Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
File: xN8L0EqoQ-aAgvbezgeYcytviDI.mft (raw, json)
Hash identifier: mzYInKNFqx3DS85NfO0ILop8h8Tk3DmiazeG1dIoEFg=
Subject key identifier: 65:A5:02:1D:2B:30:E1:B9:F9:14:71:AA:4F:55:76:B8:00:C8:F2:1E
Authority key identifier: C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
Certificate issuer: /CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Certificate serial: 0198D7063DF1D8A5F916B5075692B385B4E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
Manifest number: 15DC
Signing time: Sat 23 Aug 2025 13:02:47 +0000
Manifest this update: Sat 23 Aug 2025 13:02:47 +0000
Manifest next update: Sun 24 Aug 2025 13:02:47 +0000
Files and hashes: 1: 0PsILassVkdjO3YLqLzhDep43F0.roa (hash: BTuwwmqm+lVoIfqGdzicWWpXk8ZLAGxFDZrA6HPrjFA=)
2: T00AB9xipsEuuuK1wmFSrgJa6EQ.roa (hash: h2lLCAhcvRlcJCiD1oieS2PrcXQxs+tKUD+48vFOxxo=)
3: ZB1bFwuNv6eWdiv8dDMsMnuoFfs.roa (hash: +Mo9nvZ4p8mpAlYTdnVEDmvUa5mEw+oncE82//f49Ts=)
4: j4_7U96IEPffvwOTiMn9moiTZAE.roa (hash: Z8Hyt/Bq5aoXLuGUE36BT9I0Ee4e3qh5AvVB4wMCsaI=)
5: xN8L0EqoQ-aAgvbezgeYcytviDI.crl (hash: /1plzV9mDA3eNEmuOhJxp8Ix3a0C+kvXiPrD8papZh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:06:3d:f1:d8:a5:f9:16:b5:07:56:92:b3:85:b4:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Validity
Not Before: Aug 23 13:02:47 2025 GMT
Not After : Aug 24 13:02:47 2025 GMT
Subject: CN=65a5021d2b30e1b9f91471aa4f5576b800c8f21e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ba:52:d6:5f:51:76:c8:ff:b8:b9:89:c4:bd:
53:61:f1:96:ed:a0:c4:39:09:54:5e:d6:10:cb:f1:
36:30:5e:d7:08:42:49:45:27:f2:17:05:c9:a6:88:
5e:73:6e:0e:47:92:5b:9c:66:a2:c4:aa:13:92:0a:
5e:65:49:e4:c2:c9:97:37:f4:8b:f9:f2:fe:cb:c6:
b4:e6:b9:c1:6d:b1:39:73:b5:cf:34:d5:19:43:48:
cf:15:23:a3:01:e1:19:15:67:32:3b:38:95:4b:68:
53:0a:ed:2b:7d:65:1f:96:76:5d:d0:ad:bb:d5:4e:
19:26:67:83:f0:d1:e7:b9:52:fc:92:50:f5:44:6c:
3d:75:b8:5f:64:ae:60:62:44:a6:12:e7:dd:e3:34:
91:63:33:b7:83:d1:82:15:a0:a3:6d:a2:36:2e:68:
e8:14:b4:6c:f7:1f:27:3f:9c:0f:e9:60:d2:68:88:
d6:6f:54:c4:dc:0a:6e:6e:12:ca:77:36:97:69:b6:
8d:cb:cb:ff:8f:74:67:8d:7e:43:e5:a2:39:d5:80:
f7:41:e0:d4:3c:70:b8:98:d3:21:d8:e2:ac:6a:92:
b7:ff:e1:d8:28:8c:7a:cb:37:da:c2:c6:04:6b:0d:
db:9d:be:14:e1:56:b8:72:90:34:75:49:c3:8f:77:
dc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A5:02:1D:2B:30:E1:B9:F9:14:71:AA:4F:55:76:B8:00:C8:F2:1E
X509v3 Authority Key Identifier:
keyid:C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:cd:b8:d0:f6:1d:64:36:97:63:aa:3a:6e:ac:1a:e8:11:75:
d1:09:1b:2a:36:9e:95:05:05:08:7b:77:4f:cc:3b:46:fb:ab:
86:48:6a:64:e2:0e:6c:17:60:af:ea:ff:d2:e3:6a:67:7b:8d:
67:02:78:ad:6e:6d:69:fc:dc:5b:97:3b:07:dd:78:98:8e:16:
84:ba:01:4f:e9:a1:63:59:58:45:4a:64:dc:eb:89:da:2c:c5:
e0:c5:63:64:aa:a2:ee:0c:73:47:7f:e0:e4:af:e8:c8:a1:2e:
0f:a6:e5:68:d1:bb:1f:c0:5c:24:22:48:e8:1b:4b:68:88:7f:
34:06:98:0d:d1:ad:62:8f:fe:ca:9c:e2:98:cc:c2:fd:49:15:
36:ac:e1:4a:5f:fe:22:30:4c:58:e3:21:62:83:05:bc:9b:db:
ce:53:be:ab:0c:95:ce:6f:d7:09:bf:a1:da:ad:7f:8e:fe:b5:
9b:f2:a1:22:a6:78:6c:ee:ab:27:1a:20:7d:3c:95:bb:e1:b3:
b2:3c:81:2d:bb:f6:f6:c1:e8:56:90:5b:2c:4f:74:31:32:70:
4b:37:bd:69:2f:74:23:c1:95:b2:47:e1:32:81:a9:be:e2:44:
3c:81:a8:5d:4d:ec:9f:50:d4:d3:7f:4b:a1:d4:c9:47:d0:4a:
59:45:30:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:26:59 2025 by rpki-client