Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
File: _XTetBhEJvpiIlthIMNnBvc3uOI.mft (raw, json)
Hash identifier: bT6p58W9WLE7r4uVv+jiJorNRy+QYXGBECMvzUngKUM=
Subject key identifier: 8E:E6:38:1B:41:B3:10:AE:B8:05:37:B5:0E:8B:91:FB:71:DF:9D:7D
Authority key identifier: FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
Certificate issuer: /CN=fd74deb4184426fa62225b6120c36706f737b8e2
Certificate serial: 019A410191C95727D94D43D492D20777E664
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
Manifest number: 1706
Signing time: Sat 01 Nov 2025 20:00:13 +0000
Manifest this update: Sat 01 Nov 2025 20:00:13 +0000
Manifest next update: Sun 02 Nov 2025 20:00:13 +0000
Files and hashes: 1: K3K73SOKoUl1BbH2-VG761We22I.roa (hash: JYStvIUn6egbkb0Wps8aA9dlj6GWDzxPYmBqdWiziOs=)
2: _XTetBhEJvpiIlthIMNnBvc3uOI.crl (hash: yoodcspMyIGVczPfjuRfmO8HQeQ/6BTglqwCQCtQBDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Nov 2025 20:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:41:01:91:c9:57:27:d9:4d:43:d4:92:d2:07:77:e6:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd74deb4184426fa62225b6120c36706f737b8e2
Validity
Not Before: Nov 1 20:00:13 2025 GMT
Not After : Nov 2 20:00:13 2025 GMT
Subject: CN=8ee6381b41b310aeb80537b50e8b91fb71df9d7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:85:66:20:56:8b:0e:01:fa:16:d5:37:0a:2c:
22:c4:33:9b:20:f6:89:33:bb:5d:6a:94:1a:d4:3c:
7f:a3:b6:ee:f8:80:7e:9e:1a:b0:2b:72:de:8f:9b:
b7:b0:e2:48:03:e1:d3:23:f6:f4:c5:09:e0:4b:f8:
e1:fb:ff:56:f7:a0:9f:6f:0a:46:de:eb:da:b0:3e:
ea:31:2f:0f:d1:69:2d:ac:04:4a:f7:04:6d:56:ac:
fa:a4:b6:1d:84:18:d3:6b:10:6c:fa:68:41:b3:5e:
1b:d8:53:e8:53:cb:93:fb:a0:58:24:1e:d2:9a:f4:
82:3c:a7:a0:9b:20:57:93:05:4e:8a:78:dd:18:1e:
eb:51:11:eb:7d:89:fb:eb:76:32:4a:db:58:46:3f:
88:5d:17:eb:a0:2b:72:3d:1d:8c:0b:46:b3:30:48:
ba:9a:cb:71:df:1e:c9:3f:56:70:66:a5:b8:df:f8:
23:a9:45:47:7a:ad:6c:76:cc:8c:4b:f8:11:59:bd:
8b:47:0b:71:28:ff:b5:ac:02:ff:cd:d9:9b:0c:92:
34:e4:97:eb:52:32:cb:10:b5:4c:f9:bf:b0:8a:a9:
96:c6:7f:f7:39:fb:69:0a:af:3a:a6:85:e3:ab:7e:
93:b5:6e:1e:f8:e7:71:c9:83:32:09:7e:5e:a9:1c:
33:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E6:38:1B:41:B3:10:AE:B8:05:37:B5:0E:8B:91:FB:71:DF:9D:7D
X509v3 Authority Key Identifier:
keyid:FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:72:57:dd:86:15:79:fb:af:c1:0b:45:90:61:aa:bb:ee:78:
b5:06:fd:a8:db:8f:ce:b3:34:07:69:17:59:22:db:6f:3c:e0:
c1:41:b7:66:d8:42:1b:17:0f:72:2e:4f:99:4a:72:01:9a:32:
24:d5:e3:7b:7f:be:4e:7a:d3:6c:9f:80:9d:e8:32:a7:aa:0a:
35:ef:85:74:ad:6b:bd:42:2b:bc:05:04:de:23:8a:66:34:f6:
44:39:a2:9f:c2:d6:2c:23:8e:b2:03:33:91:f0:8d:2e:2f:19:
b2:b5:b4:06:59:bb:dc:58:7c:10:0e:d4:a1:03:ca:db:4c:90:
80:01:51:c8:59:72:bd:e2:71:6e:69:df:20:ce:d4:cc:9a:a4:
81:6f:b2:03:35:d1:92:c3:fd:29:eb:62:a1:e8:bf:1e:aa:5f:
3d:33:f0:93:bf:5e:49:d3:ee:0c:01:7c:93:51:ad:37:11:6e:
97:a6:c0:9b:53:ab:c4:f3:e9:2c:d5:3c:73:36:b9:dd:0d:0d:
c7:7c:29:bc:46:2d:7a:ec:b0:17:b2:6c:0f:e5:bb:5d:c6:ea:
ad:97:e1:e5:4a:ea:8b:40:4a:d5:2a:06:24:5c:1d:54:ee:f3:
86:b5:5b:e5:be:ad:ab:ff:c2:19:b4:43:36:fa:34:08:61:81:
0d:cf:51:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 2 05:58:35 2025 by rpki-client