Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
File: XeYTaCVSAQKY86aUoA18WQYGC5U.mft (raw, json)
Hash identifier: l0d+DWRli3RC73MnPpvKTSssBZUowHISZxg9wwIswXU=
Subject key identifier: 5F:C5:18:75:8D:68:B8:48:CA:D8:D0:60:00:1E:B6:0C:09:C8:6F:1F
Authority key identifier: 5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
Certificate issuer: /CN=5de613682552010298f3a694a00d7c5906060b95
Certificate serial: 0199225567EBB80A43AA637C9A641F071161
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 04:00:46 +0000
Manifest this update: Sun 07 Sep 2025 04:00:46 +0000
Manifest next update: Mon 08 Sep 2025 04:00:46 +0000
Files and hashes: 1: XeYTaCVSAQKY86aUoA18WQYGC5U.crl (hash: fPFSGiPTWBGLEaoMnxKv/KNUQaTQF+PBEFD49hXbGuk=)
2: auYlcZnEp-yqavQsok9_TPLHAq0.roa (hash: kbe3quRrlIxTjuDhfKrAisNkV8HOTBuxWR/raJshlU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:67:eb:b8:0a:43:aa:63:7c:9a:64:1f:07:11:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de613682552010298f3a694a00d7c5906060b95
Validity
Not Before: Sep 7 04:00:46 2025 GMT
Not After : Sep 8 04:00:46 2025 GMT
Subject: CN=5fc518758d68b848cad8d060001eb60c09c86f1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:42:d3:0a:19:0f:40:7d:b0:b1:f1:e5:10:54:
fd:ee:26:5c:fe:9a:c6:8e:6f:e3:69:46:72:45:43:
8a:37:58:f6:c3:2e:5b:80:83:66:20:71:75:23:a2:
a9:52:65:f2:1f:76:f7:23:35:45:7c:8d:5d:21:f2:
c0:7d:c0:08:5a:a2:93:84:6a:74:44:2f:5e:e1:2f:
f9:a5:21:56:ec:76:57:e7:68:d1:fc:ee:a1:a2:0a:
d1:38:13:dd:fc:6a:7c:85:a3:7b:21:06:91:9f:28:
26:70:16:cb:f8:a8:3b:92:a8:c0:0a:7c:06:8c:84:
4e:4a:2e:29:9d:b6:d1:5b:08:d7:97:cd:eb:28:7d:
67:22:02:b6:24:b5:68:e1:08:54:8f:a2:d2:5d:37:
06:05:da:75:6d:7f:d2:93:44:22:3e:66:4e:63:4a:
ad:22:8c:12:d7:f3:51:5c:c1:fb:f8:a4:fe:9a:41:
2d:50:a6:a4:90:4b:20:f0:57:91:37:ea:72:4a:3f:
0f:6b:05:09:84:22:3b:3d:1e:94:66:4c:84:3e:79:
e5:10:a1:5b:fc:56:68:25:55:e7:1a:51:b4:c6:58:
b0:0f:04:c0:f1:ac:20:45:b1:67:f7:62:8c:23:5f:
64:b4:ef:9f:51:01:af:28:6d:a1:0c:cd:af:20:37:
98:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C5:18:75:8D:68:B8:48:CA:D8:D0:60:00:1E:B6:0C:09:C8:6F:1F
X509v3 Authority Key Identifier:
keyid:5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:fa:34:a6:9f:51:5d:40:1a:6f:ff:29:52:ca:dc:9f:d0:07:
be:b8:52:db:46:96:19:8e:e1:46:d1:da:64:62:07:9b:f9:48:
71:ee:63:5f:da:bd:5f:9e:16:34:de:5d:5c:ce:92:9e:5f:6c:
2c:23:5c:01:e9:c6:c8:bc:a7:21:96:61:3f:61:8e:f5:bb:41:
b6:e0:3d:f3:42:5a:3f:72:5f:cf:e1:9b:c2:d8:24:f2:01:0e:
ca:2e:31:ad:ce:e9:f3:fb:fa:36:ee:00:a4:c6:8d:6b:ad:3f:
fc:18:9c:9d:a8:42:58:5d:4b:c5:71:31:e5:f4:5c:1e:fc:70:
31:f0:04:05:b6:60:1b:65:61:14:c8:58:8f:3b:85:5b:54:b4:
41:13:3d:77:d4:e5:69:bd:30:28:14:90:76:c3:ac:38:d7:c4:
2d:3e:82:b1:84:0c:e0:bc:3f:e1:58:9f:e6:17:40:d8:98:ef:
3a:d7:ac:0b:f4:8f:5f:46:08:2a:89:da:f6:e3:9b:2a:9a:c9:
e9:5f:6d:fa:66:31:d1:f8:81:ca:06:87:d8:ec:3a:24:26:89:
96:37:45:53:21:85:25:e4:4a:6e:03:b0:db:04:55:95:c8:45:
47:d9:c3:d4:70:c4:2e:c7:a7:28:e6:18:cd:7c:91:80:43:02:
73:67:87:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:20:53 2025 by rpki-client