Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
File: XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft (raw, json)
Hash identifier: u4pl4B08UTLAWa8ONcm5IxTVpjxQ195iUPLyh4Hqeb4=
Subject key identifier: 01:CB:34:E3:7C:23:9D:A7:FE:92:38:99:E8:08:A7:A9:5C:51:34:D0
Authority key identifier: 5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
Certificate issuer: /CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Certificate serial: 0198D5F1AD9DE8D067AA60C00AFD405B2E59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
Manifest number: 15B6
Signing time: Sat 23 Aug 2025 08:00:42 +0000
Manifest this update: Sat 23 Aug 2025 08:00:42 +0000
Manifest next update: Sun 24 Aug 2025 08:00:42 +0000
Files and hashes: 1: 2ywpCRCtpz6hrb_B5Z2UyYL2m-g.roa (hash: Z+2VK2G2lzN86LoPcE9VgbDrrppkQUiQOHGoi5RCAY8=)
2: XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl (hash: v3AdSUppbf3+CpWhUT3OgkxcsZFZkAnt6PudbvR2C0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:ad:9d:e8:d0:67:aa:60:c0:0a:fd:40:5b:2e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Validity
Not Before: Aug 23 08:00:42 2025 GMT
Not After : Aug 24 08:00:42 2025 GMT
Subject: CN=01cb34e37c239da7fe923899e808a7a95c5134d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:86:04:63:63:1f:6f:40:b5:38:00:be:01:34:
20:3a:2a:35:de:3a:3a:60:c4:53:1e:88:b7:a6:33:
1f:6b:0c:8c:02:9b:03:ec:00:d3:e8:eb:31:6b:f8:
38:68:a9:76:7e:1a:96:21:2a:52:35:26:48:a3:ef:
15:f8:4b:a9:63:eb:9e:50:67:e7:68:53:84:7d:98:
63:55:f9:d8:5b:e7:d9:b6:6a:f4:a6:38:5e:cf:cb:
02:fe:14:ea:b4:43:46:f8:ea:59:b9:9e:ff:b0:0c:
f7:98:e7:93:5a:9a:d8:27:08:e5:c9:0a:39:fd:75:
05:97:28:cb:03:ad:e7:f9:b0:b3:cc:c2:8b:53:02:
e9:b9:ab:2e:d3:30:ec:25:8b:3a:76:cc:8e:c1:e5:
76:c1:5b:f2:45:3e:b3:0f:6b:59:14:46:ab:18:c2:
a6:da:a7:d0:81:12:ee:87:2b:cd:45:3c:47:db:05:
7e:99:b8:cc:b3:da:ad:18:60:96:cd:42:15:50:b9:
6a:2c:9e:c5:76:d0:32:70:b2:7c:0c:d6:74:c6:88:
ac:ca:50:83:b3:c4:d3:d0:5b:fe:0e:09:cd:9b:70:
79:ac:f4:7a:2e:99:2e:11:12:80:17:86:ee:85:a6:
bf:a1:73:d2:18:c8:ee:9e:a4:01:91:a5:d8:34:81:
24:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:CB:34:E3:7C:23:9D:A7:FE:92:38:99:E8:08:A7:A9:5C:51:34:D0
X509v3 Authority Key Identifier:
keyid:5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:71:ec:6b:b2:13:53:cc:22:60:40:2c:8d:66:55:ce:39:63:
eb:bc:8d:06:72:96:f1:32:6d:90:ca:51:0b:3c:c3:7c:07:b7:
74:eb:ee:8f:27:d3:b2:81:2e:87:69:92:e2:81:69:d5:4f:20:
b1:9c:77:02:f1:d7:d0:85:d0:1b:8f:7c:ad:b6:8e:bf:c1:e2:
4f:aa:30:85:74:8f:ed:0f:ee:56:bc:78:28:ef:a6:bd:57:dd:
60:ef:96:ab:f1:18:5f:c1:93:f2:df:80:58:81:98:bb:82:7b:
65:d5:8d:25:56:fc:0e:27:33:fd:1f:08:87:df:3f:f9:f5:b9:
71:ba:96:e2:33:39:a8:cf:6c:10:69:26:15:5f:c0:00:7a:71:
9d:61:dd:19:e5:45:31:74:f5:05:17:58:f5:d6:0a:4b:ee:dc:
72:49:c2:1e:98:c6:60:cb:e1:ab:35:41:8b:18:34:26:e9:d0:
2e:4d:6e:58:e9:ec:b6:79:76:45:1d:d0:98:b5:cb:66:e5:af:
63:49:18:c7:4a:aa:1d:9d:2f:10:89:aa:bb:ac:52:a6:2f:cc:
91:5f:17:59:c6:9f:d3:01:a8:7d:30:d4:7d:2c:5c:bc:e4:bb:
3c:7e:01:5e:e8:25:7d:a5:5d:63:f6:1d:5c:8f:ca:94:4d:21:
35:aa:fe:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:40:50 2025 by rpki-client