Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
File: xJkOwgER9C-2LzmoHHOSqSGVW_I.mft (raw, json)
Hash identifier: BycY94CuIcj3YI2WjUidrUS4UxZYdkV/5o9cZ/dCV9w=
Subject key identifier: A9:C1:23:1B:5C:99:76:E9:46:45:48:9B:6C:42:4E:D9:38:1B:31:D9
Authority key identifier: C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
Certificate issuer: /CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Certificate serial: 0198D4E0213095ADD36A112C5DD0E0DB2B2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
Manifest number: 02AA
Signing time: Sat 23 Aug 2025 03:01:54 +0000
Manifest this update: Sat 23 Aug 2025 03:01:54 +0000
Manifest next update: Sun 24 Aug 2025 03:01:54 +0000
Files and hashes: 1: S6SgkEKXXupg9NGyg85ew2MKuNo.roa (hash: Ccy6wkPiSmvGfzLUcrIC/arlCjWDtB/tLTVQ150opBk=)
2: xJkOwgER9C-2LzmoHHOSqSGVW_I.crl (hash: br2TX9qGBdSZBPEK45ioFPuDc0F3R9fu/FOOONm/Oro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:21:30:95:ad:d3:6a:11:2c:5d:d0:e0:db:2b:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Validity
Not Before: Aug 23 03:01:54 2025 GMT
Not After : Aug 24 03:01:54 2025 GMT
Subject: CN=a9c1231b5c9976e94645489b6c424ed9381b31d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fa:de:ef:50:f3:f6:f8:7c:ab:db:1c:36:bf:
ec:c4:6d:1d:97:d6:9a:15:5a:bf:31:08:d5:ea:5a:
a0:c4:f8:8f:b1:e8:ae:de:07:5d:0c:c0:f4:47:03:
50:40:d2:50:45:db:0f:00:dd:69:63:71:4c:94:0b:
4d:ec:cc:d2:d2:a0:01:68:bf:ed:94:4f:75:c0:4e:
ab:3b:63:24:54:ae:cf:6a:2a:29:10:52:3e:45:48:
7b:11:51:76:86:64:f2:7f:2a:0a:c0:7c:2f:30:62:
44:85:c2:03:5f:95:6f:cb:73:33:15:69:6c:90:76:
07:d7:53:5e:51:6a:78:eb:52:ba:63:1e:32:c9:ea:
20:96:7e:7c:9d:ab:e5:4f:07:77:90:f6:e5:60:9c:
06:d0:f8:3f:b1:dc:50:0d:be:64:9d:8b:b9:33:d9:
59:61:45:30:a2:0e:b7:4e:5e:51:b3:38:71:8a:d8:
c2:88:ee:41:ee:8d:ec:98:ad:82:c7:a4:83:50:52:
1b:33:50:59:13:3b:40:86:fe:13:97:cd:aa:a7:23:
0d:e7:34:e4:ac:59:c9:1a:31:59:2a:39:ed:70:00:
9a:3b:88:b3:f6:64:c6:9f:42:af:54:4f:33:6e:1f:
a1:e8:7e:f5:4f:93:38:da:64:43:30:a0:fa:73:94:
20:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C1:23:1B:5C:99:76:E9:46:45:48:9B:6C:42:4E:D9:38:1B:31:D9
X509v3 Authority Key Identifier:
keyid:C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:6b:a0:0e:80:ed:77:e6:f5:39:66:07:71:39:3e:28:60:72:
e7:c7:a9:11:f0:10:ce:33:37:9f:a2:86:c4:03:b0:7f:49:4a:
a1:e3:10:24:6a:96:99:0c:67:34:88:08:c2:68:8d:01:34:0b:
08:08:36:dc:fa:41:b9:e0:72:cf:be:90:c7:bc:53:43:73:c0:
68:65:58:c1:be:e2:e0:52:2c:2c:59:e6:6a:84:c2:dc:f6:7c:
5a:d5:a4:a2:d0:0c:ee:a6:8b:39:97:87:0b:52:90:e1:18:5a:
c5:dc:50:b7:f5:77:eb:71:c8:3a:37:12:40:90:f9:fa:86:02:
56:ed:9d:b3:29:a1:1c:9d:cf:ee:b8:92:50:8d:7b:88:b9:7e:
3e:e8:f0:71:89:db:07:2b:92:d2:c6:67:92:a8:b5:02:b9:b3:
fd:75:3e:39:74:be:11:22:44:95:26:16:4e:7e:33:89:2e:02:
05:37:d8:93:cd:9c:6e:b8:a7:3c:0c:77:1d:41:b1:7f:4a:9c:
a0:dd:e2:01:48:4f:e6:c9:19:5b:ae:af:cc:d0:52:bb:bb:c1:
2e:68:c0:55:9b:72:02:f0:5e:2e:7c:d0:d9:d3:79:ea:f3:2e:
a0:72:72:6f:15:67:c3:ba:9d:e8:d0:4a:ea:79:bb:df:a3:75:
50:c4:f3:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:05 2025 by rpki-client