Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
File: xVFHJIBoPGGXD2BfsZnuturhIYs.mft (raw, json)
Hash identifier: fx2fvYkvC0cL2+7IBphwcNhr5Q8AVe45kiVeqkbvQ/Q=
Subject key identifier: 86:17:18:7D:8B:22:3E:6C:E3:CD:0B:24:87:96:68:88:CE:E7:5C:19
Authority key identifier: C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
Certificate issuer: /CN=c551472480683c61970f605fb199eeb6eae1218b
Certificate serial: 0199FBEB99DECC3284F4B39B0C261D825378
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
Manifest number: 13E4
Signing time: Sun 19 Oct 2025 10:02:25 +0000
Manifest this update: Sun 19 Oct 2025 10:02:25 +0000
Manifest next update: Mon 20 Oct 2025 10:02:25 +0000
Files and hashes: 1: 7CZAgUvQPu-wrbV-N9bEd3CgOWs.roa (hash: sMayzuz7AI9s61a/aq9HH1Cc6asWKL5qDPVUoL1bHKQ=)
2: xVFHJIBoPGGXD2BfsZnuturhIYs.crl (hash: eSqwowh9nyrCN1oDcG+wRxB+k7juNJkmQNlxYPUH9B4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:99:de:cc:32:84:f4:b3:9b:0c:26:1d:82:53:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c551472480683c61970f605fb199eeb6eae1218b
Validity
Not Before: Oct 19 10:02:25 2025 GMT
Not After : Oct 20 10:02:25 2025 GMT
Subject: CN=8617187d8b223e6ce3cd0b2487966888cee75c19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b4:7d:33:54:e9:b5:02:52:c2:75:00:13:f7:
16:1b:ef:96:61:f5:5b:8f:75:a1:8f:c0:35:01:11:
bf:a2:f7:17:77:89:6f:cd:1f:1e:44:fe:b0:fa:9d:
64:48:16:f4:53:ae:27:ae:ad:bb:81:85:d1:78:6f:
59:cd:e9:93:f8:4e:80:d4:94:a1:01:19:42:29:c6:
94:61:a0:3e:c6:d0:83:b8:6b:13:4b:2a:06:d8:62:
dd:2e:9f:c2:d4:63:0f:d7:c6:0a:f8:19:d2:63:1f:
e4:ce:33:3e:7b:df:9b:25:ca:38:4c:8f:dd:81:4f:
5d:d0:cc:ec:4c:94:a7:cb:1c:ae:f4:a9:19:87:a7:
a9:4a:07:49:6a:70:c9:eb:0f:a1:7b:25:ae:8c:13:
63:0d:18:67:a4:72:af:dd:a6:07:08:8b:ea:34:b2:
3f:93:5b:f0:73:c0:6d:39:01:a9:fc:b8:7b:55:97:
97:d0:14:54:8a:bd:65:44:fd:15:cf:df:76:61:68:
b2:62:6d:8d:45:d1:91:0d:da:72:22:67:d2:70:f0:
dc:ad:b8:78:54:7f:6b:74:13:0b:b8:b8:58:19:3d:
33:7f:4e:31:79:9c:92:97:b7:1b:c7:50:a8:e2:d8:
ae:d4:cc:9a:90:91:05:a9:9d:4b:1f:8e:6d:42:b6:
f3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:17:18:7D:8B:22:3E:6C:E3:CD:0B:24:87:96:68:88:CE:E7:5C:19
X509v3 Authority Key Identifier:
keyid:C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:1e:47:aa:86:66:ef:28:17:dc:30:c1:1d:f6:d4:ba:4d:ce:
b1:5e:37:d2:35:a2:1c:3e:7e:ee:20:68:a0:a6:3f:fa:9f:69:
e1:65:2f:9d:04:82:25:6e:57:48:16:16:f5:d6:89:cc:7a:4f:
c7:67:60:59:fb:3d:a9:0b:d2:73:e6:d4:d8:f2:23:de:ed:69:
d0:88:ff:6b:c3:61:87:89:f1:24:19:52:86:89:7e:b8:7a:1d:
92:c4:91:1e:3d:20:be:2c:40:5b:5f:e6:1f:d1:41:b8:2e:f0:
94:aa:42:1d:85:0f:d5:26:61:8e:aa:24:3e:2a:4e:df:c5:63:
02:48:7a:9a:b8:e0:75:4e:0f:0d:cb:35:7b:5c:06:e6:c3:a1:
ef:f8:ae:1b:37:3c:e8:94:5e:0a:13:89:51:cf:a4:45:93:09:
fe:bb:8a:18:df:d3:dc:0c:24:3e:2e:cb:bc:5c:c7:1b:50:7e:
a1:a0:e6:a6:b7:e0:be:9c:87:54:12:68:57:97:69:bd:bb:a8:
37:9d:9e:67:d9:eb:71:85:09:e3:ee:1a:0b:67:1a:42:59:ee:
e3:4a:88:74:a4:e7:40:14:bf:03:6b:1b:e8:2b:42:de:33:b1:
72:a4:ba:49:e7:98:e5:0b:15:73:04:57:c9:3e:d2:df:be:12:
1a:24:f0:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:55:00 2025 by rpki-client