Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
File: XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft (raw, json)
Hash identifier: HEAwmun+iyuE5WwZ63QbqLYMthEUZ60MA5EsUQ0odB4=
Subject key identifier: 65:12:38:51:4A:95:EF:90:EA:11:39:3A:0A:F5:E5:AB:37:43:83:A3
Authority key identifier: 5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF
Certificate issuer: /CN=5e4098f206850488b72cdde8387c3181c63f8cdf
Certificate serial: 0198D65F3B411F805B2D33CBA286940E8C46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
Manifest number: 03FA
Signing time: Sat 23 Aug 2025 10:00:21 +0000
Manifest this update: Sat 23 Aug 2025 10:00:21 +0000
Manifest next update: Sun 24 Aug 2025 10:00:21 +0000
Files and hashes: 1: XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl (hash: 6GS78Gl3gdx67D8ItpbTWocgKE16ThzpKClbiAWQgh4=)
2: Zalmb79lgnJ8ZqrgJMNHmIB0_a8.roa (hash: qT5QBRK21+1uxjdCx9gW03qYws/IDIrgYu8jrzg9fD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:3b:41:1f:80:5b:2d:33:cb:a2:86:94:0e:8c:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4098f206850488b72cdde8387c3181c63f8cdf
Validity
Not Before: Aug 23 10:00:21 2025 GMT
Not After : Aug 24 10:00:21 2025 GMT
Subject: CN=651238514a95ef90ea11393a0af5e5ab374383a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:87:5f:0a:db:d4:d0:b5:a9:63:c5:41:a7:76:
e4:b2:97:59:95:fa:2b:f7:bc:16:af:a1:14:40:9a:
97:be:d3:57:3f:50:30:89:ce:73:d7:9a:c4:22:3a:
ee:45:aa:b9:f9:dc:25:de:8c:db:fa:8d:b9:6b:9e:
60:af:1b:df:9d:2c:72:59:0e:eb:23:ab:17:16:6e:
f9:0b:f7:b6:9d:80:bb:77:70:65:c3:c0:e6:2b:6b:
4c:df:50:eb:33:4e:ed:81:b1:19:6c:57:c4:94:d4:
5f:18:c2:5e:57:89:ae:4b:eb:81:d1:f1:a2:c2:04:
d7:b8:59:84:40:ed:38:a7:d8:fc:86:c5:89:47:c7:
da:b5:51:ba:10:39:bb:e9:bf:eb:61:2e:f9:8f:e9:
a9:28:ff:91:36:b8:38:fe:ee:2c:dc:bb:b2:ea:83:
ca:a5:14:b9:e4:e8:77:b6:3b:c4:61:2a:d6:3c:95:
a7:06:96:c3:74:50:72:0d:35:38:0c:58:b9:50:94:
50:12:e6:ab:87:f2:07:e4:93:31:b8:1c:fd:03:6f:
2a:bc:9c:14:6f:26:a3:f7:f0:86:26:37:ad:e0:08:
e9:e5:8e:4f:17:6e:8f:bf:b3:e0:10:17:65:c4:1f:
e0:e0:e1:33:b1:54:ba:22:f2:73:d3:f3:30:5a:09:
67:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:12:38:51:4A:95:EF:90:EA:11:39:3A:0A:F5:E5:AB:37:43:83:A3
X509v3 Authority Key Identifier:
keyid:5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:55:4c:bb:17:8f:30:e0:89:3f:24:43:5a:cd:b1:5e:99:8e:
e0:c3:40:98:e0:ce:54:26:10:fd:b7:5e:0d:6a:19:0f:b2:6c:
8b:8e:e7:f7:b9:4c:fb:cb:df:dd:e6:43:51:a6:ab:b2:84:eb:
45:17:ba:e6:02:bc:62:21:9c:80:9c:5f:cd:46:a0:af:a3:a8:
e4:8d:5f:01:9f:3d:e9:dd:eb:08:04:84:db:2a:11:41:df:a0:
94:d1:74:7d:d2:e5:53:ca:cc:39:84:44:12:2e:d3:f7:c4:d6:
74:1a:ab:c0:88:5b:47:5a:3e:ec:cc:59:bd:df:39:9d:64:f8:
cd:35:90:ac:3c:e9:e5:79:3d:94:d6:c3:c3:3d:b2:1a:04:cf:
87:5f:28:b7:4c:f4:42:e5:61:54:8a:e6:3b:64:b4:55:2b:15:
be:ea:c8:9f:da:18:4d:c8:b9:13:30:53:24:b3:cf:44:84:3f:
be:12:0b:22:6f:76:d5:da:8e:08:b4:7d:d7:a2:2a:f0:b4:d5:
f4:af:84:94:87:73:f3:e6:ce:7e:af:f2:a7:72:68:a4:ad:e3:
0d:bb:cd:c9:e6:52:16:fd:6d:44:96:09:8d:15:3d:54:4c:c0:
53:33:bb:fb:e8:ca:88:f2:63:13:bd:3a:86:96:ab:f8:90:3a:
d8:45:55:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:21:06 2025 by rpki-client