Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
File: XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft (raw, json)
Hash identifier: RG8CLicLyMo1kW4q/sKm7+dDqhi3qVBweWV2nIt8zJw=
Subject key identifier: AC:CC:C8:6E:E1:D2:AE:0A:9A:3D:82:B4:E5:EB:9A:88:F2:37:E5:B7
Authority key identifier: 5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
Certificate issuer: /CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Certificate serial: 019922FAAE6768E1338927029A7A7B8C6394
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
Manifest number: 0882
Signing time: Sun 07 Sep 2025 07:01:17 +0000
Manifest this update: Sun 07 Sep 2025 07:01:17 +0000
Manifest next update: Mon 08 Sep 2025 07:01:17 +0000
Files and hashes: 1: XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl (hash: 52wycS6Rna7IrxkpGt+vbYHEd54YoM5l0jIUkGxIPfE=)
2: zw3OOzLu7F0rCvVUhFlHNjK6_48.roa (hash: EC4+NtSiW4UmHKtwZdLsHrR4X7fUOJDCpzkjNoARw5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:ae:67:68:e1:33:89:27:02:9a:7a:7b:8c:63:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Validity
Not Before: Sep 7 07:01:17 2025 GMT
Not After : Sep 8 07:01:17 2025 GMT
Subject: CN=acccc86ee1d2ae0a9a3d82b4e5eb9a88f237e5b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ab:1c:b2:d9:a6:93:0c:20:10:9e:1e:5f:d4:
6f:06:a5:b2:8b:45:16:f5:8e:5a:3c:5a:fa:07:ee:
3f:b0:ea:46:80:5e:95:0f:2c:8f:fd:69:ec:de:ae:
34:f4:61:e2:c7:fb:1f:96:fa:a6:b4:7e:25:0d:9b:
40:f0:a0:3c:50:ae:3d:ba:cb:2c:be:85:2a:ae:86:
33:96:e0:ad:78:2c:0c:71:bf:e2:5c:ac:c4:b0:b2:
0f:4d:ff:e5:8d:4a:e5:96:db:f0:f1:2d:ad:c8:1a:
74:3b:f9:9c:58:f8:04:4f:e4:6f:ae:2f:69:d0:46:
63:74:33:24:13:57:0e:41:e1:0d:db:13:a3:58:f0:
7d:0a:f6:8a:eb:09:5e:be:68:90:8a:28:c3:b0:18:
b5:0e:8d:8a:71:08:9a:06:20:f2:90:46:d5:24:d8:
1f:6c:a3:be:e8:40:60:2f:fa:7d:af:4f:34:1d:ba:
ad:f7:0d:93:00:85:4a:b6:4d:d0:2b:24:c2:9e:56:
78:c1:ed:70:2b:a7:43:82:63:d9:62:2f:1f:75:46:
b6:6f:82:5a:09:bd:01:84:74:54:cc:2f:c0:fd:4d:
40:81:b6:1d:f9:88:ce:09:6f:f3:09:24:10:16:4e:
5e:a6:42:e6:f6:f6:83:1c:33:39:1d:b9:66:42:64:
ae:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:CC:C8:6E:E1:D2:AE:0A:9A:3D:82:B4:E5:EB:9A:88:F2:37:E5:B7
X509v3 Authority Key Identifier:
keyid:5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:67:99:25:58:5d:72:4a:3c:d4:ed:3a:eb:49:27:d4:4c:e2:
d6:ee:8a:99:02:e2:52:ee:58:28:05:c0:8c:c5:3a:77:fd:fb:
d2:40:35:eb:55:e9:4b:9a:de:71:03:3f:6b:0d:1c:81:7a:18:
76:23:ef:de:0e:60:2f:98:d7:c6:a3:28:72:e6:1f:b2:d2:5e:
1c:e2:5d:74:b9:2b:fc:43:19:57:50:fd:4b:32:04:e8:27:a3:
23:51:ae:e1:93:0f:50:68:d6:7e:a8:4b:55:88:7c:53:e9:1a:
b6:c2:8c:fd:ac:80:02:08:49:00:14:1c:0d:56:ed:e1:03:9d:
fe:f7:95:4e:b0:50:a2:09:2c:8b:e7:96:55:10:c1:35:1e:1d:
7a:b6:8f:f5:69:2b:91:92:59:37:13:1a:d4:44:82:48:42:3f:
09:2b:5a:90:d7:94:68:54:fe:08:b0:e2:a5:3e:a2:db:fc:37:
e2:1c:c2:82:2d:1c:26:ce:0b:c1:41:90:b8:d8:f6:ec:b2:b0:
a0:6f:ff:ae:83:2b:2d:5a:39:80:0d:8d:88:f7:dd:d4:7a:d9:
d1:cb:39:db:ea:d2:32:b4:26:4a:99:79:11:50:ad:9f:85:e2:
f3:3a:66:dc:d6:e3:d2:f0:88:c6:e2:4f:cc:b8:94:f6:d2:78:
1b:25:ea:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:43:32 2025 by rpki-client