Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: /t1csoGLTwb47xFrlYenjLQFlNqsnPru7n8tfzESObw=
Subject key identifier: 1B:41:D8:1E:47:80:91:DB:AB:7E:EE:7B:3E:06:12:49:60:C5:F3:4A
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 0199511C0B687B7E82781440577D34D1845D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 1685
Signing time: Tue 16 Sep 2025 06:00:16 +0000
Manifest this update: Tue 16 Sep 2025 06:00:16 +0000
Manifest next update: Wed 17 Sep 2025 06:00:16 +0000
Files and hashes: 1: kMIoPYj99g2K5sWXNcD0fsxHkHM.roa (hash: FopABAV6PSptIp6OTBNiTRgtYU723NWq9ChEZhzR3FM=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: zhg/RTY6ZH2xhi62DpXzwerWHPwoPf5JRPScAh/ju3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 22:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:51:1c:0b:68:7b:7e:82:78:14:40:57:7d:34:d1:84:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Sep 16 06:00:16 2025 GMT
Not After : Sep 17 06:00:16 2025 GMT
Subject: CN=1b41d81e478091dbab7eee7b3e06124960c5f34a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:19:16:9f:69:65:08:59:fe:ed:68:c0:38:3f:
18:e1:a9:cd:cf:c1:31:27:af:51:b1:e6:0b:29:e4:
3e:d8:d6:74:7f:39:49:9e:8d:00:f2:46:47:c3:b4:
21:89:58:cf:51:ed:0b:21:27:8e:25:83:4d:6d:b2:
f9:ff:1b:93:06:a0:94:bb:93:43:ec:c0:8c:1d:3c:
51:43:0d:45:f3:1a:13:42:dd:69:50:39:35:19:4a:
5b:75:4c:6c:dd:c7:74:8c:5b:f8:88:d6:46:3a:04:
51:83:cb:08:21:96:5a:d1:62:79:fe:68:ee:d1:74:
89:44:3a:85:a3:aa:32:10:f3:d7:dd:54:65:c6:fa:
99:32:94:35:78:be:48:c7:82:7f:c4:01:03:60:14:
7b:63:16:ad:9c:57:6f:b5:c1:14:47:c4:dc:ac:0d:
28:23:5a:4b:13:1d:03:df:a9:b8:8a:e6:63:00:00:
9e:f4:a9:d0:07:04:23:f0:a8:8c:e4:a2:3b:96:e9:
cc:de:3a:72:31:0b:5c:14:5e:26:db:88:e9:b1:59:
40:04:5b:bc:76:04:7b:a1:0a:0c:26:a1:b9:95:d3:
9d:56:8f:a4:ad:93:40:e2:6c:f7:d4:94:6e:b6:91:
91:42:7e:fa:ac:f3:be:72:37:c2:29:61:6a:10:8d:
1d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:41:D8:1E:47:80:91:DB:AB:7E:EE:7B:3E:06:12:49:60:C5:F3:4A
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:c9:48:1e:d9:d7:22:05:d8:a9:9a:40:c7:d5:ff:9e:63:97:
7b:e9:3d:8b:b2:08:0f:e2:a6:a0:6b:c0:ab:26:bc:2b:6c:fa:
76:ec:1e:cf:38:90:d0:29:c6:01:1c:03:35:cc:bb:c8:54:f9:
e1:2d:e1:b7:f3:05:72:41:5c:75:fa:72:06:6e:2c:46:5d:52:
22:d0:29:4c:41:be:2f:52:b7:cd:82:e2:ac:7f:0f:de:d3:7e:
88:fe:0c:46:74:73:b0:69:4f:03:90:84:82:ea:69:0f:f8:19:
92:04:a2:d1:75:3f:c9:ea:a2:21:8a:a6:3b:d5:3f:ee:84:f9:
36:78:b3:42:99:97:fd:c2:05:75:3a:7d:6d:bb:65:74:c4:92:
1e:31:3f:ab:83:e5:14:01:2e:38:67:2c:a5:24:84:09:65:f6:
6f:21:6c:0c:66:09:5c:d3:4e:eb:82:61:11:db:33:23:60:aa:
14:58:78:48:68:b1:88:04:85:68:2d:1a:df:fb:b6:59:87:17:
5e:45:d2:aa:b8:03:36:0d:f8:8c:14:f0:d1:62:d4:1a:5b:db:
7e:82:2e:6a:3a:09:59:6f:98:af:ab:c5:2f:7e:0e:21:ee:17:
41:24:f1:15:33:c2:cc:fd:ee:c7:ca:ff:d0:d0:ab:bf:7d:99:
e9:67:f6:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 07:27:37 2025 by rpki-client