Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
File: _XF_OrY5RaG-c5wrOiWJvqVd224.mft (raw, json)
Hash identifier: yLBWvVHyhQ4uZQz5/HcXbeLWwYvus1ICoHT+BNKGH4Q=
Subject key identifier: 16:DA:E7:D7:59:9F:E9:B4:DF:8E:E1:5C:43:A9:90:0B:78:C7:69:31
Authority key identifier: FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
Certificate issuer: /CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Certificate serial: 0198D58354E45F043859914136288DE22321
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
Manifest number: 0BFB
Signing time: Sat 23 Aug 2025 06:00:10 +0000
Manifest this update: Sat 23 Aug 2025 06:00:10 +0000
Manifest next update: Sun 24 Aug 2025 06:00:10 +0000
Files and hashes: 1: _XF_OrY5RaG-c5wrOiWJvqVd224.crl (hash: h/oMN1tnvQ0UIExzIp2oqKTfKIg4m7AMn+AsSecHDwU=)
2: gzdyy5qInnSa0M6b956pVUzgC-k.roa (hash: 2Ow3V4pucXvBImXLn02gpmIFTSdf3VU+/V7SnyCKOjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:54:e4:5f:04:38:59:91:41:36:28:8d:e2:23:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Validity
Not Before: Aug 23 06:00:10 2025 GMT
Not After : Aug 24 06:00:10 2025 GMT
Subject: CN=16dae7d7599fe9b4df8ee15c43a9900b78c76931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7e:c9:af:50:ac:95:3f:29:84:9c:1c:48:2e:
92:65:75:bd:64:e7:3a:fe:86:53:4e:db:f6:ea:43:
90:be:5c:27:8a:34:52:3b:89:37:df:4d:b0:1c:8b:
4d:41:82:15:d6:c8:50:78:5d:22:44:05:7c:26:4f:
be:b6:09:30:3b:f9:a5:1b:70:25:4e:2b:cb:2e:26:
93:ec:41:ff:a2:a1:74:b3:8f:a3:e7:87:c2:19:de:
c3:83:45:60:12:ed:81:47:85:0e:cc:2e:d8:a8:08:
da:eb:58:e3:40:a6:2f:75:da:9b:fc:09:e0:d0:a0:
42:11:17:67:6c:0c:f0:d6:8b:e0:47:25:7c:2a:ec:
55:ab:09:58:fc:b1:76:a2:db:d9:56:d4:3b:55:5c:
e6:bc:02:82:f9:f9:71:7b:ab:89:d1:84:6f:8f:94:
ff:a1:c3:0f:b4:61:76:61:01:0b:09:57:4a:e1:ef:
40:3f:82:ad:26:a7:9e:4d:75:33:eb:5f:a4:fa:b6:
a9:64:dd:c2:11:62:ed:db:9c:04:e3:27:78:92:e3:
ee:6a:98:82:d5:3b:79:18:84:95:15:65:35:be:39:
b8:af:e7:d8:5a:e9:93:4c:74:c7:b4:6e:93:24:25:
c2:26:a1:b1:e5:d8:9a:4a:12:f3:50:ba:b8:03:da:
25:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:DA:E7:D7:59:9F:E9:B4:DF:8E:E1:5C:43:A9:90:0B:78:C7:69:31
X509v3 Authority Key Identifier:
keyid:FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:5d:c5:bd:54:af:41:f9:b9:ed:fc:e0:39:a5:54:36:fd:4e:
b4:af:5a:d1:b3:e0:e7:90:9f:1a:04:66:cd:6e:3a:b7:e2:44:
c4:e6:3b:49:fd:38:32:15:18:2c:b1:0a:66:25:32:77:1e:0a:
53:64:43:a4:f3:d3:fd:87:ce:cf:90:71:8b:f0:c0:b0:93:56:
ad:29:dc:40:19:25:b0:d5:27:9c:82:b0:56:c1:50:bf:84:b2:
b6:c9:e7:4a:0c:14:0f:cf:37:e8:79:f9:c5:79:57:17:4b:58:
06:32:c9:cd:e1:56:b7:a7:9e:b2:85:5c:ce:c0:ee:92:ab:fa:
f7:b6:65:3e:93:e2:62:55:5f:f6:39:61:e6:43:96:85:3d:7f:
76:50:04:3f:e6:14:0d:73:78:c5:fe:68:07:2d:9b:79:5a:7e:
cc:d3:b1:2c:d4:94:77:09:9d:31:d0:7d:14:81:e4:49:ac:b0:
bd:9f:34:f5:12:8a:f3:8a:4b:a3:cf:73:d3:d9:81:e5:7d:1a:
dd:50:d0:75:98:f7:19:b7:d4:9f:b9:4a:62:90:42:cb:19:94:
27:01:c3:89:50:b5:b6:93:a9:97:a6:d9:01:35:be:4d:3b:94:
f8:32:ca:bc:15:ba:be:46:48:ab:89:15:73:db:0f:be:29:9b:
4e:41:f7:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:05 2025 by rpki-client