Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
File: 1XgxwfXmACVCvOut7yQSithG6vk.mft (raw, json)
Hash identifier: hP50JRWwwdKRGGoBMIt3H5SMvEYR4t+50GQUhP3Ofig=
Subject key identifier: 08:ED:71:BF:05:7F:A8:36:8E:97:64:99:87:1B:0F:53:52:44:69:CF
Authority key identifier: D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9
Certificate issuer: /CN=d57831c1f5e6002542bcebadef24128ad846eaf9
Certificate serial: 0198D8166B51654BB1A67D3325A3C5BAF6A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
Manifest number: 010B
Signing time: Sat 23 Aug 2025 18:00:04 +0000
Manifest this update: Sat 23 Aug 2025 18:00:04 +0000
Manifest next update: Sun 24 Aug 2025 18:00:04 +0000
Files and hashes: 1: 1XgxwfXmACVCvOut7yQSithG6vk.crl (hash: EtqwgmXT0aj/c6qGVyz2t3tf3aP75rbKMcJ/Hd+8sAQ=)
2: 5ZzT9BOjXy6nuMI_yO5vMIPWAq8.roa (hash: SfHBdK0Z7rD3sP3TAPnV5Als7GhMHgWk1/GZjTTB2c8=)
3: GLKnJ3LTIabZeoGVzMCaJjFByNY.roa (hash: +WAt95sFiKCWSXPNQeYrpYryf9q0NJaDtl61QpO/UCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:16:6b:51:65:4b:b1:a6:7d:33:25:a3:c5:ba:f6:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d57831c1f5e6002542bcebadef24128ad846eaf9
Validity
Not Before: Aug 23 18:00:04 2025 GMT
Not After : Aug 24 18:00:04 2025 GMT
Subject: CN=08ed71bf057fa8368e976499871b0f53524469cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a7:ad:95:c2:ce:04:42:1e:34:fe:ae:b3:bc:
24:f6:3c:ed:c8:f1:da:a1:46:5e:8d:c6:60:1f:de:
e2:c5:a9:c4:74:f3:72:52:45:fd:19:05:bc:c2:7f:
2d:ad:99:74:29:7f:1f:16:3b:ff:0e:ef:cd:9a:11:
93:aa:a0:82:b0:12:5d:75:38:f0:35:75:6d:64:93:
f6:39:3c:5c:f4:16:c0:7e:99:af:f2:e5:69:84:a1:
db:ea:73:41:b4:b9:ed:1d:1f:1d:13:76:aa:b8:65:
92:08:91:06:99:3c:8f:c7:ae:0c:89:02:49:0d:f6:
de:1e:63:1b:b0:d5:74:ba:1f:b4:c4:35:7d:50:29:
ff:eb:ec:5c:2c:d3:07:ee:ad:f6:0c:12:64:b8:7b:
0f:b0:44:fc:71:e7:47:94:0d:dc:94:d2:81:4b:be:
4b:16:7c:33:0b:d4:e2:67:bb:1a:87:cb:44:34:3b:
fe:dc:cd:d0:7a:0d:3b:39:ae:92:b7:22:19:eb:a2:
1b:1b:29:0a:4f:03:51:59:1a:e4:9e:84:04:57:81:
f1:cd:0f:b0:1e:11:ae:d0:c1:cc:36:8d:ed:eb:08:
34:ee:f1:1a:06:47:9e:b2:1e:51:c0:9f:43:a6:a2:
9d:28:78:9a:db:35:0f:b6:0e:c8:b1:26:73:d8:74:
5e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:ED:71:BF:05:7F:A8:36:8E:97:64:99:87:1B:0F:53:52:44:69:CF
X509v3 Authority Key Identifier:
keyid:D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:79:fb:55:99:22:c1:59:6c:3e:0b:1f:9d:6a:1b:8a:37:df:
b7:bc:8b:d2:15:84:3f:2b:ae:6d:fc:e8:95:c1:d6:c2:dc:8d:
b1:a7:3d:52:50:8f:7a:1a:d0:15:29:5f:98:c1:d8:0c:c6:1a:
6f:d8:b8:f6:ef:28:49:80:eb:55:b1:a9:7a:8b:b9:21:a2:2a:
4a:ab:10:20:7b:e3:9c:6b:ee:91:95:1d:a6:be:73:b4:30:5a:
a8:22:4a:19:88:4f:89:a1:95:cd:9e:8f:b7:cb:b2:84:77:3b:
6f:b7:30:90:76:12:d7:e4:a7:70:fd:48:a8:2d:a7:12:7f:2c:
f6:4f:21:5e:7a:4b:48:bd:92:d3:3f:3f:bc:08:da:a4:b2:93:
0f:8c:08:5b:17:55:a7:35:ec:34:48:8b:12:7b:a2:01:0b:ad:
71:23:1a:58:b4:50:be:e7:fe:b9:50:28:88:eb:fb:fe:89:7c:
87:a3:3c:eb:23:b2:1f:14:ea:dd:4f:f1:93:04:7f:08:5e:cc:
c2:d7:69:ca:1f:d4:05:be:30:b6:53:c5:25:93:fd:75:75:b5:
89:c3:2f:e4:6f:73:d7:b9:c2:9e:b2:a0:03:b1:4b:70:6e:62:
ea:15:99:15:25:0a:ac:de:92:79:d3:ff:f1:57:3d:9d:78:9c:
81:4c:56:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:52:05 2025 by rpki-client