 +0000
Files and hashes: 1: 7CZAgUvQPu-wrbV-N9bEd3CgOWs.roa (hash: sMayzuz7AI9s61a/aq9HH1Cc6asWKL5qDPVUoL1bHKQ=)
2: xVFHJIBoPGGXD2BfsZnuturhIYs.crl (hash: 19savS1c3/S6HMuZR2ArO8qr4Oa7Hr5dFxMuX29FCFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:30:5d:96:0d:4b:88:71:a3:2c:9b:c3:a0:9f:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c551472480683c61970f605fb199eeb6eae1218b
Validity
Not Before: Aug 23 01:02:55 2025 GMT
Not After : Aug 24 01:02:55 2025 GMT
Subject: CN=ed46b28595bf4597486a565ba0a6b6f406201082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:49:98:12:ac:13:22:6e:b0:9d:36:94:31:8d:
68:04:c1:99:b5:ad:3a:9f:34:7d:c1:2b:75:8c:44:
82:b4:44:32:79:2a:0d:84:2f:7d:7e:5c:82:0c:d5:
3c:9e:d8:89:53:83:b2:a4:6f:ba:ff:70:b5:c9:f2:
c4:81:be:ba:81:9e:8c:ee:16:d0:03:96:1d:94:a2:
36:4d:dc:87:bb:9b:07:88:d3:ae:60:f9:f1:a6:c5:
2a:1d:94:68:d4:52:8d:fb:51:5a:60:ab:59:c8:6b:
b8:f1:1b:2e:80:94:92:6b:8c:a6:97:06:27:2d:15:
50:11:46:69:13:3c:c9:2d:55:5f:69:54:33:29:49:
d5:49:e8:83:ac:9b:55:53:9d:ae:04:fd:26:12:6d:
2c:fd:5b:b5:2a:d6:2d:1e:16:08:12:50:b6:05:36:
62:6b:82:6f:d1:f3:d7:c2:fd:9c:5d:9b:38:59:ae:
4a:bd:90:4d:a3:3d:7f:b3:8d:48:d9:a5:40:fc:73:
d1:ca:c9:5c:80:01:24:cb:58:7d:7a:fd:6e:d2:82:
81:6e:bf:df:e3:32:47:6e:49:e2:70:08:e4:10:ca:
24:9a:1c:41:fb:34:e9:a0:8d:fc:d3:f3:8a:22:f8:
e4:6b:8d:b5:36:81:78:1a:6d:3d:2e:f2:1c:cf:e4:
ff:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:46:B2:85:95:BF:45:97:48:6A:56:5B:A0:A6:B6:F4:06:20:10:82
X509v3 Authority Key Identifier:
keyid:C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:4a:1e:45:bc:d7:98:ed:aa:a2:96:64:3d:e5:ed:c6:e3:9e:
7d:7d:f6:2b:8c:08:a4:13:f2:d7:72:96:c3:fa:94:83:4d:a6:
46:8c:c9:1d:d8:24:05:55:cf:77:38:13:54:29:a5:12:2a:7f:
2a:f1:c8:32:48:6c:e2:8d:af:9f:dd:27:ea:17:f4:75:f6:4c:
96:86:5d:77:d8:cb:6d:4f:93:fb:6b:d0:33:5d:2a:5d:fd:de:
37:bd:5e:03:54:5c:d0:9d:6b:b5:dc:6b:61:fe:a7:f3:d2:ef:
85:50:7f:30:4c:7f:2c:6f:25:81:9b:21:3e:78:43:09:8f:41:
3b:8c:63:79:6e:72:81:6e:07:96:e0:a8:22:de:84:d8:ed:82:
dd:5e:26:b8:38:5b:86:f9:1a:04:e9:d9:54:20:71:2c:d3:f4:
e9:97:a5:8d:d1:f9:5e:8f:ae:c9:c7:d1:1a:2c:7c:ad:39:70:
09:a8:96:7b:24:66:fb:31:6b:93:78:83:0b:e8:d2:2c:be:f2:
5e:40:71:12:6c:63:c9:86:94:3d:7c:76:13:01:7c:4b:02:9e:
16:92:b9:1b:69:85:38:3e:80:a3:9d:da:07:d5:94:23:7d:20:
62:07:04:e3:cc:4f:c0:e2:ff:a6:43:26:b0:e0:5d:a6:a4:c5:
10:31:c0:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:17:52 2025 by rpki-client