Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
File: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft (raw, json)
Hash identifier: jiyiiXJbaOK+0vJW09oFdGAkDdWXBeqKk1GL6Fvh4ns=
Subject key identifier: 6B:A1:2E:47:FC:47:F5:AC:12:22:69:33:D9:2B:56:60:50:36:4D:78
Authority key identifier: F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
Certificate issuer: /CN=f970049cba7f39aeed31d65313c7b953f3fda135
Certificate serial: 01992C34FE4A02521020CBFD4D5D4C97831C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
Manifest number: 14A2
Signing time: Tue 09 Sep 2025 02:01:34 +0000
Manifest this update: Tue 09 Sep 2025 02:01:34 +0000
Manifest next update: Wed 10 Sep 2025 02:01:34 +0000
Files and hashes: 1: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl (hash: MnZXQ+w/stZPhE+S+hrPTgu6bpNhpNJPbLdU8i66VlY=)
2: CNq9H2OXEp4278EAIur7EjhdgiM.roa (hash: ezaoiiM4UlLTR0sbj1Fr7oZom9N7jm9fEV33MK67n/k=)
3: LaUurGDUq2o8zKjmdP6EKMhYRRg.roa (hash: PdH/EcQsHTPGDdo5iM9wwav8RGw2qjlgL3N/YSGExz8=)
4: ei-lhbSyA6LHM30pnoTc676sVOk.roa (hash: BJvZcqOLIL3sVAhna5EPTZoiTPtvfxYPfeKNrqGIDHA=)
5: uF3Ipp-IOmC2QxpujNdolHkmlLw.roa (hash: hlYEypQIjtWjQMSDZuN9bDWHcqbDbwOnFZm/mrxdTfU=)
6: vTpbvCLw317pUWZPp8_hDkh88VE.roa (hash: Xc88zcdf1KorCO6RA2gqcBm66DJNRYMneNP18O1Fg04=)
7: zWqY4g9GDyFqazxDI_5X0GVOz5I.roa (hash: nLaxKffxirO/sOKUfN4HpmMrvXxuk0Ijg8zkWA7/b7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:34:fe:4a:02:52:10:20:cb:fd:4d:5d:4c:97:83:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f970049cba7f39aeed31d65313c7b953f3fda135
Validity
Not Before: Sep 9 02:01:34 2025 GMT
Not After : Sep 10 02:01:34 2025 GMT
Subject: CN=6ba12e47fc47f5ac12226933d92b566050364d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:42:3e:6e:ca:aa:5c:0d:4e:79:0a:ee:42:2d:
f3:fb:d9:f5:2a:2c:94:e1:ee:b2:97:58:ba:c6:3b:
bd:30:c0:b6:9b:fc:76:97:11:df:e3:ea:3a:a4:08:
cd:07:08:f8:34:5f:41:6a:b9:32:01:96:30:38:28:
7d:3d:ff:4d:9b:35:af:c9:e7:26:5e:43:5d:f1:53:
7b:e3:85:58:80:2f:c0:ab:94:d4:99:4b:72:50:b4:
7c:82:e2:19:15:0b:d5:25:b2:29:ac:78:90:12:c8:
a8:90:cc:6e:c3:c1:17:42:7d:d0:69:e4:79:d9:8e:
86:5b:b5:25:9e:fb:b3:5f:5e:1d:b3:97:64:59:a6:
5a:16:ff:46:29:53:4f:c5:7e:60:a1:17:4b:d4:bd:
97:03:e5:c7:e5:bd:d5:23:60:ae:99:cb:b9:38:2b:
b3:cb:a8:12:cb:23:af:25:1f:6b:4c:2c:e5:16:5b:
62:8d:ca:61:e3:92:3f:20:15:05:a4:18:0a:32:ab:
f7:ae:c6:c8:40:21:fc:b6:88:87:e0:27:82:f1:37:
7e:75:55:8d:da:fe:9b:7e:b6:d1:6a:5f:33:25:72:
8c:2f:8d:c0:08:c8:71:5a:f4:06:05:34:6b:6b:a5:
81:69:03:b0:cb:59:97:6d:63:5b:7d:eb:02:86:2f:
86:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:A1:2E:47:FC:47:F5:AC:12:22:69:33:D9:2B:56:60:50:36:4D:78
X509v3 Authority Key Identifier:
keyid:F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:02:4c:2b:d8:d9:f5:a3:d5:32:66:bc:d7:08:18:68:9e:89:
71:15:e9:cf:1c:33:97:37:55:eb:42:6b:2d:3a:c0:e9:ea:a4:
55:22:d0:cc:63:04:c6:f7:f2:39:c3:ec:31:86:6a:c9:e9:45:
43:a9:40:6c:d1:b8:b1:d9:af:bd:7f:c7:fc:4a:36:a8:8a:a8:
42:c9:74:0d:e9:d4:23:76:c2:28:0e:96:10:80:0e:fe:a3:a0:
c4:e2:7e:cc:4b:7a:30:b7:3f:91:6c:1b:5d:61:32:0b:d5:8d:
d0:80:89:77:88:3f:9b:f1:bf:8f:07:2b:f5:6a:0e:68:3d:16:
b5:4a:8b:cc:2e:79:f4:23:01:e5:c2:d6:b2:24:d9:c9:42:c5:
d3:ed:43:4d:53:ca:23:52:6a:e6:25:00:86:fd:52:a3:2c:d6:
9d:70:2c:c8:3b:57:f9:85:5f:93:19:ab:1c:2d:2b:cd:d7:33:
c8:2e:5d:7d:f1:bc:ba:8f:f8:06:fb:4a:a8:93:ac:3b:ce:02:
fb:05:a9:88:1f:74:7f:9a:ee:2a:aa:ab:9b:ff:66:af:be:df:
b0:0d:c0:3b:19:cb:01:f1:d4:62:f0:ab:d7:87:03:3f:ce:fc:
f2:14:b5:c3:f2:aa:97:aa:db:72:8d:42:21:13:18:e4:0a:d7:
17:33:05:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 04:12:44 2025 by rpki-client