Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json)
Hash identifier: WeoJfFTOEPXKMEtGiCe2GWcWPIuMjXRNd5t9qmbtIb8=
Subject key identifier: E8:86:8B:D2:4B:96:BD:40:1F:70:3C:40:E5:68:9A:C0:DE:82:E7:0A
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 019A71B84B264AA4737795684F95D150D041
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 07:01:34 +0000
Manifest this update: Tue 11 Nov 2025 07:01:34 +0000
Manifest next update: Wed 12 Nov 2025 07:01:34 +0000
Files and hashes: 1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=)
2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=)
3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=)
4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=)
5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: 7FHIQihra8IFCdoqzQK8dxmMgVgNgMBgtU/B8/OLs+k=)
6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:4b:26:4a:a4:73:77:95:68:4f:95:d1:50:d0:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Nov 11 07:01:34 2025 GMT
Not After : Nov 12 07:01:34 2025 GMT
Subject: CN=e8868bd24b96bd401f703c40e5689ac0de82e70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6b:5e:e5:0f:57:1f:81:1d:fd:04:2b:e7:80:
3a:81:43:6c:a7:b3:c1:cf:f4:28:73:fa:7b:c1:b1:
bd:6d:4c:d0:83:e9:32:37:23:36:36:4e:5c:87:3e:
27:ce:04:3d:63:0a:15:22:1a:2a:64:f6:26:b8:bb:
8c:28:32:bb:41:b4:b7:12:db:c2:80:88:66:49:79:
ae:5e:fc:5a:cf:b4:58:56:f3:c9:49:f0:63:d7:32:
4a:f3:23:3e:fc:eb:e4:a3:4f:5b:11:c2:e2:36:00:
86:08:77:84:2e:fd:0a:21:22:4c:04:c1:c8:fa:81:
57:81:bd:29:10:84:63:6a:53:27:a8:64:a2:fb:77:
b3:b7:5d:f2:09:3b:d8:ef:16:bd:a7:b6:97:d6:d8:
ae:71:21:e2:1f:d5:8f:dc:d3:81:ea:3f:0b:ce:4f:
70:94:95:f4:de:8e:d0:52:02:b1:7b:24:bb:41:3e:
ea:e8:c6:d0:ef:80:9c:a0:7d:5a:84:eb:7c:70:0d:
87:b6:1f:ee:03:bf:94:13:80:f6:48:6b:b3:6d:e4:
64:cf:c3:17:7f:46:d1:6b:35:9b:25:35:d7:44:63:
23:0f:39:41:94:89:be:de:09:b1:ab:91:5b:da:e2:
a3:5e:6b:62:12:64:76:3c:be:65:e2:cc:b1:6f:61:
62:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:86:8B:D2:4B:96:BD:40:1F:70:3C:40:E5:68:9A:C0:DE:82:E7:0A
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:ef:15:24:32:a6:8d:ab:05:ff:43:0a:ec:89:b4:6d:99:01:
56:3c:e7:60:e8:f9:15:7f:a1:22:60:e9:ad:af:98:fc:3a:f1:
6e:44:b5:69:a2:60:d8:26:d6:7d:e1:00:78:02:a5:5e:45:0a:
91:3f:d6:3f:28:bf:0c:d3:07:7d:34:2e:d4:e9:30:74:ae:4f:
9b:85:40:0f:00:35:5b:0c:e7:d1:90:14:fa:58:80:d4:96:d3:
2b:ba:0e:90:3a:78:cb:bd:a5:d6:90:40:05:fb:f2:74:06:aa:
38:3c:2e:63:0e:f9:dd:a8:76:15:4d:25:b6:96:d7:c5:92:89:
4a:8e:61:01:22:0e:a9:81:2f:b6:f0:3e:00:88:16:d6:69:7f:
f2:f4:09:0f:af:3f:a9:da:cb:f1:89:2a:bd:24:8e:a8:9a:17:
67:52:80:82:f6:8b:69:f1:19:d4:20:32:cb:cb:4e:81:5d:69:
5f:67:5c:b3:18:08:0e:d3:b3:04:f4:ad:de:12:f9:e1:61:76:
16:6e:21:02:d3:45:3b:c9:3c:ca:c0:20:53:4e:26:6f:ef:7f:
ab:17:9d:aa:d5:b8:02:07:4b:9e:f5:00:e8:da:c4:88:3e:22:
8a:4e:2e:1a:ca:3a:69:e9:67:f7:19:b9:d8:dc:4a:8f:f9:25:
a3:b8:54:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:15:28 2025 by rpki-client