Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
File: Xo0HtF99gxJMn4wPrAO-wCRos34.mft (raw, json)
Hash identifier: F+HhhGITaDmd9bge5vYymyJ6w17J5gRS95codEwukkg=
Subject key identifier: 5E:37:BE:9A:42:8A:3A:77:B3:60:0D:42:18:72:A3:33:89:FD:23:B1
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 019A4DAAEE1284F9A10FAF686C04B52D002A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
Manifest number: 1725
Signing time: Tue 04 Nov 2025 07:00:38 +0000
Manifest this update: Tue 04 Nov 2025 07:00:38 +0000
Manifest next update: Wed 05 Nov 2025 07:00:38 +0000
Files and hashes: 1: 42NnB3jW5n3RbWWrHMDd_7NubAY.roa (hash: bZyySLXxgMQfpoBtEuXSmgHgMgLKQxBjV3IqMenXg0E=)
2: EuMIVvtjfwcw4H_1qN_NTTYxtB0.roa (hash: GstL7gwAEgcyBOR5WEEQ3UJ45LkAklqubcGaSv86PEM=)
3: U3GEel-_AheBYgIYIVYL9mt_5dg.roa (hash: qjeuuOD21NigMG6GkIxT7OwP2vU0izG4cg6tV2NDSPY=)
4: Xo0HtF99gxJMn4wPrAO-wCRos34.crl (hash: mshr/TxrV1Yw919Cnzs0ExzQ1ySh4J4CwRd4hBGWX74=)
5: ZvRJrTWQfMOoVK-yV_Cqwkgeu5A.roa (hash: hHz6N7J+wTDqY/Lm+M/7LMn5tnMNWvw100eCFcrE1zM=)
6: hMxFbe2_woNux6m3JkElwux-E5g.roa (hash: nrSIsPwWOsAGq4mrEG8bp4vhnLrScT5iVl2b8ClElOk=)
7: olCZzHEOZSOjj4yqtahX2zJkhMQ.roa (hash: aXtBhSkmw714xAy5wT1PAT7ELEpsc4omuqROu4g4WE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:aa:ee:12:84:f9:a1:0f:af:68:6c:04:b5:2d:00:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Nov 4 07:00:38 2025 GMT
Not After : Nov 5 07:00:38 2025 GMT
Subject: CN=5e37be9a428a3a77b3600d421872a33389fd23b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5b:f3:8c:2c:76:25:32:ac:c0:fa:a3:3c:6e:
fd:69:8f:2b:f4:e1:d3:ed:12:7f:38:8f:92:2b:b5:
cd:4c:d1:0c:a8:4f:ed:89:9c:b2:3c:37:15:db:ef:
47:49:77:32:86:3e:b8:55:91:06:73:7f:df:3e:e3:
9c:79:53:4b:af:e1:2a:c2:be:95:af:01:a8:fa:ee:
2c:23:db:82:50:3a:d0:25:af:76:9a:ec:a7:07:11:
94:d3:d5:23:b1:67:dd:23:5b:04:f1:07:a5:3e:bd:
41:a5:24:de:72:df:8d:26:16:28:78:b4:09:42:af:
86:b9:c5:6e:7d:d7:7b:1d:aa:bf:e3:51:e4:d6:f6:
76:2d:2f:fe:f6:fe:54:a9:8c:5a:27:d4:61:ad:0e:
a4:a0:0c:a1:9f:95:95:c6:da:47:a6:9f:b6:5b:75:
d1:2e:17:67:e7:38:bf:ad:29:d7:1f:b5:6c:ee:c9:
b3:17:cd:f7:2e:ff:59:42:6d:2f:57:4f:4e:e7:ac:
c8:8d:aa:23:f5:31:11:6d:c4:11:a9:d1:96:e0:b8:
0a:ba:85:a7:b0:6b:29:2d:3b:c6:de:32:99:8c:d3:
11:79:ad:bf:78:40:f9:6d:06:8c:0f:d7:9b:da:70:
d4:e9:1f:41:23:c6:95:ba:e9:5f:87:76:42:1c:9c:
dd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:37:BE:9A:42:8A:3A:77:B3:60:0D:42:18:72:A3:33:89:FD:23:B1
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:51:d6:ef:c3:26:5d:54:b9:83:10:74:a9:00:7f:f7:54:cc:
d2:79:59:a4:b5:40:d2:0e:31:6c:5e:e4:a7:d8:a7:8c:9b:68:
4c:5c:65:62:4e:b9:31:98:f2:e0:7e:0b:e5:27:e9:5a:93:5a:
7c:b0:3f:bf:e6:a4:53:df:3e:f1:e1:68:3e:40:45:f6:97:2e:
b6:69:2f:81:24:9a:af:c4:22:f4:7c:b9:3b:fd:f8:71:73:12:
b7:f9:bb:58:9a:58:fb:89:19:af:94:09:82:27:9e:39:62:ee:
06:fe:7a:68:46:c5:5e:ba:5c:03:19:e8:ea:45:33:97:4a:ee:
68:d6:06:4d:c8:49:e7:46:da:43:ea:66:a4:17:8f:72:07:bd:
f8:1d:63:72:ce:c7:39:04:04:12:18:bd:2c:b2:fd:a6:33:2c:
3b:55:9f:e4:2f:36:f8:01:62:c0:8c:20:6d:52:0f:d5:95:d1:
c0:1a:67:b5:5c:3b:e7:2b:fd:d2:14:b2:ba:88:79:4a:71:8e:
5f:8b:d8:59:9b:9c:38:3e:80:52:a7:ff:a4:85:ce:a9:0a:e5:
68:0e:1e:f4:24:c2:bf:1a:3f:19:41:c2:08:df:05:51:50:2a:
82:d6:cd:d5:05:3c:17:3e:a4:93:c5:e2:60:68:f9:a5:c2:9c:
42:dc:f7:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:12 2025 by rpki-client