Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
File: x0HESpzVjhJWkGY32TXDGQ9_6xo.mft (raw, json)
Hash identifier: XqdWYDPjhjOa8Q73i9HHsZeMujINzuM1xWFYo7D7rGI=
Subject key identifier: 5A:E3:9A:A4:C8:B8:2F:4B:94:DB:8F:F9:26:48:AF:8D:F8:44:16:CF
Authority key identifier: C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
Certificate issuer: /CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Certificate serial: 019882E7C50481CE534AC20385DEC1F30835
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
Manifest number: 13C0
Signing time: Thu 07 Aug 2025 05:01:23 +0000
Manifest this update: Thu 07 Aug 2025 05:01:23 +0000
Manifest next update: Fri 08 Aug 2025 05:01:23 +0000
Files and hashes: 1: qptSZ2XpOAOxaz7moTgQi3lsLeM.roa (hash: KtrtO/sBSgHAN1gAhTfDKw+KYUTZI/b5RNJ8EjfK/UU=)
2: x0HESpzVjhJWkGY32TXDGQ9_6xo.crl (hash: WDOpWXsj0rxxGjrGTU8QDL7H+dfAvnITWt76yBVJMQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 05:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:e7:c5:04:81:ce:53:4a:c2:03:85:de:c1:f3:08:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Validity
Not Before: Aug 7 05:01:23 2025 GMT
Not After : Aug 8 05:01:23 2025 GMT
Subject: CN=5ae39aa4c8b82f4b94db8ff92648af8df84416cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:cb:86:f3:d2:71:b9:75:c0:6b:18:bc:9d:38:
3f:96:3b:81:a0:b6:0b:06:70:78:3a:b0:e6:aa:b1:
f4:d0:d5:a2:90:ca:59:89:a4:86:3a:5d:b1:10:17:
47:d3:7e:ff:4c:04:3f:74:3b:2c:82:92:cd:5e:0b:
6a:ec:14:6e:f6:b6:10:d7:57:07:8c:e6:b2:fc:51:
b1:04:d0:24:50:36:9f:2b:f2:8c:91:5f:6f:a6:33:
f9:84:ce:66:5a:ab:7e:da:73:87:68:6e:6d:49:1e:
68:15:f6:40:02:c1:02:1c:59:63:ad:98:7a:15:54:
55:78:5b:e2:0d:4c:9f:06:ed:29:17:b4:76:5d:bf:
7d:d0:2a:5c:6a:0f:16:3b:29:1f:ec:5e:96:71:bf:
d7:fc:c4:84:93:bf:e4:c1:08:89:fe:52:a2:86:47:
d1:07:7d:8b:2a:cf:af:15:b5:3b:b7:5b:f7:e4:30:
fc:47:83:95:f3:2d:ed:90:5c:6a:5e:5d:95:d9:c1:
cb:db:6c:c5:66:c8:3a:79:b8:83:c7:88:90:ad:1d:
f3:c0:bf:76:9e:21:84:5d:3c:c9:6d:af:12:81:aa:
aa:72:52:92:3d:23:84:31:a6:73:3c:9c:36:a9:22:
5e:87:ef:1c:f1:6b:25:88:cb:05:72:de:7f:52:97:
14:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E3:9A:A4:C8:B8:2F:4B:94:DB:8F:F9:26:48:AF:8D:F8:44:16:CF
X509v3 Authority Key Identifier:
keyid:C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:e9:a0:df:a1:f0:e4:c5:96:ee:1b:e9:2e:c2:c8:ba:03:71:
a3:e3:8d:c7:af:2f:64:69:ec:2f:1b:b1:bd:ac:be:78:af:06:
6c:26:ad:06:b9:46:67:18:f4:9b:2d:6d:c6:d9:df:16:26:ae:
f2:77:29:c0:19:de:6d:ce:a8:65:a2:21:46:05:fc:14:ab:bc:
4d:60:01:be:39:c0:bf:b8:43:49:8f:30:4d:62:a3:c3:da:1d:
b1:6b:8c:e3:7a:ba:90:fc:79:9e:1d:b0:32:53:6d:70:53:19:
8a:b1:c3:69:ce:80:26:1a:4c:5a:8c:f7:8d:f0:a6:95:80:36:
84:8f:4f:0c:c4:a4:93:08:9d:af:1b:14:25:98:71:f0:13:e1:
a0:3b:91:c2:56:9b:4d:8d:49:17:bf:43:0a:88:88:d9:c4:1b:
c0:cb:97:ac:58:a9:53:87:fe:ed:43:52:4c:69:b5:43:71:0b:
74:bd:54:31:16:17:d6:28:97:2d:e7:c9:b0:e3:a3:78:5b:5c:
1c:23:f4:8c:dc:f8:ba:a4:9c:36:ae:d0:9a:51:6e:4a:a5:2a:
7a:b9:08:c9:a6:92:b4:02:bc:06:02:52:67:46:04:b2:e1:6b:
38:79:10:bc:7e:43:11:13:78:c1:d7:97:07:94:86:29:46:27:
8c:1f:d4:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 11:14:53 2025 by rpki-client