Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
File: XfEaGA3xeZTkitMxhyz9AK2augQ.mft (raw, json)
Hash identifier: 3gIfvZomDUOumBqKY3U340MxnsEpSL2R9M8Qf35of5U=
Subject key identifier: CA:E8:81:F4:18:55:DE:8F:E2:C3:67:E4:B4:5E:41:B2:96:D3:E4:2E
Authority key identifier: 5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
Certificate issuer: /CN=5df11a180df17994e48ad331872cfd00ad9aba04
Certificate serial: 019A4E86A6CE409A7CAECA384ED7AB76F45A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 11:00:38 +0000
Manifest this update: Tue 04 Nov 2025 11:00:38 +0000
Manifest next update: Wed 05 Nov 2025 11:00:38 +0000
Files and hashes: 1: Ncjyog8MF3WbF2yJkOiT3QGNrY0.roa (hash: mac69omVU5l4vKMkEn8yNVakFQh8bBKDgGibhl+5Pew=)
2: XfEaGA3xeZTkitMxhyz9AK2augQ.crl (hash: CIF7AwCSb8chED8hmKEWgFPv+jIcHY/RGgoHcU/pHRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:a6:ce:40:9a:7c:ae:ca:38:4e:d7:ab:76:f4:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df11a180df17994e48ad331872cfd00ad9aba04
Validity
Not Before: Nov 4 11:00:38 2025 GMT
Not After : Nov 5 11:00:38 2025 GMT
Subject: CN=cae881f41855de8fe2c367e4b45e41b296d3e42e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:29:e1:4b:df:8d:15:7d:f4:df:08:5c:21:3e:
2c:d8:7d:c3:99:d3:79:87:50:89:7f:b0:ac:69:8d:
f6:77:e7:26:84:ff:dc:25:3d:89:25:f2:88:cb:7d:
28:39:27:95:9b:0d:52:33:1b:d7:8e:8d:53:1c:9a:
52:96:ea:f2:c0:28:52:49:a1:4e:ec:4d:58:34:3f:
ba:e1:8b:c6:45:87:48:da:ff:9f:69:45:dd:84:4b:
0d:47:a4:40:1f:f9:5c:d1:1b:3f:76:76:5d:e3:c3:
a9:bd:fd:38:dc:94:50:d6:c9:84:06:01:b7:a1:6e:
f8:99:4a:2e:2a:7a:fe:41:0a:5d:f1:77:57:8d:4d:
52:74:a0:de:66:a6:26:8d:0f:64:e5:35:e7:25:4b:
26:8c:79:32:3c:9b:16:39:ee:c8:a6:1a:6a:3d:b7:
47:bb:4e:c7:d5:54:ad:b7:7b:80:20:00:ea:b6:38:
05:ac:88:c0:e4:7a:7d:a4:05:b3:8e:05:43:b6:65:
3b:29:33:be:0f:60:31:f2:f7:e5:dc:39:98:b3:cd:
72:35:9d:9b:9c:67:6d:5c:8b:51:3c:f6:c3:a8:b6:
35:35:04:8e:27:4c:e1:4b:7c:b0:ad:45:81:62:53:
1b:83:4b:ac:18:96:d7:ff:12:8d:a7:43:9d:14:b2:
ae:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E8:81:F4:18:55:DE:8F:E2:C3:67:E4:B4:5E:41:B2:96:D3:E4:2E
X509v3 Authority Key Identifier:
keyid:5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:4a:67:2f:e4:00:00:a0:95:f2:c3:15:d4:26:fa:91:f9:c3:
09:9e:81:97:16:c6:5a:3a:22:1d:2e:c1:0c:a1:20:34:1f:cf:
55:96:3a:8c:87:5a:9f:f6:d8:d1:80:59:9a:b9:7f:e6:39:1f:
55:4d:cb:d3:52:3c:38:9a:c3:54:67:28:75:95:5a:3f:0f:9c:
3b:67:73:57:6a:94:2c:41:af:00:1e:cd:7d:9d:7d:70:51:ac:
25:88:8d:d8:08:e4:cc:d4:d6:94:38:01:91:03:1b:9a:51:cb:
ea:11:6a:15:30:a6:2e:1d:c3:c9:78:96:f3:fe:c4:ce:f4:b6:
4d:2b:dc:61:1c:01:47:ba:49:f6:e0:8b:aa:47:f0:3b:f2:a7:
fc:d0:3e:e5:90:1f:49:82:3e:36:af:22:3c:4f:18:bd:e1:c4:
ec:cf:2d:25:10:ed:19:06:3b:6d:39:ab:97:0b:72:23:c3:9f:
7d:ba:d0:ee:81:3f:cd:39:d1:d3:32:15:1c:4d:cd:e1:7c:7f:
df:df:0a:bf:e5:40:5d:3e:61:e3:96:16:c1:66:4b:82:a6:4d:
7d:7b:da:28:cb:59:3a:cf:1e:c9:6d:12:0e:12:b0:68:97:5f:
e9:4f:2c:e4:a9:c6:41:d2:1b:9e:9e:f9:b5:a7:98:b4:eb:ed:
94:e2:f1:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:33:10 2025 by rpki-client