Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
File: xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft (raw, json)
Hash identifier: dQoYjvtlFt4ZZnGCKwBnD6mUDFmQzEzp26t7Y1OeyuQ=
Subject key identifier: F0:FB:9E:69:74:88:99:2B:9A:20:5B:1C:84:5D:A3:C6:32:D8:90:92
Authority key identifier: C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
Certificate issuer: /CN=c722ad43471b606bcc853bba11b8ed663c151882
Certificate serial: 0198D54E89A5C69868C1FB1D67241559F297
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
Manifest number: 0D36
Signing time: Sat 23 Aug 2025 05:02:30 +0000
Manifest this update: Sat 23 Aug 2025 05:02:30 +0000
Manifest next update: Sun 24 Aug 2025 05:02:30 +0000
Files and hashes: 1: G5_4IPMG5NHZjmfzPhI-Ht0hMBo.roa (hash: UQfSOOWEfVsgKWPp7JPv9q8rf4PIS8Inp9Mcfn7NDVc=)
2: xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl (hash: JHuj5jNCL79YALw2667/W9WS7DMzfih1hOxqANGiyhs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:89:a5:c6:98:68:c1:fb:1d:67:24:15:59:f2:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c722ad43471b606bcc853bba11b8ed663c151882
Validity
Not Before: Aug 23 05:02:30 2025 GMT
Not After : Aug 24 05:02:30 2025 GMT
Subject: CN=f0fb9e697488992b9a205b1c845da3c632d89092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2c:d6:b3:c3:e9:54:09:7a:65:9a:9e:7c:6f:
80:77:c8:75:23:9c:49:ba:fb:e9:b2:d3:d3:28:31:
2e:49:24:57:81:62:ea:19:fb:fb:06:aa:ba:0f:95:
a7:af:4a:af:bd:5d:09:9c:4c:20:a0:07:13:eb:9a:
13:9c:b8:67:73:8e:fd:94:1e:8f:19:9e:79:92:fc:
d0:83:14:35:90:d5:16:b1:a5:43:a6:be:fc:f6:e7:
f2:55:1c:61:98:08:93:fb:4f:7a:a5:fe:04:5d:47:
e4:da:ee:25:30:10:82:a7:fb:af:dc:91:39:e2:32:
a3:42:bd:21:74:20:d4:5e:d1:1f:39:eb:d7:ef:43:
fe:85:f3:2b:25:c9:02:1d:29:a5:9e:42:79:97:0b:
f5:31:86:01:06:fc:6f:68:d8:45:ae:a8:56:ac:f4:
af:a6:4b:7d:83:6c:b2:d3:0d:71:ff:65:b4:83:9d:
fc:64:9c:16:09:b2:40:ed:08:78:67:02:93:60:4e:
75:a6:5c:db:13:17:b0:2f:37:b8:5f:89:6a:26:33:
d5:6f:77:93:e1:26:2d:db:02:82:9c:42:89:cf:0c:
57:d0:03:5f:b6:36:ca:e5:de:c5:b6:e3:5a:9c:e9:
d2:2a:b1:0f:d8:e0:2d:5d:1b:ab:2c:b7:93:7d:1c:
b3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:FB:9E:69:74:88:99:2B:9A:20:5B:1C:84:5D:A3:C6:32:D8:90:92
X509v3 Authority Key Identifier:
keyid:C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:9d:d7:fa:4a:5b:b1:2d:a8:d3:4f:94:08:28:4f:fd:9d:6a:
f5:36:e9:06:57:47:62:45:26:ce:e2:b2:f1:e2:12:a3:56:ea:
8f:c3:9c:30:08:d6:c2:5f:ec:8f:6f:ad:4e:b3:3f:f8:3c:21:
e8:aa:ca:af:2d:3e:7a:fa:21:e0:62:a3:58:23:be:e4:96:10:
48:97:98:99:f3:ea:32:b3:d1:e0:72:cb:eb:27:0c:28:30:9c:
eb:a2:9d:a6:4d:e3:a0:f0:52:f9:45:6f:db:71:93:64:6b:09:
c3:f1:a4:81:65:14:9e:9e:92:27:fb:8a:82:55:ef:23:31:f6:
a5:af:e3:80:0b:9f:01:b1:6c:1f:d4:f0:50:39:0c:c3:78:d5:
d4:13:f2:fe:37:68:bc:c8:d3:c0:1f:6e:2b:c6:fd:de:fb:04:
b3:fa:dc:44:b2:6a:29:6a:ae:be:8d:a9:8f:a5:28:72:94:c5:
47:6d:65:80:e2:5c:d3:b4:4f:56:e8:f3:8b:6a:95:0a:23:01:
be:41:0a:73:21:90:62:6e:6b:33:9c:4a:58:19:ea:d8:08:64:
0a:d8:a2:ce:f1:e9:02:ed:92:4f:3e:5b:2f:67:d5:0e:24:50:
7c:12:90:d8:ce:2d:31:b9:5a:34:84:9e:be:59:69:88:d5:eb:
a3:cc:11:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:19 2025 by rpki-client