Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
File: xKMWKFZYILOlo-HPyHdz4oP7lcE.mft (raw, json)
Hash identifier: 39CD9/6Wyu+j6n7mSBlTQooMAQTHgU1MPJmAXRUbGEE=
Subject key identifier: 75:46:B1:3E:65:57:76:72:9D:FC:A7:5E:08:CC:DD:58:BD:C5:D8:D5
Authority key identifier: C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
Certificate issuer: /CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Certificate serial: 0198D5BB9DDC151FB814C5DACF74CA03DC6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
Manifest number: 0B8F
Signing time: Sat 23 Aug 2025 07:01:39 +0000
Manifest this update: Sat 23 Aug 2025 07:01:39 +0000
Manifest next update: Sun 24 Aug 2025 07:01:39 +0000
Files and hashes: 1: O7JK_R6ip6iR244uyf3DBgROHco.roa (hash: GKH7o0xxF7nZfmB+4s7mUapBQQrsXrRHoDwbM7Hh8hA=)
2: xKMWKFZYILOlo-HPyHdz4oP7lcE.crl (hash: SpoBn5wCN43G5JqRzQ7Ffcch9t6fsbRwQefyQPYJdno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:9d:dc:15:1f:b8:14:c5:da:cf:74:ca:03:dc:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Validity
Not Before: Aug 23 07:01:39 2025 GMT
Not After : Aug 24 07:01:39 2025 GMT
Subject: CN=7546b13e655776729dfca75e08ccdd58bdc5d8d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:10:9c:21:c2:3e:88:d2:08:d2:29:0b:ce:d6:
83:fb:ed:e4:f4:20:00:ff:cb:b3:20:8a:73:79:b8:
13:21:ae:f2:be:79:eb:f7:00:2f:7e:98:99:ee:2d:
ef:70:c1:b6:59:09:cd:3d:52:1f:b1:3e:e8:49:d2:
66:ea:58:59:fa:bd:6e:b9:a3:79:cf:de:d2:27:82:
4e:92:5c:0b:69:a4:c0:8b:b8:bd:74:ee:7d:52:6a:
01:af:ba:04:42:1f:e2:8e:21:f7:8b:9c:80:58:86:
ed:84:f8:5f:b4:64:61:a5:f5:f4:c7:a9:1e:16:fa:
b9:a7:d8:98:89:3b:0f:5e:83:41:ef:81:28:16:cd:
0d:29:4d:53:a3:9c:a8:84:09:31:47:0c:bb:ab:5d:
43:20:4f:23:b2:aa:69:a7:b0:7c:6b:e2:ef:2c:cb:
94:ab:6f:c7:8d:ab:28:c1:74:ea:c4:ff:04:f7:33:
77:3e:4f:56:06:58:5a:5c:46:01:fa:83:a4:6d:01:
d4:dc:d0:31:c3:b2:39:3a:2d:1b:96:36:87:26:3d:
53:95:d0:1b:5f:3c:9c:22:51:50:47:d9:04:38:40:
7d:0f:02:ea:7d:37:51:c9:3d:b3:a3:32:ed:71:13:
9e:ab:8d:f3:f9:35:dd:49:07:17:78:c4:72:8f:c1:
b9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:46:B1:3E:65:57:76:72:9D:FC:A7:5E:08:CC:DD:58:BD:C5:D8:D5
X509v3 Authority Key Identifier:
keyid:C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:a0:71:17:db:8c:94:c5:c1:cb:4d:76:28:f0:6d:fd:49:92:
cb:68:15:ad:ea:65:60:c6:0c:2e:1f:d2:92:a4:e4:bc:a6:7f:
e3:89:82:41:2f:54:67:6a:17:6d:3b:4c:ed:d9:c3:b8:1f:01:
a0:d2:da:17:ac:d6:bd:ec:e5:46:b8:be:b3:a5:ad:69:86:a6:
ce:29:c3:44:10:58:29:e1:51:12:10:ae:20:3a:8f:b4:30:6e:
b0:61:0c:ad:20:f9:6d:b7:79:8e:ec:db:07:b6:e8:63:a5:4d:
6f:67:78:5d:e3:7d:df:aa:c0:4b:8a:78:43:36:c2:f3:bf:dc:
b6:e5:ac:20:1c:45:9b:1a:bf:6e:52:96:09:70:c4:54:4a:3c:
17:4a:04:b9:19:b0:32:c1:b7:17:bb:8d:40:8d:f9:ba:74:63:
3d:93:52:d5:c4:33:6f:6a:cc:bf:a3:fe:61:51:9e:59:2f:aa:
3e:de:a4:b4:31:d9:62:6c:72:3f:af:29:67:92:81:23:75:14:
95:e3:1b:71:54:2a:8b:6a:9f:70:c2:70:bf:0d:99:db:bd:45:
00:3f:3f:ca:a3:e0:d1:dc:fa:39:ee:22:a6:00:51:21:56:e1:
53:06:aa:fe:4c:2a:2b:e5:48:59:2d:d8:20:7c:4c:52:08:81:
92:5c:ec:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:35:17 2025 by rpki-client