Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
File: xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft (raw, json)
Hash identifier: OEQ7Jo12Fp6zbJRxvnU1FJjQYpVvbx6f7x4N/CJefL4=
Subject key identifier: AF:86:55:98:38:C4:43:69:0D:8D:99:27:84:91:C6:BD:BA:EE:A7:7A
Authority key identifier: C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4
Certificate issuer: /CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4
Certificate serial: 0199FE4783F02F173023143A8C1B3EAABF01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
Manifest number: 0733
Signing time: Sun 19 Oct 2025 21:02:03 +0000
Manifest this update: Sun 19 Oct 2025 21:02:03 +0000
Manifest next update: Mon 20 Oct 2025 21:02:03 +0000
Files and hashes: 1: gO1QQzQ8EJSK1sz9QVMIVflw4Is.roa (hash: XHDVuSMRNZ8ZK68EQ/rZiQRsF4JaubC5jLA4NaC8LBM=)
2: xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl (hash: fwvnHM35ywlA7DDyX5noX/5unswgdpLtH95y61DoiDU=)
3: z5AaUIsCUfsHWnAtqAIr_d8n8do.roa (hash: rmzyF9COLH0iNSyMo0DleMzCkcEN6+9Om4xVkdPkL6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:83:f0:2f:17:30:23:14:3a:8c:1b:3e:aa:bf:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4
Validity
Not Before: Oct 19 21:02:03 2025 GMT
Not After : Oct 20 21:02:03 2025 GMT
Subject: CN=af86559838c443690d8d99278491c6bdbaeea77a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3c:b8:89:d7:87:eb:71:e7:56:68:8a:bc:92:
ec:dc:61:32:39:88:97:a8:07:57:a2:b9:1e:db:e8:
09:ce:3c:bc:52:a7:32:15:41:cf:e8:d3:a0:c8:5b:
0a:ff:9b:9c:8c:6d:cf:c0:c8:fb:fd:73:a6:d8:cf:
e6:df:fb:11:eb:6d:4e:40:fd:2e:92:88:f4:70:69:
9b:5e:b8:6c:df:20:64:e7:a0:4c:36:c6:8d:fa:ea:
d2:99:b9:7a:7d:bd:23:fe:7c:b7:bc:7d:6d:5e:40:
ce:0b:01:13:7d:4f:62:cd:29:65:38:b2:3a:b2:fb:
bf:d0:d8:10:09:cb:60:0b:fa:83:fb:ba:3d:dd:a0:
56:0e:a8:fc:f5:5c:ee:16:d8:0b:06:a0:01:7b:65:
d1:19:3c:9b:a0:36:7d:1e:e6:3b:17:38:6d:cb:05:
78:01:f2:92:ab:b2:39:ea:55:27:bd:82:17:cd:67:
fa:8a:d5:d6:e6:ee:db:93:93:96:82:b1:1d:93:ae:
89:8b:6c:00:26:12:b8:b8:3e:ce:97:76:62:d6:50:
71:53:18:0d:6f:33:a5:99:f6:63:3e:24:4c:46:d8:
24:9f:be:e6:bc:a4:3f:e2:79:7c:7f:ff:4a:db:49:
5a:3b:00:ae:9a:1a:d5:d1:e0:ac:b3:ad:b2:a1:7c:
7a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:86:55:98:38:C4:43:69:0D:8D:99:27:84:91:C6:BD:BA:EE:A7:7A
X509v3 Authority Key Identifier:
keyid:C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:25:61:cb:46:59:ad:8f:9d:95:a5:9c:31:54:89:88:ae:26:
4a:a8:df:79:c4:c8:b2:53:51:be:1d:ae:1a:84:e9:72:16:c4:
73:2a:f8:16:2a:34:1c:94:28:36:8d:3f:d5:88:6d:b6:d0:05:
78:3d:b6:9e:52:79:17:b4:fb:01:bb:91:d7:6e:bc:2c:d2:ff:
0e:94:5f:c3:1b:24:7d:32:b9:9f:b5:2f:0a:99:4f:39:5d:2f:
71:4d:15:2a:94:c6:e4:9f:51:b7:08:7f:49:70:d0:ed:43:a2:
a2:c5:d9:03:93:e2:fe:d2:d9:22:9f:de:c7:90:e9:c1:04:75:
4e:af:39:f1:9c:82:1a:60:d6:bb:24:cb:5c:e7:80:1e:cf:49:
0a:d9:27:36:8f:0f:fb:cc:4a:60:59:4f:4c:28:7d:cb:a3:37:
88:8b:11:d8:ca:10:35:32:d3:03:d4:f0:01:6f:9f:da:b3:5b:
14:ee:48:85:6c:7a:e8:8a:18:25:9b:71:25:95:2d:b6:fb:06:
15:63:5d:01:ab:13:56:50:62:23:e6:51:94:1a:0a:2d:24:66:
b1:3b:26:1f:31:f5:fe:56:6c:01:2c:3e:0a:b2:d1:6f:7d:de:
14:25:e4:42:0f:f0:37:8d:c3:d9:0d:65:27:7b:fb:2d:a4:cc:
41:f7:6b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:06:47 2025 by rpki-client