Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
File: xWYvmAINpON9UO07swICd08pLXo.mft (raw, json)
Hash identifier: kb/KypsDN6i5F5tvJMLfzjoUZeKFwrc0A+9LhkEJomY=
Subject key identifier: 39:D9:05:5C:1C:13:CA:20:9C:49:1C:BE:86:35:70:C7:AB:50:00:D6
Authority key identifier: C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A
Certificate issuer: /CN=c5662f98020da4e37d50ed3bb30202774f292d7a
Certificate serial: 01993D28A08261A64EF74F4C3F3734150B01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
Manifest number: 02D1
Signing time: Fri 12 Sep 2025 09:01:36 +0000
Manifest this update: Fri 12 Sep 2025 09:01:36 +0000
Manifest next update: Sat 13 Sep 2025 09:01:36 +0000
Files and hashes: 1: k3mYd88nhjXgIJYUkD0IW4wB334.roa (hash: ES4bfd/D7kl4HbO8JFVGRKGNEndi7/c5Oef8CAe6LiM=)
2: xWYvmAINpON9UO07swICd08pLXo.crl (hash: 6f8xK6Jn1t0wpgo0eEcTBZ/8ySn8Zioz6VOLJLxFRFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Sep 2025 08:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:3d:28:a0:82:61:a6:4e:f7:4f:4c:3f:37:34:15:0b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5662f98020da4e37d50ed3bb30202774f292d7a
Validity
Not Before: Sep 12 09:01:36 2025 GMT
Not After : Sep 13 09:01:36 2025 GMT
Subject: CN=39d9055c1c13ca209c491cbe863570c7ab5000d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:33:0e:6f:61:d2:ce:43:56:c1:3b:19:54:70:
f9:27:7f:60:3a:f7:6a:7f:19:66:61:fa:cc:ea:55:
59:77:e9:2d:d6:d8:49:3c:60:7d:bc:8d:fa:fa:3e:
97:02:5c:50:cb:40:64:65:3b:8c:d8:7e:e1:fe:27:
ff:bf:a5:bb:63:36:5f:61:ee:8a:f1:fd:b3:5b:25:
30:e6:08:0d:6d:82:08:1d:da:9e:2c:3c:f9:6a:7c:
9d:f4:a3:28:00:90:8e:98:b5:0a:db:93:be:c6:1b:
fb:5b:96:dc:6f:5e:a4:9f:3d:02:3a:c9:ee:6a:b7:
c0:79:71:3c:98:9f:27:b4:5a:4e:92:ad:17:e8:d6:
82:6f:79:51:61:fc:a9:8b:d7:c4:95:f4:20:d8:fd:
12:b0:d6:f7:7c:fc:73:a1:23:38:27:c1:f3:24:94:
07:a7:fa:cf:59:cc:38:5a:94:81:1d:a5:04:33:01:
c6:94:41:f4:aa:e1:ae:01:ec:e8:38:9e:3e:49:13:
8f:90:f4:95:93:b3:fd:b8:a6:f1:4f:87:33:2c:31:
06:ba:cb:50:25:4e:7e:87:d2:ad:e4:9f:b8:a8:8c:
93:d4:8c:ff:35:95:57:84:f7:45:54:fb:6d:80:64:
12:af:0f:26:a7:b5:12:46:c0:97:d8:c5:32:cb:19:
0f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D9:05:5C:1C:13:CA:20:9C:49:1C:BE:86:35:70:C7:AB:50:00:D6
X509v3 Authority Key Identifier:
keyid:C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:12:7d:52:68:e0:e8:cb:8d:1d:c9:9e:24:d4:96:7c:b6:d3:
13:e2:b6:02:d6:fd:12:4f:7d:18:e4:45:ae:ae:a6:c3:99:eb:
ca:27:af:96:9f:49:81:b8:7f:7f:f7:83:57:cb:ff:5a:36:bd:
a1:b9:60:97:c3:7a:09:f0:f3:ae:b7:b7:0c:86:cd:c4:1b:09:
6c:f0:64:81:5f:3c:eb:6e:a4:14:ea:01:0e:25:6a:b7:d9:80:
6a:cb:e1:2f:f0:13:e8:cb:5c:22:28:69:be:e2:93:29:9f:c7:
ea:01:ee:9c:72:3b:9f:3b:98:07:a8:88:b4:05:69:6a:63:d9:
d1:79:12:5e:d7:5c:97:26:24:5b:97:82:04:e4:63:5d:9d:f6:
c1:42:69:fa:3f:15:79:3c:91:35:eb:6c:22:eb:1f:27:1e:91:
82:01:ea:ba:72:41:e1:d7:7d:b2:bb:c2:e1:ed:d6:c7:8d:cd:
6f:a5:94:48:b3:78:da:af:5f:81:1a:7b:af:2b:20:cd:ed:2d:
e6:9f:fe:d7:9f:bb:b4:ef:75:e9:36:44:64:47:a5:45:a2:07:
47:21:2d:f3:82:58:41:82:ed:d3:12:ad:04:b4:01:4b:5a:a0:
45:47:e9:8d:78:0f:3b:b3:86:82:4a:52:ae:2c:1d:ef:a6:48:
0a:3d:59:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 12 15:40:01 2025 by rpki-client