Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
File: xHC41L-HFAS8pTx3gVME7y6k4co.mft (raw, json)
Hash identifier: KoDJfkoxzvL/0YidP7uARjJ6XRvfL++G1dqY3YpNbIo=
Subject key identifier: 95:B9:EE:09:62:A2:D6:9F:BE:40:E5:49:5B:00:99:E5:86:B4:07:CB
Authority key identifier: C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
Certificate issuer: /CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Certificate serial: 0199FD6B0213F2B97AA43EE84CA9192EB3C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
Manifest number: C8
Signing time: Sun 19 Oct 2025 17:01:12 +0000
Manifest this update: Sun 19 Oct 2025 17:01:12 +0000
Manifest next update: Mon 20 Oct 2025 17:01:12 +0000
Files and hashes: 1: N1QJr3d4xPAL0pWw7bMpfGQLYDw.roa (hash: bdncW/PZlPA4ydR5a6GdEoycfKMOIvrr26MW7cKXUvM=)
2: xHC41L-HFAS8pTx3gVME7y6k4co.crl (hash: kXwTFApZW9h8L126GBnjwJfhbhcRC53ocPIJibb2iLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:02:13:f2:b9:7a:a4:3e:e8:4c:a9:19:2e:b3:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Validity
Not Before: Oct 19 17:01:12 2025 GMT
Not After : Oct 20 17:01:12 2025 GMT
Subject: CN=95b9ee0962a2d69fbe40e5495b0099e586b407cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e1:ab:ba:e6:41:0c:e9:d5:23:21:81:8d:1d:
dd:de:c5:bb:3b:2e:eb:ce:b5:a9:be:7b:21:db:3f:
65:27:54:ee:87:9d:66:07:a7:cd:8f:44:a8:67:6a:
17:c0:97:b0:c6:50:5b:69:2f:82:af:d3:2a:f8:7f:
fd:4f:ee:e2:aa:b0:27:5e:ca:9b:dd:48:ba:63:41:
33:9b:84:fe:a4:49:11:04:71:d9:a5:09:38:7a:5d:
44:d4:da:ba:8b:c5:ab:a5:60:2b:0b:03:b0:fb:f6:
df:f0:2a:a4:da:85:79:a4:f6:8b:4d:ad:a5:0c:ae:
53:8b:b6:e7:4f:33:bc:1b:f8:1b:1d:d8:99:e8:b6:
b9:b6:8f:20:e5:f1:35:67:72:a2:ad:18:96:97:cd:
11:10:4e:0d:02:51:e0:ff:a9:4c:c1:a2:cc:92:bd:
ea:da:95:17:2c:18:9d:fd:ca:09:9c:43:62:86:37:
0d:14:fb:e3:63:47:59:84:3f:c9:d2:8f:5d:db:aa:
32:44:80:05:7d:4e:06:2d:a8:32:89:0f:42:ae:82:
11:76:c1:fa:fd:d8:c9:41:f6:af:97:a0:9c:50:51:
c8:8f:b2:61:75:31:e0:72:1f:49:e2:eb:b0:f9:a0:
04:c8:08:d2:9c:8c:52:47:53:cb:3a:c0:b5:a9:f5:
1f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B9:EE:09:62:A2:D6:9F:BE:40:E5:49:5B:00:99:E5:86:B4:07:CB
X509v3 Authority Key Identifier:
keyid:C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:a1:47:35:d9:5f:49:eb:7d:86:de:55:1e:cf:eb:50:db:7c:
f8:21:4b:8d:06:7f:b2:93:99:57:e0:4f:4b:1d:d0:59:56:56:
1f:76:86:12:35:eb:87:6a:ea:d7:c5:9a:4c:bf:9d:c8:f9:3c:
97:c8:5b:e1:fc:93:68:08:51:15:6b:fd:f5:a2:34:bf:07:25:
12:d2:3a:dd:25:07:8b:ec:c1:80:98:0f:79:aa:32:36:ee:c6:
7c:a7:3a:81:df:1d:31:e2:a1:34:17:4e:11:bf:99:77:a5:d2:
ba:a7:eb:f3:08:d2:2f:20:17:10:de:32:6f:41:de:ce:15:98:
ec:04:46:a4:d0:36:81:26:ba:1e:5f:44:8f:ea:91:3a:2a:ee:
fc:62:ac:8c:12:56:79:78:9d:33:46:36:5b:34:88:5b:f6:f3:
d4:0e:a7:b4:eb:94:97:73:83:f2:36:0a:31:f9:74:3b:6f:bf:
4e:6b:4d:83:cd:fd:4f:3b:ee:30:9e:91:94:bf:6a:2f:aa:b7:
8b:fc:a3:64:6f:4c:b4:93:dd:12:5f:37:a7:ae:d0:a0:e5:a6:
bf:3b:a9:cd:32:e0:43:ac:d3:b9:9b:26:21:76:04:30:3d:fb:
19:19:1d:96:82:8d:b5:2b:cf:6c:c5:c3:3b:f6:94:c8:17:ed:
15:92:73:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:19:39 2025 by rpki-client