Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: XkrpwL8iOJJERedioHG5syMC/1gypIzBXNpLLkOXDdE=
Subject key identifier: 79:66:A1:22:53:A5:89:0F:EF:5F:8D:B9:3D:34:CB:5B:A4:58:98:93
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 0198488949AFFFD2A49F2632F6C5091586FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 15FC
Signing time: Sat 26 Jul 2025 21:00:13 +0000
Manifest this update: Sat 26 Jul 2025 21:00:13 +0000
Manifest next update: Sun 27 Jul 2025 21:00:13 +0000
Files and hashes: 1: kMIoPYj99g2K5sWXNcD0fsxHkHM.roa (hash: FopABAV6PSptIp6OTBNiTRgtYU723NWq9ChEZhzR3FM=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: BhX/3SdD6w7xCrFZbUrj/iGsRRm9K44KelE4r7dO9KI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:89:49:af:ff:d2:a4:9f:26:32:f6:c5:09:15:86:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Jul 26 21:00:13 2025 GMT
Not After : Jul 27 21:00:13 2025 GMT
Subject: CN=7966a12253a5890fef5f8db93d34cb5ba4589893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6f:f5:a9:f8:10:72:70:e3:95:ab:d5:05:78:
e6:72:31:11:2f:8c:98:c2:4d:6f:64:8e:0e:e0:18:
57:57:2f:99:3a:64:9f:f9:1a:56:87:89:24:29:ba:
7c:99:24:43:16:b4:44:ce:2d:1c:44:a3:3b:e2:63:
b8:46:0d:91:0b:a2:a0:bd:c6:72:d2:3f:fe:34:01:
22:f8:13:e6:07:cd:83:42:2e:31:a8:56:05:85:13:
d8:44:5b:07:90:60:12:90:f3:8a:37:9d:ca:17:d0:
99:ef:89:0d:0a:d8:c5:00:47:eb:64:30:d9:ad:2c:
7f:27:ea:e5:39:c4:84:a4:eb:c6:e7:93:fc:b4:32:
66:46:4d:2a:da:da:7f:c2:b6:ef:16:e3:17:d2:c7:
25:8a:48:e9:73:32:24:56:dc:cc:bf:1e:da:dc:2f:
13:32:97:e8:53:18:f9:5a:c7:48:d7:70:33:de:e5:
cc:87:84:b6:c2:5c:d7:e4:8e:ad:e1:60:39:c0:a6:
a0:7d:3d:65:61:25:ef:23:31:6b:91:e3:0f:41:31:
ad:ce:fb:50:68:6e:5a:05:5c:ec:d0:22:41:40:bb:
f7:96:37:d0:18:42:98:db:50:d4:0c:7a:91:f3:ac:
d6:6e:ac:0f:c8:77:d3:93:86:e2:41:78:35:6c:0d:
66:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:66:A1:22:53:A5:89:0F:EF:5F:8D:B9:3D:34:CB:5B:A4:58:98:93
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:92:7e:8d:43:eb:23:5a:95:fa:0d:75:15:bb:42:ba:bb:95:
c4:95:6f:10:86:ea:fb:19:43:34:8b:f8:fa:16:27:51:8b:72:
39:8a:2f:a6:ca:82:3d:bf:94:f7:48:03:c5:54:1f:0b:be:4f:
3b:60:fc:7a:4c:14:42:18:a1:75:18:eb:7e:34:84:f1:b1:84:
39:9d:89:92:93:4d:45:74:f3:74:ec:38:5f:d7:57:57:f4:4c:
b5:cc:6b:a8:ad:31:a6:ac:2a:28:fe:ed:5f:74:da:61:a9:43:
ca:41:cd:f8:a6:65:ae:6c:dc:53:fe:75:53:bb:30:fb:b6:9a:
cc:06:b0:51:a4:05:dc:8a:ea:3a:23:1e:0d:19:c9:80:78:8d:
3a:29:53:87:8a:ff:94:e2:0d:37:05:ce:78:9b:43:28:8f:20:
56:4a:66:81:ae:52:f9:3a:22:41:db:92:7e:71:f3:0d:48:6c:
3c:e7:0c:49:0f:5f:55:ea:88:af:2e:6f:a4:cd:c8:be:14:f0:
db:7d:83:a9:19:b5:68:94:af:57:3b:ec:29:32:d9:bb:20:64:
fd:ba:15:eb:ab:be:90:8b:03:c3:7e:de:1f:e0:97:07:b5:5f:
40:c2:40:7d:44:c3:45:f0:56:b0:8c:33:2b:72:ab:1e:f9:03:
c5:43:e8:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:38:55 2025 by rpki-client