Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json)
Hash identifier: 5AcmL2yf9tP3K/eOD53Vjc1gfXVAiySAICqFCUy9VqE=
Subject key identifier: B2:C1:EF:2D:86:44:EB:06:FD:35:57:43:57:E4:CF:6C:92:53:1D:BD
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 019923A0A0C4AAA58EDED8E7EC04DFA3EE53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 10:02:33 +0000
Manifest this update: Sun 07 Sep 2025 10:02:33 +0000
Manifest next update: Mon 08 Sep 2025 10:02:33 +0000
Files and hashes: 1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=)
2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=)
3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=)
4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=)
5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: q5O2Sx/auugDQ/ePUILg+Oz7L5+eZyXCB3uvKiRVnVw=)
6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:a0:c4:aa:a5:8e:de:d8:e7:ec:04:df:a3:ee:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Sep 7 10:02:33 2025 GMT
Not After : Sep 8 10:02:33 2025 GMT
Subject: CN=b2c1ef2d8644eb06fd35574357e4cf6c92531dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:96:7d:e5:88:39:1c:da:b8:e0:58:ad:5f:fa:
86:ab:9b:cb:b6:43:0a:6e:17:07:70:e2:40:d3:cd:
fa:8c:11:83:d0:0c:61:60:3d:38:b8:bd:61:63:43:
5f:ea:18:07:06:22:9b:be:82:51:fd:68:db:41:f6:
3f:ca:12:23:57:83:8f:d7:68:c3:72:18:f3:54:c2:
69:e1:a2:f7:bc:5e:06:a5:06:fa:ec:a9:66:df:4f:
3f:d9:d9:f0:7b:02:6b:a1:de:35:92:c5:8a:06:3e:
2a:bc:2d:ab:bd:50:55:82:d9:f9:e7:ea:2e:91:9a:
19:cc:57:dc:39:b5:f3:30:0e:8b:93:30:6e:6a:28:
ec:8f:3a:0d:dc:3b:5d:02:fa:09:84:dd:29:bb:fc:
55:f6:eb:50:95:36:70:01:2c:50:1f:fb:40:bd:41:
ea:25:55:40:42:fc:b8:61:04:cf:e5:af:7d:16:f4:
7f:55:ed:22:15:35:b2:ac:f7:0e:a6:69:22:e5:3c:
43:2a:37:83:73:2f:54:f1:63:c8:04:a3:56:4e:06:
d5:85:23:b6:b4:c0:29:35:c8:82:6d:34:85:dd:d1:
57:d2:ea:72:a8:32:55:b7:5a:c9:09:96:61:a8:20:
b3:de:a4:4d:a9:b2:9f:59:05:f7:1d:40:53:e6:17:
d6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:C1:EF:2D:86:44:EB:06:FD:35:57:43:57:E4:CF:6C:92:53:1D:BD
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:09:79:9c:ab:f6:f2:09:86:e9:ca:dd:ee:30:a6:39:29:7c:
4b:5f:2c:30:27:50:1c:b9:28:93:1f:ab:8c:6a:c5:94:82:48:
c9:02:6d:11:12:f8:3a:9b:e3:04:c2:23:fb:63:a7:2e:40:5a:
2d:7b:0b:a9:7e:9c:35:32:8b:7b:36:5d:37:23:e5:60:33:f6:
01:52:5f:76:a9:76:b3:66:00:fe:da:d5:d0:8e:f9:f9:81:89:
07:35:53:42:0f:95:45:e1:6e:87:28:dd:6c:96:6a:11:4d:6b:
81:b0:e2:78:ff:6b:33:93:2d:37:62:a0:db:a1:39:29:27:55:
d4:60:be:22:39:b9:7b:33:a8:0e:b4:c8:01:e2:5e:ca:a4:93:
0e:12:01:38:8a:da:6c:57:c7:f7:06:4e:45:4a:ee:cb:58:14:
0b:11:57:c9:d3:d1:13:29:58:14:e8:d9:8e:ef:2f:19:6f:44:
74:a2:7d:6b:6e:9c:3f:07:c5:fe:4c:a1:d2:1b:74:cb:2a:2d:
b6:a4:c3:ac:4c:f2:66:e7:31:3d:af:90:af:63:30:80:25:3a:
09:a7:97:d1:63:99:18:7e:4a:7e:fb:28:2e:17:4d:6b:81:79:
f6:4a:3a:cb:e5:44:e1:e3:9c:c0:fb:4c:53:50:e3:f8:58:62:
5c:a1:e5:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:24:55 2025 by rpki-client