Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
File: xFyYQwiFYolxMHxZtc8kFoIQI3g.mft (raw, json)
Hash identifier: en42/mQI4I4QmN0M6sLaVpMd3LygPQnfpll7g4Ug950=
Subject key identifier: 6C:98:3F:BB:3B:F5:B8:FB:16:5B:E3:C4:5A:D5:39:A8:00:C5:2E:12
Authority key identifier: C4:5C:98:43:08:85:62:89:71:30:7C:59:B5:CF:24:16:82:10:23:78
Certificate issuer: /CN=c45c98430885628971307c59b5cf241682102378
Certificate serial: 0199221E23205350D6E7DEE0700EEF31CACE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 03:00:24 +0000
Manifest this update: Sun 07 Sep 2025 03:00:24 +0000
Manifest next update: Mon 08 Sep 2025 03:00:24 +0000
Files and hashes: 1: jvr-TtmshyO-21Athyko7-oCA0g.roa (hash: YbFNgrbQ4nYeYFpzPZPmunVsALPP8JY0whWvWBRLdqk=)
2: xFyYQwiFYolxMHxZtc8kFoIQI3g.crl (hash: mLH6DUd6xGZ2aLX8CJ8WRBUCTmi+BeyaCvcm6vsPCZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:23:20:53:50:d6:e7:de:e0:70:0e:ef:31:ca:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c45c98430885628971307c59b5cf241682102378
Validity
Not Before: Sep 7 03:00:24 2025 GMT
Not After : Sep 8 03:00:24 2025 GMT
Subject: CN=6c983fbb3bf5b8fb165be3c45ad539a800c52e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:24:5c:47:f5:94:9b:f5:4a:fe:eb:5c:f3:d5:
d4:91:18:b3:80:42:bc:53:3a:ad:d6:71:d0:df:b2:
d4:d8:0d:9d:c6:ba:a0:4b:b2:71:d9:ea:df:52:41:
94:84:c5:6f:30:9f:9f:c8:e7:23:af:3f:ce:e5:1a:
f6:f6:63:ab:3d:70:f6:a5:2e:38:ce:ba:82:23:1e:
e2:30:23:1f:32:b1:32:7c:92:86:7b:65:e1:a2:68:
2f:e7:74:6d:e1:fb:7c:f6:cf:e6:f5:54:e1:f2:9d:
93:f0:c4:1a:49:81:a9:b8:e8:a2:8b:c2:04:d4:96:
49:5b:fd:5d:1f:b3:53:13:37:f4:d1:3c:a8:03:8b:
86:91:a0:fa:e8:0b:ab:36:d3:13:63:e3:8a:48:cb:
15:f4:4a:8f:b7:a8:d5:87:f6:69:a7:fb:6b:fa:0d:
0a:67:ce:92:5b:56:56:73:11:cb:a2:54:f9:3a:dd:
2c:c5:72:67:44:dc:1c:80:fd:f5:b6:62:10:a8:73:
9f:71:61:d9:71:13:25:09:ec:f5:ce:fb:d5:dc:0a:
3a:99:90:fa:29:0f:f5:c9:d4:37:b8:35:b9:6c:75:
53:0c:40:33:37:a1:91:89:63:af:31:16:49:13:e8:
33:de:be:22:de:09:e0:0b:cf:8f:66:31:8c:f7:4d:
c7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:98:3F:BB:3B:F5:B8:FB:16:5B:E3:C4:5A:D5:39:A8:00:C5:2E:12
X509v3 Authority Key Identifier:
keyid:C4:5C:98:43:08:85:62:89:71:30:7C:59:B5:CF:24:16:82:10:23:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xFyYQwiFYolxMHxZtc8kFoIQI3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/307c33-38a7-4fda-9a08-9abdca39d4f7/1/xFyYQwiFYolxMHxZtc8kFoIQI3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:7c:c8:35:e3:0f:e9:64:f0:a9:4c:24:ad:90:68:2e:12:2f:
39:22:8b:1f:77:60:01:e9:df:d0:af:55:56:28:1a:51:b9:59:
e0:5d:5f:fc:42:7b:d9:ef:ce:61:42:5b:7a:e4:3e:28:d0:72:
68:ad:43:ae:49:94:3b:08:7b:ba:09:02:55:ef:da:13:01:f5:
50:28:6c:08:6a:5b:c6:b8:b5:53:19:f0:84:72:50:12:75:3c:
9b:8d:9b:27:ef:a0:46:5e:da:a1:ab:ab:59:46:4c:25:c3:09:
5f:1f:af:cf:7a:8e:a6:97:94:ac:45:3d:af:f6:b1:b5:f3:31:
ce:a1:0a:6e:86:dc:b3:af:0a:e8:c8:26:bc:1a:45:8f:2f:75:
2d:b5:25:e2:29:9d:a7:bf:2a:7b:87:d9:88:e6:f8:9e:7f:24:
b2:a6:db:48:0b:bd:d3:95:28:7c:b9:4d:36:94:3e:0e:4d:37:
7c:42:f9:1a:25:01:8d:01:ed:af:66:5d:89:b0:b8:ec:70:e8:
ef:e6:6c:03:57:8f:6c:2d:05:1f:87:11:51:2b:6d:14:a7:90:
92:16:f8:b3:c2:e9:a5:db:ad:f7:ad:b3:6f:17:45:6e:06:47:
37:8e:d8:c2:98:fd:9d:ef:64:ef:52:06:10:89:e6:fb:6b:be:
f3:76:23:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:45 2025 by rpki-client