Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
File: xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft (raw, json)
Hash identifier: te5Q7HvSNGkykQ95RwtQbam/VD0nTY2ki3DWOYc6JAU=
Subject key identifier: F5:0E:D2:1D:64:B7:60:0E:D9:59:85:E5:91:D3:36:9A:60:54:0B:B6
Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
Certificate issuer: /CN=c613276cbca6793c33457a9bf22fc10b382301f4
Certificate serial: 019921B217319C7C0F64716CF1CE4908AB64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 01:02:23 +0000
Manifest this update: Sun 07 Sep 2025 01:02:23 +0000
Manifest next update: Mon 08 Sep 2025 01:02:23 +0000
Files and hashes: 1: b9YzzhOPHDVo_soINWMmjLB7fhk.roa (hash: lwz89foq6Y4dt/R5BV0uIhhLjFL2sOp+mEH46qLg0yk=)
2: xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl (hash: l0UzqRHP6+zarDRlZr+x285ic39oPjNfsbf8dEN1ieE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:17:31:9c:7c:0f:64:71:6c:f1:ce:49:08:ab:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4
Validity
Not Before: Sep 7 01:02:23 2025 GMT
Not After : Sep 8 01:02:23 2025 GMT
Subject: CN=f50ed21d64b7600ed95985e591d3369a60540bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b7:29:07:c8:32:7c:22:00:95:32:e9:83:06:
d3:90:56:4b:90:b5:66:f9:42:1e:ee:97:fd:12:57:
84:96:ee:ec:b0:e7:ed:ba:43:06:49:3e:1d:d7:37:
30:a6:90:ca:67:e7:cd:aa:f5:87:c0:3b:1c:b8:d7:
9b:58:f2:41:c8:19:ac:4f:c8:6a:18:9d:a6:f3:85:
48:58:88:b1:0b:d3:c2:dd:38:b5:59:9c:e5:42:80:
e1:27:18:78:d7:e1:8a:2d:80:11:55:d4:af:65:61:
70:27:9c:4b:6d:ac:22:2c:86:27:70:d8:3a:96:c3:
c7:bc:b7:20:c7:cd:80:2d:e6:af:02:14:f9:5b:9a:
0d:7d:4f:fe:9d:ee:5e:26:c6:c4:a1:e8:2f:5e:5f:
5b:10:75:06:e1:0d:c7:e7:64:50:b1:90:d6:5b:24:
ce:a2:c7:41:23:98:a2:5d:5c:ef:39:91:d8:c3:32:
c5:f3:07:94:40:42:2a:dd:e2:b8:2b:05:dc:38:bf:
56:a4:54:a8:9f:c3:88:03:a3:3a:56:3b:3f:fe:1e:
f0:82:14:c2:09:0e:94:6c:2c:a4:7e:78:0f:01:fb:
38:40:a0:22:13:04:6d:1c:b6:59:02:ff:ce:4f:cf:
56:89:fb:b1:50:e7:36:3c:a2:38:95:e3:2a:ea:f0:
15:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:0E:D2:1D:64:B7:60:0E:D9:59:85:E5:91:D3:36:9A:60:54:0B:B6
X509v3 Authority Key Identifier:
keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:2b:75:b2:d9:a9:4d:a7:5e:b0:22:26:d1:27:9d:8f:1f:1c:
c5:00:31:cd:5c:95:fa:da:42:cb:38:4e:1c:27:a5:35:72:49:
e4:d4:dc:65:a2:ef:ab:5c:8a:05:d2:12:85:fc:78:5b:a8:dc:
b7:7e:c6:48:7e:36:1c:56:3d:cc:5a:e7:db:2f:33:b0:81:94:
8d:d8:27:1d:6c:49:00:25:17:6a:0a:51:a8:5b:11:a8:5c:81:
c3:38:5a:1e:62:42:87:cf:4d:07:d1:e8:0c:e8:06:19:cb:0d:
6e:f7:80:34:6d:79:2a:96:d8:c1:06:bd:e3:3b:f5:8a:95:4e:
45:ee:79:fb:85:bf:ec:58:cd:68:1a:9d:2d:9a:66:f7:a5:6d:
5d:7d:6e:b8:0a:cf:b9:33:b7:48:c0:e3:70:fc:fc:08:cf:4a:
fd:da:7a:85:e4:89:a0:05:f7:b7:67:bd:35:cd:0b:39:7a:4d:
f5:51:e4:bf:35:8d:8f:3a:ff:d7:bc:2d:ec:8a:5c:a5:a3:bc:
29:be:0d:3c:f9:b8:b2:34:00:49:e5:e5:c5:ee:b0:59:27:b7:
ed:88:20:5b:29:17:48:15:d3:95:36:c8:cd:d8:35:d4:d2:8f:
32:95:c8:bc:75:b6:e8:aa:1b:ba:a8:e1:93:23:91:69:9a:bc:
b2:de:aa:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:43 2025 by rpki-client