Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
File: xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft (raw, json)
Hash identifier: 7HglagNRrtcQn40DXKsuICBum5njIpsVBxSHzCYWJA0=
Subject key identifier: DB:C3:BB:19:21:4A:70:9B:A9:ED:BC:D7:DE:1E:38:F1:28:81:92:01
Authority key identifier: C4:A0:F3:11:09:84:CC:FB:F5:29:98:0B:6D:41:6D:DD:4E:1A:88:25
Certificate issuer: /CN=c4a0f3110984ccfbf529980b6d416ddd4e1a8825
Certificate serial: 019922C2FB777DDD68F46762F1DFE8FB4015
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
Manifest number: 045A
Signing time: Sun 07 Sep 2025 06:00:27 +0000
Manifest this update: Sun 07 Sep 2025 06:00:27 +0000
Manifest next update: Mon 08 Sep 2025 06:00:27 +0000
Files and hashes: 1: SGkYily7UQPusAexDOf3Pto8qlU.roa (hash: suweJqoDq78riZx1pHsROfmVS4S86mc1JzDxd3RsgQs=)
2: xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl (hash: pVUM0iGy6WTL8+lVzhz1hRIpdh9NDGM0SWxonzd+0sA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c2:fb:77:7d:dd:68:f4:67:62:f1:df:e8:fb:40:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4a0f3110984ccfbf529980b6d416ddd4e1a8825
Validity
Not Before: Sep 7 06:00:27 2025 GMT
Not After : Sep 8 06:00:27 2025 GMT
Subject: CN=dbc3bb19214a709ba9edbcd7de1e38f128819201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:68:b7:81:38:33:0f:e9:ed:55:29:d1:e4:fb:
37:2a:37:2a:8b:74:fa:bd:cf:b5:22:57:ec:34:33:
a9:25:d3:d3:3f:4e:80:ee:77:56:44:e3:41:1a:a7:
b3:93:9f:90:11:32:e7:c8:ef:cf:09:ae:0f:9a:64:
76:f7:c6:f2:27:20:08:a6:ab:bc:22:2e:c3:3b:5e:
18:92:67:67:d6:d4:dc:0a:46:47:7e:58:93:3f:cf:
a4:0a:a9:16:77:b0:7d:13:ea:ba:8d:dd:b2:c3:19:
ec:2d:ec:ff:f3:04:2b:27:dc:c4:df:b1:2c:ba:bd:
ae:21:0f:c5:9e:17:5b:e5:fa:19:0e:47:e1:1e:68:
b8:2e:a9:88:51:a6:dc:21:63:14:f5:ca:6f:a9:14:
2d:ee:55:e2:ac:ba:20:48:3b:5b:2b:9d:e7:cf:9c:
5c:aa:56:8a:0d:63:5e:db:c4:0d:9f:58:3c:94:68:
10:b5:bb:14:7c:1f:65:9a:35:c5:d1:35:05:74:9a:
f9:8b:42:f5:85:8e:10:76:56:6a:65:29:f3:49:c1:
87:cb:e4:9b:7c:97:ec:72:6d:17:ff:ad:0d:76:ea:
d6:6f:ac:8c:e6:86:de:0e:67:22:4b:94:f6:80:32:
47:47:ed:4c:79:5e:b2:f0:10:69:c2:98:96:17:48:
98:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C3:BB:19:21:4A:70:9B:A9:ED:BC:D7:DE:1E:38:F1:28:81:92:01
X509v3 Authority Key Identifier:
keyid:C4:A0:F3:11:09:84:CC:FB:F5:29:98:0B:6D:41:6D:DD:4E:1A:88:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:22:cf:ac:30:c9:c7:a2:bf:4f:f1:95:12:87:d3:2f:57:c1:
2d:34:72:26:ec:6c:b1:be:bc:90:35:ce:96:7e:49:a2:40:33:
a9:15:98:d3:06:ac:4a:92:9b:05:01:96:b0:02:81:57:c4:5f:
0b:1a:ab:d1:8c:3b:9d:63:8f:88:d0:f8:7b:ec:78:ad:05:42:
f3:a7:41:91:d9:a1:c7:c4:f8:f3:2d:6f:d1:74:28:bd:0c:6e:
78:30:59:7e:8b:fa:87:ee:9f:12:52:0e:16:08:f5:b4:a4:0e:
e7:9d:88:6b:e1:36:6d:6e:11:23:79:92:f0:cf:95:9c:18:9f:
17:3b:55:16:82:6d:be:e0:e0:20:e7:e0:c9:b7:4c:94:08:0e:
aa:4d:dc:96:bc:65:d2:fa:fb:b4:e5:11:ae:ca:48:07:7c:17:
50:b2:b7:46:cd:a5:f5:dc:46:25:f3:9a:5e:5d:ed:80:1e:c1:
4e:f5:fa:64:86:cc:b4:fc:1e:b8:d0:0d:b6:d9:90:85:6e:ef:
fc:7a:9b:28:14:22:05:bb:3b:54:09:dc:b6:c5:ab:71:61:12:
13:07:13:59:b3:7f:39:6c:7a:00:d4:5b:9c:7f:ac:27:24:71:
db:b3:09:91:fc:5e:e7:e8:ee:1c:23:39:58:96:e4:d0:d5:f7:
7e:a0:7c:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:38:13 2025 by rpki-client