Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: QuEddlWozdCdPtYdXXkHdyRRghSKvYCTrugJBZ4H0mE=
Subject key identifier: 76:A4:83:36:86:F4:17:8C:D1:61:79:65:F1:95:7A:78:D3:A8:C8:85
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 0198D65F65112C4E4757DCBDC4FC7B17C6BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 07E8
Signing time: Sat 23 Aug 2025 10:00:32 +0000
Manifest this update: Sat 23 Aug 2025 10:00:32 +0000
Manifest next update: Sun 24 Aug 2025 10:00:32 +0000
Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: x7WYZGwiCnMYKqXBEPu1+t4ihblNefoSJOyEFVXjVnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:65:11:2c:4e:47:57:dc:bd:c4:fc:7b:17:c6:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Aug 23 10:00:32 2025 GMT
Not After : Aug 24 10:00:32 2025 GMT
Subject: CN=76a4833686f4178cd1617965f1957a78d3a8c885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2e:d7:36:b3:94:63:2f:b6:dd:bb:e4:5e:56:
67:61:f2:96:07:22:aa:00:db:4b:9c:c7:07:21:cf:
9a:60:bb:b9:d7:4d:99:b3:65:6d:c3:7b:39:e1:09:
b2:73:40:a4:5f:10:de:1f:32:f0:74:21:c1:a1:be:
2d:3b:bc:87:2c:b8:a3:16:4b:a7:75:8f:cb:20:af:
d0:22:aa:5f:3d:02:97:07:92:d6:27:66:08:a4:63:
4b:fb:d9:1e:a7:35:53:58:63:76:36:cc:45:c0:de:
0a:68:c2:09:69:9d:15:c2:3c:37:5f:55:63:a8:51:
28:df:7e:34:b6:17:9f:6b:70:57:6d:16:b7:05:30:
96:80:61:93:7e:ff:90:86:fb:23:aa:e9:b5:92:79:
83:30:59:48:9f:64:c2:7d:e1:8f:83:56:d5:a3:97:
6c:c8:95:47:8f:d6:47:e1:04:b9:ee:6b:1f:b1:94:
13:4e:e1:08:34:af:a8:95:7f:5b:49:43:83:a2:b5:
d4:7a:d3:3c:2b:5c:cb:b4:e8:6d:9d:d9:2c:93:ac:
df:2e:6c:54:10:56:ab:dc:40:a3:28:4b:6c:db:b1:
7c:ca:83:0e:a6:f8:de:75:6a:3f:f4:8b:e0:1e:83:
bb:42:3c:f0:4d:7d:11:6e:0a:95:e8:7a:f7:86:a6:
16:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A4:83:36:86:F4:17:8C:D1:61:79:65:F1:95:7A:78:D3:A8:C8:85
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:c4:b7:3f:40:94:bc:72:ee:6f:76:68:dc:c1:be:eb:19:5b:
b0:d2:d2:f9:a0:49:35:8a:f8:a2:df:c3:53:b1:40:ae:94:c0:
83:f6:cd:3b:8b:ae:95:54:5c:a5:08:45:3b:88:98:53:86:f0:
f5:b9:cc:41:65:f8:42:85:99:e0:10:e7:ea:32:38:65:40:67:
0a:6c:5b:e7:dc:52:fa:31:12:3e:b9:da:9e:72:da:12:b9:f2:
bf:4d:ee:1c:65:52:be:a4:8e:f0:a1:f7:8b:14:57:a2:e9:f1:
92:29:18:b2:eb:bc:80:f7:63:ff:67:34:6c:f1:20:9f:e0:3e:
58:b5:36:3d:2a:c5:0e:49:ea:0d:cf:df:7f:7a:1e:f6:64:35:
51:0f:fb:ca:73:f2:5a:a8:80:89:e2:cc:1f:e1:97:48:b4:81:
6d:08:e3:74:e1:41:a0:ed:f9:16:fe:36:5c:f3:00:b7:61:53:
ac:f9:39:15:d6:0c:ea:66:1b:a2:c6:1f:7d:71:23:d2:04:3d:
ed:dd:6e:12:e4:f8:9f:2f:02:ea:c2:3f:cc:5a:bc:a8:b8:cf:
81:2e:82:12:f1:de:34:43:89:bc:18:56:d0:98:19:d4:85:0d:
48:ac:b6:a9:3f:50:26:1a:b2:0f:fd:6f:44:4c:02:57:33:f3:
6d:9b:07:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:11:22 2025 by rpki-client