Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
File: xaL0JAfyHJ12kPsw_YzbK_320DA.mft (raw, json)
Hash identifier: Gj/xDyyC4qVZnnz2oj1QSo5OSczuPYmf/uiNfsyCDuI=
Subject key identifier: 99:D4:C3:F4:5C:01:F5:19:0A:9A:8F:91:82:57:1E:4C:FF:78:B1:F5
Authority key identifier: C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
Certificate issuer: /CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Certificate serial: 01988BEA023C69ABD2BFDFEC51F8E3DBD066
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
Manifest number: 1636
Signing time: Fri 08 Aug 2025 23:00:25 +0000
Manifest this update: Fri 08 Aug 2025 23:00:25 +0000
Manifest next update: Sat 09 Aug 2025 23:00:25 +0000
Files and hashes: 1: kvgwT2CIxiAz0KGy17PsocByagw.roa (hash: uswWYZe8p+8Gmx/n8zkQaGQ6Q2+Rru2JGoDveoK/xUw=)
2: xaL0JAfyHJ12kPsw_YzbK_320DA.crl (hash: 6up97YwnWwBRKdWFW08FHXHGlERBXStZ/bvEDptJ2b0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:02:3c:69:ab:d2:bf:df:ec:51:f8:e3:db:d0:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Validity
Not Before: Aug 8 23:00:25 2025 GMT
Not After : Aug 9 23:00:25 2025 GMT
Subject: CN=99d4c3f45c01f5190a9a8f9182571e4cff78b1f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:bb:b6:cb:40:ae:76:92:11:73:cb:0d:c7:
92:12:58:b8:f6:79:52:b9:8d:0c:d2:a3:f7:0a:19:
73:dd:cd:e8:71:35:c6:fd:47:a3:a7:96:e3:ec:38:
89:fc:6c:99:82:c9:e3:91:89:78:ee:3f:ae:cc:4a:
99:60:10:0b:af:24:3c:8c:cc:a3:5f:b8:f3:d3:26:
d9:25:27:2b:ff:60:9a:1c:02:ca:7a:35:e7:c7:8d:
c3:80:13:0d:de:09:b1:1a:49:08:f1:2e:47:a5:04:
b3:f0:ce:70:71:30:77:bd:f3:f3:9c:e4:9c:fd:ce:
18:9c:03:74:f7:89:bc:1e:2a:27:87:cb:b1:dc:23:
58:80:69:f0:73:f4:3b:26:78:54:11:86:83:d5:c5:
f8:0f:66:14:d2:a6:cc:c9:3d:4e:be:06:3e:c9:32:
5b:91:73:b7:4c:b9:c1:62:ee:ff:0f:88:cd:1d:ef:
34:1c:a9:0c:a2:91:b9:5f:5f:5e:ad:a8:48:c5:39:
f0:e2:e9:b3:d3:f2:fa:0f:57:af:f9:21:49:f1:53:
4b:77:34:68:72:f9:09:65:a3:e8:36:f1:f0:0f:0e:
67:6e:29:40:87:e6:2a:8f:2f:34:83:bc:79:f8:1a:
55:03:37:22:9c:05:72:bb:e9:73:3d:ad:ff:a7:bf:
e0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D4:C3:F4:5C:01:F5:19:0A:9A:8F:91:82:57:1E:4C:FF:78:B1:F5
X509v3 Authority Key Identifier:
keyid:C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:de:18:d5:7d:0e:7e:a3:7b:d9:eb:17:ec:b0:d5:38:71:24:
20:07:78:4d:d5:cd:71:c6:68:35:c9:27:99:38:24:a5:09:67:
45:3e:88:4d:f6:92:83:a6:9a:78:52:36:3c:a0:8d:48:84:66:
8c:cf:05:61:11:a6:57:ae:82:cf:c5:cd:46:2d:a3:c7:9a:9f:
5a:9b:d3:98:46:ca:c4:54:0a:4f:53:2d:92:a5:f9:68:30:d8:
e7:72:5e:d0:31:81:40:80:27:aa:cc:bf:c2:86:51:ec:f2:02:
34:98:84:ab:8e:39:69:90:e3:3a:3d:45:cd:83:47:8f:62:d6:
4d:cb:88:fd:02:74:06:34:8e:85:b9:03:d8:23:f3:78:3c:0a:
78:63:15:cf:5d:e3:1c:1b:82:28:f6:b4:27:af:af:1f:ce:02:
22:ec:56:36:a1:3d:0c:d6:d8:7a:0f:a8:77:e8:f0:14:fb:d7:
27:39:0d:e8:70:de:14:06:67:3d:82:f9:ec:8f:5a:02:ae:41:
26:48:83:67:36:46:91:b2:e2:81:a3:c9:93:e7:19:4d:fe:6b:
ce:1f:79:61:90:fe:a5:da:60:96:08:91:cd:1e:25:0e:2b:2a:
9b:fd:fe:e4:74:34:b3:03:42:29:bf:e2:fb:b5:1e:f2:8e:7f:
32:3e:dc:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:01:05 2025 by rpki-client