Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
File: xHC41L-HFAS8pTx3gVME7y6k4co.mft (raw, json)
Hash identifier: dxXl8L8bcRDUFnbnIlwnzr6K8rGNTnQbv3Vqd5VJJZY=
Subject key identifier: 8A:AC:1B:A8:2B:9B:AB:BB:4B:42:88:39:97:EA:77:BD:66:22:3A:6F
Authority key identifier: C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
Certificate issuer: /CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Certificate serial: 019917D16ABDDAE78A61376C0650884069D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
Manifest number: 51
Signing time: Fri 05 Sep 2025 03:00:24 +0000
Manifest this update: Fri 05 Sep 2025 03:00:24 +0000
Manifest next update: Sat 06 Sep 2025 03:00:24 +0000
Files and hashes: 1: N1QJr3d4xPAL0pWw7bMpfGQLYDw.roa (hash: bdncW/PZlPA4ydR5a6GdEoycfKMOIvrr26MW7cKXUvM=)
2: xHC41L-HFAS8pTx3gVME7y6k4co.crl (hash: AOnNOadSQas5FyYnjHTqV4RALwBdoQfHbxmQU54HCsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:d1:6a:bd:da:e7:8a:61:37:6c:06:50:88:40:69:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Validity
Not Before: Sep 5 03:00:24 2025 GMT
Not After : Sep 6 03:00:24 2025 GMT
Subject: CN=8aac1ba82b9babbb4b42883997ea77bd66223a6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:24:1e:cf:34:be:92:53:44:66:6f:4f:52:4a:
ef:6f:ee:5b:b2:13:60:55:eb:95:d4:59:28:a9:f0:
3d:23:68:5f:d8:8f:84:74:2e:45:d3:23:a8:17:d7:
00:19:96:8e:66:10:12:78:ae:67:0e:fa:c5:43:28:
85:f7:4a:e5:da:ee:22:c2:f4:31:c1:02:bb:79:10:
be:11:e8:be:00:eb:e3:71:a7:f2:3a:3e:28:bc:7d:
91:01:11:8c:5d:28:1a:c7:0d:e4:2a:62:e4:98:19:
76:e3:99:68:72:b9:eb:58:75:21:c8:27:8e:07:0e:
07:8d:5c:17:a0:7b:29:bf:67:18:e3:83:2c:6c:53:
18:28:0d:0a:07:00:47:fa:ca:b1:89:ce:38:78:97:
da:d9:8b:a9:fb:44:67:f9:6d:7b:75:99:e7:fd:9c:
ab:38:d6:05:b5:b0:f4:fa:87:36:b8:52:45:44:31:
38:50:32:01:b4:9b:4f:0e:03:9a:0e:75:61:d8:5c:
7a:f4:a2:f4:09:ea:db:e4:be:e2:d6:b7:8e:e1:50:
e3:0e:c1:47:a4:f4:c0:46:ee:c9:dd:2c:9a:a4:b9:
a8:f7:f6:03:62:f0:91:84:34:f1:26:3f:61:b0:5a:
95:50:ff:d0:89:9b:46:2c:e7:e7:07:0f:50:66:14:
d8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:AC:1B:A8:2B:9B:AB:BB:4B:42:88:39:97:EA:77:BD:66:22:3A:6F
X509v3 Authority Key Identifier:
keyid:C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:7e:99:c8:9e:76:83:0a:7b:08:4c:be:80:98:5a:ad:89:68:
5e:a4:74:3f:6f:3e:da:2a:3e:d2:f4:5d:e1:2c:37:6f:12:a9:
cb:35:53:b7:f9:37:9c:c5:39:9e:dd:0a:07:c8:01:b1:50:7c:
5e:f8:7d:32:73:a5:f9:8c:a5:dd:73:77:88:cc:c6:ce:88:94:
bb:d3:db:d7:06:95:1c:b6:eb:87:97:67:d1:43:8e:1c:2a:00:
24:cb:09:23:d2:d9:57:10:1a:61:0e:1f:e9:34:fe:af:57:00:
f0:03:1f:9b:f7:3c:3e:a0:a0:96:ec:fa:11:c9:2c:1d:ac:61:
d9:2a:e5:a7:8d:36:94:ac:d2:62:c1:d0:8d:75:08:31:18:79:
16:e7:62:7a:fe:88:66:ac:de:ea:b3:f0:76:65:44:f5:b7:6e:
d2:80:b6:ee:94:85:d4:44:bf:33:37:33:ad:18:cc:6e:cf:95:
f4:6e:66:ff:fb:5a:08:3f:39:3e:9d:64:83:16:91:03:61:89:
26:fa:23:3e:14:67:a8:40:f4:05:7a:43:af:1e:9c:6a:3a:b3:
b9:1d:22:f1:3e:f6:3c:67:ec:33:e4:0c:39:0d:a3:8b:c4:e5:
39:d7:9e:92:4e:0e:77:8f:ec:a6:76:c1:c9:df:3d:ca:29:9e:
3c:6f:09:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:20 2025 by rpki-client