Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
File: xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft (raw, json)
Hash identifier: bGCf786kDCCY9ENp6zFE8SPX9VOAAgVMDg08btkXpVA=
Subject key identifier: 0F:62:DE:45:CD:03:89:8B:81:CE:7C:E1:3F:3A:25:E7:BF:C5:B2:CB
Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
Certificate issuer: /CN=c613276cbca6793c33457a9bf22fc10b382301f4
Certificate serial: 019A71B8C4DAAF73A8C25CDBD6206B1B63B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 07:02:05 +0000
Manifest this update: Tue 11 Nov 2025 07:02:05 +0000
Manifest next update: Wed 12 Nov 2025 07:02:05 +0000
Files and hashes: 1: b9YzzhOPHDVo_soINWMmjLB7fhk.roa (hash: lwz89foq6Y4dt/R5BV0uIhhLjFL2sOp+mEH46qLg0yk=)
2: xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl (hash: VPJIGoRjFSqUVuzb8OCHeVP+hTddGVlUuDq2CkbgxrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:c4:da:af:73:a8:c2:5c:db:d6:20:6b:1b:63:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4
Validity
Not Before: Nov 11 07:02:05 2025 GMT
Not After : Nov 12 07:02:05 2025 GMT
Subject: CN=0f62de45cd03898b81ce7ce13f3a25e7bfc5b2cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d2:68:27:6e:6c:62:04:5b:98:1f:4d:2f:0e:
02:86:6d:fd:88:43:03:ff:9c:7d:8c:95:ed:8e:f9:
04:58:9c:46:32:03:78:33:11:de:9b:58:87:c5:52:
58:6c:cc:4b:b5:42:eb:9b:d1:94:7d:90:a4:16:d9:
a6:fd:d7:d2:85:11:36:b1:64:81:61:d5:16:ef:c7:
0e:4f:4a:28:a6:63:1a:da:35:23:31:6b:0e:2d:72:
b9:89:44:dc:9e:f3:75:a2:ad:27:7e:c3:88:fa:69:
d2:db:4f:31:70:4d:9c:e5:29:ef:41:c4:2e:21:39:
0e:68:cd:dc:41:9a:e9:02:72:96:bb:1a:d1:66:de:
f2:f9:3e:16:af:ad:e5:4a:16:73:9f:b9:23:e3:35:
92:51:17:ea:3e:ee:85:6c:30:6c:8a:74:c0:99:12:
35:fc:44:31:87:62:dd:ab:0e:12:d6:d1:6d:af:ac:
15:b3:88:4c:5d:f2:e6:70:ed:34:03:4b:d8:c4:7b:
cd:28:43:8e:eb:0f:be:f2:e0:d2:91:0a:4f:56:8c:
a7:ff:1b:a4:df:f6:57:dc:10:70:d0:69:99:b8:89:
e5:09:9e:36:b4:ef:2a:74:70:b6:b4:61:b5:67:c9:
48:12:d4:0d:50:df:7c:9f:8f:53:4d:fd:38:cc:64:
d9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:62:DE:45:CD:03:89:8B:81:CE:7C:E1:3F:3A:25:E7:BF:C5:B2:CB
X509v3 Authority Key Identifier:
keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:27:07:d7:95:e7:ad:1f:78:37:31:14:58:45:34:02:4c:f5:
71:24:b0:77:fa:66:d1:c4:38:b7:61:c0:61:03:82:7b:0f:07:
3b:31:45:ae:be:5c:5a:c5:83:ed:bc:24:c8:bd:7e:3a:05:26:
55:b8:ac:2b:4d:b1:b6:d9:e9:05:d4:40:17:ed:5a:13:46:1b:
ae:88:f1:d9:2b:dc:ee:e9:88:47:93:59:15:91:e9:11:b9:7b:
d2:29:a1:55:74:a4:a9:da:ec:12:c0:ca:7d:41:ad:1b:90:39:
12:3c:e1:cc:af:54:7e:e2:6b:41:4f:ce:98:30:52:89:1e:d3:
72:04:a2:82:f1:9d:8b:b6:c4:4b:ed:db:24:c4:2e:f7:ce:f5:
61:36:d5:eb:ed:a6:a1:b2:e5:62:c9:72:14:00:b2:29:79:36:
97:22:08:e9:b3:17:94:db:51:59:2c:73:a4:4d:aa:bc:65:a2:
15:62:d4:c7:26:31:8b:ef:09:e6:77:d5:89:7f:e2:dc:6f:0e:
d2:81:e7:6b:6e:09:68:77:69:ca:2f:f0:ce:2a:dd:f5:25:cf:
1c:fc:53:3b:0c:5d:f8:ad:f3:29:fe:06:a1:c2:5c:39:87:85:
0a:28:4a:ba:fc:01:05:1c:2c:f1:b7:1d:3a:50:99:4f:7f:8b:
62:3d:3c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:20:35 2025 by rpki-client