Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
File: 9XpIEqFZ72qekpcudXKtZi1yIVo.mft (raw, json)
Hash identifier: S4HQ0t4J++8Lt5VfmjnamOfnCJAHp3hEVPI+OVixY2M=
Subject key identifier: 4C:76:E5:B2:2F:D5:BC:EB:5C:D5:77:CC:22:7B:96:0D:16:A1:36:B0
Authority key identifier: F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A
Certificate issuer: /CN=f57a4812a159ef6a9e92972e7572ad662d72215a
Certificate serial: 0199221EEEAB980D0ED204435D9EDD8023CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
Manifest number: 0F5B
Signing time: Sun 07 Sep 2025 03:01:16 +0000
Manifest this update: Sun 07 Sep 2025 03:01:16 +0000
Manifest next update: Mon 08 Sep 2025 03:01:16 +0000
Files and hashes: 1: 7acYWsAJZpZTXAZkTCieKB5Iye0.roa (hash: W43abY/DYINHB9U2ZL4mneWjUqq5E+pa6uOW1wDs2Ag=)
2: 9XpIEqFZ72qekpcudXKtZi1yIVo.crl (hash: kbV1fQZQKHjUcWn+8jwgjptlosaalysozcGRX36NwGc=)
3: Wwn9-ZCeqmzjX68bfgDgANWQIBU.roa (hash: SXq1+cMpW/SHgqnUXdFiB1yUFLsr835szRqOWcz8MK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:ee:ab:98:0d:0e:d2:04:43:5d:9e:dd:80:23:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f57a4812a159ef6a9e92972e7572ad662d72215a
Validity
Not Before: Sep 7 03:01:16 2025 GMT
Not After : Sep 8 03:01:16 2025 GMT
Subject: CN=4c76e5b22fd5bceb5cd577cc227b960d16a136b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:1b:09:db:3a:87:55:7f:d4:b9:a3:b6:c5:63:
dd:3a:31:5a:d7:47:a5:fb:b4:3f:d2:b4:8a:a3:7b:
20:41:b3:9e:52:f2:f5:4e:53:3b:ee:59:76:dd:f6:
28:ef:16:87:4f:c8:7a:20:ce:9c:b4:f2:1d:80:04:
90:4e:2f:3a:6e:7f:09:3a:ba:7f:85:b1:5d:14:58:
4a:55:65:b1:bf:68:a4:5f:7a:c7:55:15:2b:12:f5:
e4:8f:34:e9:c5:c6:ac:0d:10:49:d7:05:e3:56:e5:
3e:eb:7e:7d:4e:84:46:b6:a8:cc:4b:b8:71:df:1d:
5d:fd:be:4b:07:d8:e5:1c:1d:bf:da:d7:06:f2:08:
12:4e:12:61:5d:7b:bc:bd:0a:a6:5b:69:ac:29:3b:
5d:2a:27:e7:0e:06:dd:2f:94:97:36:12:94:d5:a2:
c9:12:89:11:1d:8c:a6:44:c7:1b:82:8e:fe:57:3f:
8d:54:70:87:ea:b9:ea:cb:b5:12:a5:cb:5d:58:72:
61:74:f2:40:92:cc:3e:29:0a:b3:cc:67:49:fd:7e:
f7:7d:31:a0:57:ec:37:a4:c1:11:bf:28:8b:36:7d:
dd:14:b8:ce:7d:13:e5:4e:3a:1c:e4:74:0d:fb:88:
4a:d4:83:f8:35:d6:0e:7b:15:be:6e:d4:6e:53:02:
2f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:76:E5:B2:2F:D5:BC:EB:5C:D5:77:CC:22:7B:96:0D:16:A1:36:B0
X509v3 Authority Key Identifier:
keyid:F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:87:8b:cc:63:de:7e:bf:01:37:33:35:3f:74:db:28:e8:4c:
bf:e0:45:ca:01:b8:07:3b:d0:13:78:81:74:f1:77:80:72:cb:
b5:1c:95:31:e8:f6:d8:2f:14:7c:21:48:c0:5a:5c:9b:d3:76:
f0:f0:8d:f3:60:39:59:dc:a4:12:60:5c:bd:86:c8:b1:39:da:
49:d2:78:7f:4a:2c:4d:c5:0e:d2:56:f8:be:c1:1d:ee:25:c5:
9c:03:07:ff:eb:46:ac:71:5f:91:b3:a8:c4:e9:bb:70:07:41:
a7:4d:15:dc:3b:1c:d6:70:20:7d:d4:4c:45:16:12:16:b2:25:
f6:2d:49:ed:96:03:96:ab:6f:8e:74:fc:10:ea:0e:de:11:fb:
99:73:57:e0:54:7a:38:3c:b9:72:39:ba:57:56:9d:a1:3d:44:
e1:f4:6f:84:0b:be:db:71:94:6f:c8:e4:d4:25:c4:b3:9b:ac:
2d:87:18:db:cd:6f:77:41:b6:ff:44:cf:be:59:e1:44:0e:74:
31:3d:6e:18:ab:a8:02:a5:49:f0:a6:ec:89:e6:8e:36:d6:dc:
38:8b:34:31:01:25:d2:6b:aa:fe:bf:a9:e6:d9:7b:18:cc:fb:
85:ea:8b:51:87:ff:10:84:a5:3f:13:d2:d1:12:03:af:4d:b3:
01:d2:6c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:23:10 2025 by rpki-client