Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
File: XcYkXKggiZ1-tBQDAsIQQbXbygY.mft (raw, json)
Hash identifier: gM7XXyXBkEB3/hiYpGIHvOXObDtNKYZ99btGlBbzRKI=
Subject key identifier: 34:EA:2F:22:EA:38:D4:79:F0:42:07:74:6C:4C:3C:73:AB:03:32:E4
Authority key identifier: 5D:C6:24:5C:A8:20:89:9D:7E:B4:14:03:02:C2:10:41:B5:DB:CA:06
Certificate issuer: /CN=5dc6245ca820899d7eb4140302c21041b5dbca06
Certificate serial: 019922C33D056D52A3065C85C424217F3DAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
Manifest number: 065C
Signing time: Sun 07 Sep 2025 06:00:44 +0000
Manifest this update: Sun 07 Sep 2025 06:00:44 +0000
Manifest next update: Mon 08 Sep 2025 06:00:44 +0000
Files and hashes: 1: XcYkXKggiZ1-tBQDAsIQQbXbygY.crl (hash: WR8N4rZnZxiDug5xJB1jlYFffgweRfMw+BzCCX4dvr4=)
2: p3q-BDwRqsq597BmScWC04Uizbg.roa (hash: vEfpkI+83ThIFnHcYAP8l+1vWWpuU+kEjWNLTSj4mUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:3d:05:6d:52:a3:06:5c:85:c4:24:21:7f:3d:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc6245ca820899d7eb4140302c21041b5dbca06
Validity
Not Before: Sep 7 06:00:44 2025 GMT
Not After : Sep 8 06:00:44 2025 GMT
Subject: CN=34ea2f22ea38d479f04207746c4c3c73ab0332e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:30:b9:26:f1:39:75:98:27:83:c0:eb:bd:b6:
46:5c:75:ad:4e:7b:d7:3a:ce:30:99:6d:77:af:25:
73:13:41:8f:19:96:c5:00:6b:30:4f:7e:70:cd:32:
77:7f:8c:61:da:8c:0d:17:80:15:3a:d1:8d:3e:d5:
e5:eb:07:20:9a:5b:86:9a:66:28:53:b2:d8:84:a9:
bb:09:2f:d5:5a:4f:6c:1a:6b:d2:1b:92:b6:6e:fd:
a0:6a:5a:6e:01:b5:ca:63:7c:0e:cc:2b:f4:40:68:
46:67:80:62:6d:6e:c2:95:b0:e2:dd:fd:ba:d3:e5:
07:23:35:24:fc:55:3e:01:3e:5e:1b:16:73:96:bb:
1a:5d:55:06:5b:71:b7:07:3b:6d:d9:00:7c:76:0d:
20:7e:a1:96:ed:4f:66:fb:e1:49:e8:de:a7:98:b1:
ab:20:a8:09:ff:7b:7a:bd:46:f3:24:b4:7e:d7:3d:
6f:23:2e:77:3e:96:8b:b8:78:e4:bf:ed:76:14:92:
3c:55:2b:30:97:4e:9f:d8:b2:08:d3:c6:e2:98:e2:
20:ac:61:e2:4a:e4:91:1b:79:0d:08:08:80:e0:35:
03:c8:f1:82:49:f7:10:09:46:35:a4:cc:34:45:08:
50:bb:dd:77:e2:64:ef:62:29:e5:eb:f9:c5:a8:c1:
28:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:EA:2F:22:EA:38:D4:79:F0:42:07:74:6C:4C:3C:73:AB:03:32:E4
X509v3 Authority Key Identifier:
keyid:5D:C6:24:5C:A8:20:89:9D:7E:B4:14:03:02:C2:10:41:B5:DB:CA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcYkXKggiZ1-tBQDAsIQQbXbygY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8a430f-40c5-474b-8fd9-074ed70b4673/1/XcYkXKggiZ1-tBQDAsIQQbXbygY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:35:cc:36:64:dc:c8:bd:00:a1:94:a5:43:ba:d2:cb:31:05:
c9:c3:0c:4c:93:b4:a9:b1:7c:d0:b5:db:1c:96:90:bc:9a:26:
9d:a4:e7:89:51:e1:08:17:af:23:3c:c3:fe:be:40:67:d6:44:
5d:68:f0:04:e7:83:8d:29:69:b2:bb:d1:c9:77:f2:52:51:91:
64:75:25:e3:ce:fc:15:f0:00:9c:47:12:e5:32:c4:87:95:1c:
09:7a:0e:a6:c3:05:9a:e6:7b:27:7b:57:ae:2c:8c:55:63:6b:
7f:44:ef:83:ff:2c:8e:8b:a5:61:91:32:32:c7:da:23:c9:07:
94:b1:3f:1e:39:a3:d5:5a:30:99:df:a8:7b:22:c9:c5:cf:a7:
b7:67:3f:db:47:a2:41:f8:2f:64:02:be:6f:00:50:a7:15:f6:
b1:02:41:57:40:09:4d:61:3f:fa:76:76:34:01:16:2f:b1:19:
38:5b:de:1b:f2:94:f4:bd:08:f4:1c:da:ae:38:72:0c:33:05:
b9:79:a6:13:d8:14:a6:51:70:b1:ae:61:32:35:c1:ad:73:9a:
f3:61:ca:5e:92:c2:5d:c5:66:ea:ce:84:56:db:b0:22:1f:64:
f7:83:33:38:09:21:c5:0e:c2:ed:de:07:88:ad:b1:6f:29:75:
1d:03:41:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:33 2025 by rpki-client