Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
File: _XjxP_qS8HTr5VfSotKa0Noz5dg.mft (raw, json)
Hash identifier: 5kH7YSrEdb+WqnrO2KZir4a6OFvRW801QXSjPzrelGE=
Subject key identifier: CA:F8:7C:82:A7:62:B9:AA:8C:83:C2:A9:C4:9E:68:3A:98:44:0F:3A
Authority key identifier: FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
Certificate issuer: /CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Certificate serial: 0198D472D6EB8A83D3DB4EF937AC1FEF2966
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
Manifest number: 0BA1
Signing time: Sat 23 Aug 2025 01:02:32 +0000
Manifest this update: Sat 23 Aug 2025 01:02:32 +0000
Manifest next update: Sun 24 Aug 2025 01:02:32 +0000
Files and hashes: 1: IPVqTow4BPog0VgWrmL6j3UlRyc.roa (hash: yHocQSt6Dh1L30jflXp+Oc+mQ08tmbAfLa5FFYWt/64=)
2: _XjxP_qS8HTr5VfSotKa0Noz5dg.crl (hash: bbLOp2BsBT2+lRi5tefdQcZbJysnOCgSW2yEU4ZtRdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:d6:eb:8a:83:d3:db:4e:f9:37:ac:1f:ef:29:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Validity
Not Before: Aug 23 01:02:32 2025 GMT
Not After : Aug 24 01:02:32 2025 GMT
Subject: CN=caf87c82a762b9aa8c83c2a9c49e683a98440f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9c:08:e0:99:1e:32:c6:15:64:9a:8f:53:3c:
34:b5:93:3f:90:8e:e1:a6:ff:92:a6:03:95:ed:12:
ed:fa:57:d9:5c:8f:d1:6c:8d:68:a1:e3:a6:50:67:
59:d3:bb:e8:8a:e1:71:62:7a:e4:50:20:d6:81:8b:
a6:f9:86:43:61:a0:6c:0c:15:02:65:1f:63:ea:bf:
44:5e:a6:b6:4e:b0:9e:3a:e5:ab:ab:e7:db:9a:0c:
71:f6:c7:c4:08:90:0d:ac:a6:44:d2:a3:ca:0e:0e:
1d:b4:51:1e:81:9a:88:ae:e4:26:d9:8e:36:d0:d8:
aa:d4:ac:a2:5c:5c:9a:c8:00:54:16:58:9a:1b:d5:
12:a2:b4:e7:c5:7d:9b:95:3d:9d:b7:81:c9:9c:e8:
48:d7:e5:37:e6:e6:d9:6f:7a:75:ea:9b:f8:99:4c:
1b:b9:19:e7:60:c1:8c:d7:cc:ee:20:59:0f:d0:cf:
05:53:1b:e3:6e:de:cf:a8:f8:32:9b:a9:dc:a1:49:
81:08:68:ea:75:c5:da:66:27:ff:23:e0:ae:03:6a:
b0:1d:05:bc:33:63:54:e9:0f:81:c4:4f:75:b6:f0:
06:c7:8e:3e:1e:98:50:2a:00:f4:77:30:d7:e6:9d:
63:71:a3:c6:e6:c8:12:b0:e9:fe:0e:a3:50:70:40:
b8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F8:7C:82:A7:62:B9:AA:8C:83:C2:A9:C4:9E:68:3A:98:44:0F:3A
X509v3 Authority Key Identifier:
keyid:FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:4a:ad:43:a8:64:0d:5a:ff:01:a0:22:35:e4:df:c4:e8:42:
dd:c8:5c:55:09:5e:de:a7:7c:eb:bc:ba:e0:30:d3:99:9d:45:
19:2d:55:71:2b:7a:12:97:ea:ba:9a:6f:18:82:4f:99:fe:68:
53:b7:b9:1d:46:6e:6d:b1:fb:0b:91:f6:bf:37:05:89:c5:e8:
1d:b2:9a:15:9a:37:01:8c:bd:c5:c9:6b:4b:80:20:fd:84:d5:
2c:ae:5f:df:4e:db:a1:02:01:f9:01:d0:dc:cd:b9:fa:d1:9d:
10:fb:12:a1:3d:28:e7:9d:e5:d1:19:15:3b:8b:5a:73:ac:4b:
26:9a:30:7b:58:19:8e:2d:c7:28:3f:1f:61:6e:7e:75:be:0d:
47:db:a3:3d:f3:3c:b0:70:ca:da:5c:ee:0a:8c:c0:6a:2a:61:
48:1a:5d:da:5d:ea:5f:36:af:93:41:5e:ed:97:1c:c0:a2:31:
1f:05:94:a0:4a:f9:c4:38:11:23:d5:6e:0f:9d:6a:29:40:ca:
65:03:ec:fb:c4:5a:69:ff:c0:a4:12:ad:62:02:81:fe:3e:ed:
2c:90:99:0b:75:f5:fe:65:be:e0:0a:8e:54:97:72:cd:58:a0:
e2:3a:7d:48:3e:cf:45:f3:86:c6:35:4c:c0:fd:fd:a0:72:f8:
24:b8:b6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:39:28 2025 by rpki-client