Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
File: xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft (raw, json)
Hash identifier: bxe5CU+A1GOCIH+SLWp3tsts/gjtN1Bv53YSNfsp/Bw=
Subject key identifier: 80:89:98:97:67:AF:87:F6:9F:36:98:A1:A3:FF:A4:9E:3A:16:B2:3E
Authority key identifier: C6:2F:08:03:C4:29:8E:15:6D:56:3B:D4:F2:07:CB:5B:83:61:02:6E
Certificate issuer: /CN=c62f0803c4298e156d563bd4f207cb5b8361026e
Certificate serial: 019A7293A1686BB5C5DBA80F0B92E8C62861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xi8IA8QpjhVtVjvU8gfLW4NhAm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
Manifest number: 131B
Signing time: Tue 11 Nov 2025 11:01:08 +0000
Manifest this update: Tue 11 Nov 2025 11:01:08 +0000
Manifest next update: Wed 12 Nov 2025 11:01:08 +0000
Files and hashes: 1: S4GEAGQpLNuwxd69ASEGW9Vms4c.roa (hash: FsqX6X9yKqotnT07LkiZuZ69e3G5OYb0RnxsqAXswi8=)
2: xi8IA8QpjhVtVjvU8gfLW4NhAm4.crl (hash: foOX5j2b7GFbiZ4eLjUYSBPZNc27rnIUPO7piV4zZyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xi8IA8QpjhVtVjvU8gfLW4NhAm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:a1:68:6b:b5:c5:db:a8:0f:0b:92:e8:c6:28:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c62f0803c4298e156d563bd4f207cb5b8361026e
Validity
Not Before: Nov 11 11:01:08 2025 GMT
Not After : Nov 12 11:01:08 2025 GMT
Subject: CN=8089989767af87f69f3698a1a3ffa49e3a16b23e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6a:84:ea:b5:26:bc:3e:4b:c0:87:f5:ef:fb:
7d:17:db:65:12:3a:5b:d0:41:a5:76:73:a6:b2:02:
62:5d:ed:3f:8b:f3:0b:5d:bd:8f:3a:38:50:6f:08:
75:da:69:ad:2c:de:2b:2d:4b:8b:97:9b:b5:52:94:
b5:81:1f:79:9e:f9:09:ca:92:c9:fb:57:51:1b:d8:
4b:68:8c:2c:a4:35:12:b2:9a:38:67:41:4d:f9:5c:
89:04:a7:69:a0:45:79:57:b3:41:b9:6c:9a:36:02:
30:16:fd:0b:c7:49:1c:dc:49:06:76:30:e6:cf:fd:
4a:5f:13:75:24:21:7d:c0:9c:ee:3b:31:66:99:0f:
e9:66:7c:67:bd:5d:72:b0:6d:3c:67:04:32:33:d9:
c1:72:6e:d3:57:9d:5a:5c:f7:55:58:40:92:0e:e0:
6e:49:67:71:4a:7e:9b:1b:72:37:81:b4:51:45:b2:
fd:26:bf:49:7e:a3:f6:ea:07:6c:2f:60:54:ba:ce:
a7:bd:dd:78:a1:81:62:7c:1c:83:ee:92:ff:41:1a:
e4:a7:b6:e7:22:03:47:00:90:a5:5a:b8:84:da:87:
d7:73:2e:31:4c:61:b4:fc:72:90:d4:2d:2d:ba:51:
08:3a:4f:db:a7:6c:a1:64:05:01:b3:1d:ca:d1:7d:
f5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:89:98:97:67:AF:87:F6:9F:36:98:A1:A3:FF:A4:9E:3A:16:B2:3E
X509v3 Authority Key Identifier:
keyid:C6:2F:08:03:C4:29:8E:15:6D:56:3B:D4:F2:07:CB:5B:83:61:02:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xi8IA8QpjhVtVjvU8gfLW4NhAm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:03:6d:dd:8c:cb:a3:c1:b6:b8:54:88:2c:a0:f5:f3:f5:ea:
60:03:81:c1:d6:4e:92:cf:c8:1f:ce:12:49:5a:b6:2f:43:a3:
72:16:dd:3b:21:8e:65:8d:57:f0:7e:66:51:a3:1c:08:b8:06:
69:ee:62:48:4d:77:f1:51:b2:18:1c:4c:26:6e:6d:23:00:ad:
e0:43:43:6f:d4:28:03:72:ac:e0:3c:aa:e5:a6:1e:73:a3:73:
9e:7c:9e:20:e6:28:e2:49:cc:8f:b3:24:a7:89:4b:94:b5:a7:
f5:32:5e:af:78:b0:d4:a3:ff:99:0e:21:42:0f:a1:5a:1c:82:
94:40:65:e7:a4:75:31:1a:6e:ba:e1:75:9b:98:3f:cd:04:8d:
3a:ed:a2:2d:5b:d5:19:7e:11:25:2f:f4:dd:37:f8:f4:05:ee:
8f:ba:fb:f7:38:01:4e:77:4c:a1:0d:ad:e4:1f:d6:be:9a:b0:
d1:b5:be:59:36:4b:93:81:02:3f:b7:ad:b7:3f:58:b0:6b:0e:
f1:0d:00:3e:80:91:7c:6a:67:ea:6f:ff:84:93:e1:97:c6:e5:
88:75:94:4a:d6:f1:11:e7:a1:12:f2:cc:15:90:44:48:0d:28:
dd:1e:df:09:c6:fb:ce:0b:56:94:e8:4c:76:ff:2b:e4:47:ba:
1e:ae:93:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:15:38 2025 by rpki-client