Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
File: xN8L0EqoQ-aAgvbezgeYcytviDI.mft (raw, json)
Hash identifier: qYHdKOpIwjSY3VNrsqIMqKVZ8a8wtQgSY9Z09G9TpFo=
Subject key identifier: 0A:9A:4B:3E:84:34:C3:75:21:31:72:98:E5:28:A0:AE:A1:53:6D:08
Authority key identifier: C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
Certificate issuer: /CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Certificate serial: 0199FC8F6EB0FACCFE51CF287D701EFADCBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
Manifest number: 1674
Signing time: Sun 19 Oct 2025 13:01:22 +0000
Manifest this update: Sun 19 Oct 2025 13:01:22 +0000
Manifest next update: Mon 20 Oct 2025 13:01:22 +0000
Files and hashes: 1: 0PsILassVkdjO3YLqLzhDep43F0.roa (hash: BTuwwmqm+lVoIfqGdzicWWpXk8ZLAGxFDZrA6HPrjFA=)
2: T00AB9xipsEuuuK1wmFSrgJa6EQ.roa (hash: h2lLCAhcvRlcJCiD1oieS2PrcXQxs+tKUD+48vFOxxo=)
3: ZB1bFwuNv6eWdiv8dDMsMnuoFfs.roa (hash: +Mo9nvZ4p8mpAlYTdnVEDmvUa5mEw+oncE82//f49Ts=)
4: j4_7U96IEPffvwOTiMn9moiTZAE.roa (hash: Z8Hyt/Bq5aoXLuGUE36BT9I0Ee4e3qh5AvVB4wMCsaI=)
5: xN8L0EqoQ-aAgvbezgeYcytviDI.crl (hash: CUthH3iVCa8P28d3hXwSuEsXVL6dKKwIPDi+Ubio1MQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:6e:b0:fa:cc:fe:51:cf:28:7d:70:1e:fa:dc:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Validity
Not Before: Oct 19 13:01:22 2025 GMT
Not After : Oct 20 13:01:22 2025 GMT
Subject: CN=0a9a4b3e8434c37521317298e528a0aea1536d08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e8:e4:4a:2a:b8:04:fb:5c:ac:2c:71:ab:56:
80:8c:c4:2d:95:b2:a3:76:85:05:b2:a4:3c:31:25:
bf:87:88:0d:f1:df:f3:d4:64:f0:61:c8:69:f3:02:
ad:18:41:0c:99:ec:43:6d:48:3b:f5:54:e3:af:21:
f0:47:ac:e7:e9:3b:34:27:9c:43:d9:74:44:22:35:
61:f2:8b:c7:dc:2e:55:0e:e6:d4:01:0c:6a:20:8e:
e6:fa:82:79:af:1b:0f:c1:8c:ed:c4:eb:78:81:df:
d7:4a:1d:7f:ea:d3:51:8e:8c:17:1b:82:b5:0e:e3:
ac:c3:3f:85:7f:e0:4c:b4:68:4f:ed:6c:a8:c6:47:
d1:34:9e:5e:9e:d5:ca:c2:31:a3:5a:d7:39:26:89:
c6:22:5c:a6:33:fb:70:ed:ff:62:8d:c2:25:48:b2:
b1:7c:8a:62:7b:2d:3e:50:4a:82:18:4b:3d:0c:86:
ea:2d:d6:05:4f:54:e9:04:b4:3e:ab:02:3d:e8:db:
02:d3:08:8d:d6:7d:20:84:6c:5e:8b:cf:c9:ba:90:
9d:da:29:13:b3:cb:49:29:df:70:df:4b:4f:63:73:
fc:f6:29:ad:c5:c7:17:c6:9e:f0:8e:b5:59:fe:c3:
8a:a4:78:45:5d:8a:e3:79:42:0f:9b:0f:f4:54:29:
a7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9A:4B:3E:84:34:C3:75:21:31:72:98:E5:28:A0:AE:A1:53:6D:08
X509v3 Authority Key Identifier:
keyid:C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:a5:a4:2b:ca:29:22:50:95:7a:f7:45:b0:10:33:50:e5:e0:
81:a9:35:94:dd:87:40:62:1e:79:16:0c:fb:27:88:9b:af:05:
fb:73:74:79:ad:1b:2a:04:b4:79:1a:c1:61:26:65:34:c5:55:
98:d9:19:ff:13:39:fd:f3:b3:4f:a4:84:c3:2f:7f:62:e6:34:
8e:83:f3:c2:e9:53:df:10:57:1d:c3:62:e5:0e:d8:48:7a:54:
95:0b:f7:36:f8:04:92:c9:ad:9e:56:2a:13:86:79:1f:a3:56:
d2:53:90:0f:52:31:ff:c9:e1:a2:62:b8:2c:54:8e:16:3c:f5:
38:e0:60:14:fd:ce:00:87:6a:4d:31:d7:63:c6:87:22:69:ad:
75:fb:5d:dd:5d:af:ba:43:a0:bc:c1:86:d2:82:ba:8f:97:a7:
22:3e:d6:5d:39:42:9f:b2:e6:7d:96:f5:87:00:5a:df:d3:7c:
1e:5f:d1:16:da:a2:3e:6f:ee:fe:12:38:2d:a9:bd:a2:38:7c:
1a:46:d4:41:81:59:51:b8:52:47:c5:d4:06:1f:c7:ff:ce:86:
16:9d:15:3c:29:24:e5:a4:ca:ba:13:f1:d7:7f:eb:ed:0e:94:
85:42:02:c0:b7:42:82:e7:91:18:db:9e:1f:af:63:56:a5:9c:
b8:da:e4:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:54 2025 by rpki-client