Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
File: XM97P9h86bzpn5ALZBmdYGvxYGk.mft (raw, json)
Hash identifier: T8iVf4mlOr32OViNTXjsc5ZZY9qKqgCbRhArDgKLBlk=
Subject key identifier: 37:66:8B:14:3E:FC:B6:D0:89:7B:38:C2:87:08:FB:EB:55:2B:BA:93
Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Certificate serial: 019874F52F5BF8E1F643AA77DA3F613E65B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
Manifest number: 15AA
Signing time: Mon 04 Aug 2025 12:01:22 +0000
Manifest this update: Mon 04 Aug 2025 12:01:22 +0000
Manifest next update: Tue 05 Aug 2025 12:01:22 +0000
Files and hashes: 1: KOB0vwmJ7cfgZ_1WOb_Xx7LqG6U.roa (hash: a7bo8HXeX2LyPkuCveHxDVKdqnbGHzPDqS6LymzXHUs=)
2: XM97P9h86bzpn5ALZBmdYGvxYGk.crl (hash: UCGlA+/3FxfKo4b3C4+0W18laLL6dJzF10mvMliBo1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f5:2f:5b:f8:e1:f6:43:aa:77:da:3f:61:3e:65:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Validity
Not Before: Aug 4 12:01:22 2025 GMT
Not After : Aug 5 12:01:22 2025 GMT
Subject: CN=37668b143efcb6d0897b38c28708fbeb552bba93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a2:3e:af:3a:df:7a:c5:19:fd:67:16:6d:50:
19:92:9f:33:83:4e:66:8f:bc:00:b2:42:25:86:65:
d7:be:ea:90:08:e5:ff:3f:0d:07:d8:b6:e1:bf:b1:
40:7a:5d:d8:69:ea:1b:fc:a5:5a:a0:e2:42:e6:63:
66:de:7e:8a:16:80:10:d8:fe:06:a6:20:bd:a8:9d:
44:e2:76:c5:4c:cf:2c:93:0f:f9:20:7e:3c:6e:31:
c3:5e:49:01:41:ba:36:61:15:d5:75:7e:53:3c:9e:
eb:01:dc:5f:04:40:cb:77:6b:cd:24:79:2d:82:ec:
af:8b:72:90:02:9c:95:78:14:2e:4b:2b:01:0a:35:
90:13:f0:90:1f:2e:4b:80:e5:1e:1b:2b:39:cd:ec:
fd:44:22:32:10:5a:e3:30:6d:01:d7:b6:a0:79:75:
ff:59:f7:66:cf:84:10:8a:79:9f:4f:a4:ea:8a:da:
da:f2:14:f5:7d:6c:25:9f:47:34:be:ef:f8:d0:a3:
29:98:1c:73:7d:e1:5d:11:c2:0f:a4:42:72:4a:00:
66:b9:90:7c:34:e4:8c:b8:68:66:7e:9f:88:c9:5f:
9c:05:36:4a:32:a5:85:b4:48:dd:ab:16:63:68:58:
8a:cf:93:48:41:5b:c1:c6:b5:f4:aa:57:16:d4:3d:
0f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:66:8B:14:3E:FC:B6:D0:89:7B:38:C2:87:08:FB:EB:55:2B:BA:93
X509v3 Authority Key Identifier:
keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:0a:f0:b1:e0:b0:4f:2f:e6:e4:10:14:61:40:f9:84:78:90:
4c:86:13:65:8d:fa:11:08:c5:53:47:e8:d0:72:9c:4d:70:e2:
34:88:95:1f:4f:52:2d:78:05:45:d2:f5:29:4d:27:e8:a5:16:
47:34:31:d9:85:99:f5:f7:8c:89:43:9b:f2:dc:15:5e:12:90:
76:d6:0c:15:6f:70:3a:2b:45:64:b0:15:ad:b2:8f:6e:f9:87:
16:1b:d4:e6:1e:d6:aa:c6:b8:a4:14:d6:84:45:b1:d8:f0:85:
1f:d6:27:20:6a:fe:5e:20:d7:41:ca:e0:48:48:ab:36:3b:d3:
98:34:03:a1:46:19:6e:6d:51:59:0b:8d:62:af:70:10:78:a3:
c0:4d:8c:58:91:75:71:d3:ea:49:2b:86:8a:ec:f6:c4:95:a2:
7b:a7:11:55:de:ca:3b:c4:58:96:6a:48:b0:e4:f7:02:cc:ac:
97:6c:bb:c8:b4:e2:9c:a1:9f:30:4e:0a:aa:32:ed:f9:cf:35:
65:c6:58:9d:4d:3b:c5:4f:e3:8d:76:3b:79:1e:93:ed:11:1f:
eb:8b:77:7f:d9:37:a7:5e:e1:f7:0a:67:3f:9a:db:67:41:5c:
1a:a3:04:22:e3:59:55:09:e2:55:84:1a:fc:09:07:08:d9:09:
97:9f:8e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:37:25 2025 by rpki-client