Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: ftxh9V2JeSI4rgwaRS5EEtvcVtFxr5f8uvKVxzIIvMI=
Subject key identifier: 46:23:9D:0E:6A:DB:41:D0:02:DC:F7:22:95:53:6A:E5:EA:08:D4:36
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 0198730717E2E812D76FFBE731AD05CCE18C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 1011
Signing time: Mon 04 Aug 2025 03:01:41 +0000
Manifest this update: Mon 04 Aug 2025 03:01:41 +0000
Manifest next update: Tue 05 Aug 2025 03:01:41 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: l9Aibo8BbZHsDpLh2z3VAmJRdrXVSerZsRS32yAqsS8=)
2: yQMt2r0-C951BN6h68fRFJDbCC8.roa (hash: tYqh+1wBm4KwmsyhvHbFDKO/UGyJb2eTnTj9n8iYekw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:07:17:e2:e8:12:d7:6f:fb:e7:31:ad:05:cc:e1:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Aug 4 03:01:41 2025 GMT
Not After : Aug 5 03:01:41 2025 GMT
Subject: CN=46239d0e6adb41d002dcf72295536ae5ea08d436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:af:30:b5:61:da:0e:97:bf:94:c6:39:03:93:
bf:65:dd:bc:6f:98:52:8f:8c:b5:87:79:f8:62:56:
94:98:ea:fb:b1:11:ed:75:f5:2e:2f:e8:99:36:5e:
bc:92:27:f2:a4:fd:5a:ee:14:01:f2:7c:23:56:e2:
b5:d6:13:41:e1:0d:10:0b:02:1d:bd:81:ae:33:be:
5e:eb:5c:74:99:06:17:51:44:67:12:61:36:ef:94:
52:a2:ac:a5:5b:7f:2e:4c:1c:f2:18:75:59:0b:ba:
a5:19:a1:a5:c4:e3:69:24:75:10:88:27:77:72:84:
28:17:e8:93:fc:fa:e0:d4:b9:e0:54:87:f6:07:34:
0f:fd:0e:44:57:48:29:6f:c2:ea:61:d4:e6:0a:ca:
bc:c8:89:ce:a1:ae:2f:b5:19:e0:c1:74:f3:0c:bf:
2a:62:41:c1:1e:69:93:f6:2a:1e:ac:4a:5d:22:28:
57:e7:be:ae:f9:f3:bc:47:97:07:c4:52:c4:60:1c:
b1:24:a0:4a:d7:6c:57:a8:0d:d3:fd:86:f0:d0:22:
9c:a0:b0:79:d5:1a:2a:f4:95:5d:74:13:b3:3c:3a:
7b:63:1e:0d:9f:82:df:73:aa:3f:35:07:57:7f:49:
99:76:f7:44:dd:c0:8f:9b:07:d5:62:c2:7e:05:55:
d2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:23:9D:0E:6A:DB:41:D0:02:DC:F7:22:95:53:6A:E5:EA:08:D4:36
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:64:7c:d6:b2:3a:76:fb:e7:1b:9d:d4:18:71:12:2c:6a:ed:
e7:67:31:9a:a5:04:64:ef:2f:16:0c:79:1d:5f:0a:b8:94:4c:
c7:eb:c7:59:13:52:3d:ff:82:ab:d1:ee:44:b9:da:2c:94:7d:
27:68:ff:a9:92:77:a7:b0:e9:dd:ca:90:ed:a3:43:31:34:bc:
b9:00:f0:63:4e:cc:57:0b:2c:4f:98:76:c5:89:11:6f:a2:4e:
c9:66:09:dd:5f:ad:84:ec:a4:5a:57:55:bb:08:af:e6:28:c1:
8f:d0:53:02:21:8d:c5:f5:00:4f:ff:b6:fa:d7:ed:b4:7a:01:
e0:70:8a:37:c5:9c:82:fa:c7:6e:03:ce:9d:4d:79:87:ea:0d:
e9:29:3f:25:63:02:f5:18:2d:39:f8:d5:d3:93:21:fd:aa:aa:
bb:98:a5:59:35:91:85:54:a4:79:a4:43:e6:bc:45:3e:db:7e:
5a:58:6d:81:c8:7b:a2:60:be:62:f4:d5:a3:16:8e:ef:cf:d2:
10:1b:e1:a0:de:f1:06:22:b7:4a:14:2a:23:c1:33:cc:f0:ab:
7e:b7:76:bf:a5:27:bb:ac:4c:db:34:f8:05:1f:2c:b3:96:af:
76:04:17:da:a1:ae:34:2b:8f:c4:00:a8:fe:45:07:20:0b:2f:
0c:aa:6c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:12:04 2025 by rpki-client