Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
File: XiZI8SkNRHG821C4K-TtkyADCU0.mft (raw, json)
Hash identifier: L/kxGoTGuT23GIv/8Y2IOymfvfixagwxbb9KD+VJD8E=
Subject key identifier: BF:75:63:11:CD:2F:98:A2:F4:E9:B0:75:4B:91:65:12:8D:A7:84:45
Authority key identifier: 5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
Certificate issuer: /CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Certificate serial: 019844762F26ECF20B230E897573B9D902AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
Manifest number: 1590
Signing time: Sat 26 Jul 2025 02:00:52 +0000
Manifest this update: Sat 26 Jul 2025 02:00:52 +0000
Manifest next update: Sun 27 Jul 2025 02:00:52 +0000
Files and hashes: 1: BECHjRO1sNTrECspSOXRaHeMWRM.roa (hash: CUP2bSCGR2R7pQJIeBFSspVhJwtI4r06AoqaZ9LnrhQ=)
2: XiZI8SkNRHG821C4K-TtkyADCU0.crl (hash: q4M/FLuMueYnGHC29C7tJcAxUh5zHo+AcX0Gx8aplSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:44:76:2f:26:ec:f2:0b:23:0e:89:75:73:b9:d9:02:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Validity
Not Before: Jul 26 02:00:52 2025 GMT
Not After : Jul 27 02:00:52 2025 GMT
Subject: CN=bf756311cd2f98a2f4e9b0754b9165128da78445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b1:84:a5:3b:52:9d:a2:ac:eb:a4:2d:af:a0:
a0:d0:f6:ee:a6:8c:e6:10:a7:40:80:ae:cc:0f:45:
bd:d2:45:6e:c3:1e:ad:d9:0f:9b:c9:71:2e:19:31:
cf:21:d6:fe:ba:75:c0:53:73:55:99:0e:5d:a0:83:
85:49:51:2c:a1:22:d6:9a:9b:4e:e8:bd:bd:88:42:
64:9c:fc:3f:50:82:b3:0f:a4:a3:6a:b0:72:bc:52:
97:01:76:16:15:92:53:f7:fb:79:0b:bf:91:3a:e2:
4c:ce:8f:b9:ec:ce:25:34:48:ab:29:59:f3:47:da:
25:aa:60:99:8e:47:51:f9:26:fe:f5:79:88:ef:aa:
81:77:76:16:7d:a6:54:bb:32:19:2a:aa:22:5c:80:
99:e0:6f:bf:fd:13:ec:8f:f3:50:80:a9:f7:95:a8:
c5:de:6c:42:cd:f3:dd:55:54:64:7c:86:be:95:a1:
56:af:c8:ad:7c:d4:cf:de:17:6a:7a:65:bc:d2:3f:
c0:be:14:22:29:4c:a7:32:f5:df:d8:4a:ad:84:06:
d8:d9:72:49:35:68:b8:9f:50:7b:0a:9d:14:10:05:
63:79:45:35:c3:6b:99:f3:72:d1:81:90:e8:86:48:
93:7e:eb:80:96:cf:56:5a:41:51:d0:00:13:1a:66:
ca:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:75:63:11:CD:2F:98:A2:F4:E9:B0:75:4B:91:65:12:8D:A7:84:45
X509v3 Authority Key Identifier:
keyid:5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:6c:16:d9:a4:41:04:cd:cf:81:09:1a:00:3e:9a:c5:b2:9d:
81:02:eb:a0:ac:08:11:72:45:6a:a7:77:16:81:ff:d2:4c:3c:
a0:2e:75:f2:4e:17:94:fc:e9:1a:7f:e7:8e:4c:b0:5a:3e:5a:
a8:e1:4e:cf:15:94:19:6b:f9:0b:53:50:6b:ad:c9:5d:9c:36:
86:fa:a1:2a:ed:2e:4d:92:22:13:a9:3e:5a:9e:93:47:bd:2b:
75:4d:83:1d:fa:a2:d0:98:b1:2d:aa:ae:37:d9:dd:86:1b:8d:
78:eb:49:1e:be:6f:9c:6a:5b:03:e9:2d:24:07:88:ba:0f:30:
59:1d:7e:90:3a:96:03:ba:78:c4:f2:9a:9c:05:1a:bb:b8:c1:
56:f0:32:8d:0c:6f:9c:0d:56:be:cf:44:ac:c6:d6:ff:3c:de:
5a:8f:99:1e:7b:34:6c:4f:48:00:f0:37:df:bf:81:50:d9:69:
d4:54:0b:cf:5e:c4:b6:03:5e:b9:ba:58:56:27:3a:44:33:16:
df:6d:c1:c9:58:07:b8:7a:a7:21:f6:e4:8f:79:57:39:2d:b1:
4b:92:45:ff:68:26:be:a1:4c:1e:3b:01:19:31:53:9c:f2:be:
90:7c:d1:25:a0:bb:0d:91:26:10:e1:03:87:f4:bd:2e:cc:e4:
fb:aa:5e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:38:33 2025 by rpki-client