Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier: m+JzgZv2QBe3NTYG0eRmrUaxZBuuyrJLTU6Phm8rtoM=
Subject key identifier: 8C:C4:F4:FB:CB:A0:CB:59:24:4F:46:AA:29:F7:CB:26:18:72:BF:A9
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer: /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial: 019A326A7D6CB40C24128228270154FF1B97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number: 1553
Signing time: Thu 30 Oct 2025 00:00:30 +0000
Manifest this update: Thu 30 Oct 2025 00:00:30 +0000
Manifest next update: Fri 31 Oct 2025 00:00:30 +0000
Files and hashes: 1: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: nhIOsjU+/v69kd7nEQm36johISeDw4LLMoe1yvbvDxo=)
2: zUVgbIXYeTGVKXvGEymmIIswak0.roa (hash: byi69vgfiULR5t5etKbYt0ap14VdTPxIUc5JBAXpbBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 Oct 2025 00:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:32:6a:7d:6c:b4:0c:24:12:82:28:27:01:54:ff:1b:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Validity
Not Before: Oct 30 00:00:30 2025 GMT
Not After : Oct 31 00:00:30 2025 GMT
Subject: CN=8cc4f4fbcba0cb59244f46aa29f7cb261872bfa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:29:c1:bf:cb:36:06:ba:b7:3f:57:ee:25:63:
15:d9:15:2b:68:41:16:d6:30:14:0b:59:45:62:f1:
be:65:bf:fc:53:97:9b:77:16:63:45:99:ce:f7:d0:
db:9f:9d:d2:01:2a:ac:ca:6b:b4:31:35:43:9c:7e:
97:7d:36:13:af:ed:8e:35:8e:1d:cb:f4:8a:ec:31:
6c:75:70:e8:9b:9c:78:cc:2a:ce:c4:c9:82:2a:20:
c7:ec:c3:b1:25:71:67:bc:e2:e8:b4:11:b2:36:5c:
31:61:d8:64:25:1c:6a:9b:d6:4f:ce:ea:05:41:f6:
9b:33:64:e4:ff:d2:3c:6a:61:00:1c:6d:95:24:dd:
dc:64:c8:b5:5c:bb:67:ce:55:68:58:10:f1:e5:53:
6b:de:bf:b4:18:c8:b4:47:b6:60:fa:e3:31:55:1d:
c6:ae:d6:12:03:37:4a:79:8b:a5:9e:17:eb:2a:72:
2a:98:9c:37:42:f5:f4:41:b6:53:46:21:ae:e1:56:
26:72:af:3e:85:83:d1:01:a4:65:be:53:1a:91:44:
fd:34:b4:d4:3d:2b:63:04:1f:61:32:cf:77:63:bd:
f3:1d:d0:93:a0:f1:ce:c4:f3:93:3b:de:ea:21:26:
fd:ef:f7:df:97:f7:26:84:69:19:fa:90:0b:45:45:
4c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C4:F4:FB:CB:A0:CB:59:24:4F:46:AA:29:F7:CB:26:18:72:BF:A9
X509v3 Authority Key Identifier:
keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:3e:4e:0a:cd:dc:01:ea:47:b8:1e:46:c2:9b:32:1f:f8:56:
48:5f:5b:5d:e9:dd:13:50:62:af:4f:7b:63:33:10:0c:c5:e7:
db:72:57:61:27:83:fe:8e:68:86:f8:10:be:6f:e3:53:5c:bb:
e6:46:71:23:70:3e:88:45:e1:59:36:85:78:20:1f:23:46:c5:
ec:c4:59:55:b3:8c:db:f0:a8:b6:56:22:48:a2:01:31:b2:b8:
7d:12:3f:e4:29:d4:9a:74:2f:7f:98:f2:70:80:a2:0f:fa:e8:
84:7e:5b:72:51:9d:96:78:cf:b7:51:bd:68:13:79:c3:a0:2c:
a1:25:38:7e:c4:35:3a:8d:62:f4:6d:f2:1e:d9:0c:5c:8c:f8:
94:82:e2:93:da:96:e1:33:db:f5:6f:a8:f2:93:57:21:ab:3f:
fb:6e:b1:09:89:2b:d5:1a:09:5c:7b:90:9e:ab:40:05:52:48:
53:8c:2c:4d:9c:7a:5a:c8:b1:59:ed:a9:b3:ec:49:83:a3:76:
52:0d:8d:c1:d1:00:33:2c:c7:52:52:7b:21:8e:a0:ab:a6:02:
42:9f:1c:15:2c:5c:34:29:da:6a:79:69:00:76:13:31:33:9f:
de:50:13:48:79:2b:f4:fc:e2:b2:79:77:fa:33:e6:0a:79:94:
43:c3:fc:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 30 07:35:16 2025 by rpki-client