Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: mXs+ggBFgwnK28ISslS2KtqQBDH2YUfd1odjpHGJTps=
Subject key identifier: B0:BC:10:7C:D8:A0:4E:CD:04:0F:A0:B5:3A:AF:B7:62:5F:3C:68:68
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 01987D8AF3F42CDA14A42AC355BA9DD5517D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 1360
Signing time: Wed 06 Aug 2025 04:01:54 +0000
Manifest this update: Wed 06 Aug 2025 04:01:54 +0000
Manifest next update: Thu 07 Aug 2025 04:01:54 +0000
Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: Q9EGgYqf2QxZO0b+6SN+UfJm08BcdHd63hyZvEzwWr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8a:f3:f4:2c:da:14:a4:2a:c3:55:ba:9d:d5:51:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Aug 6 04:01:54 2025 GMT
Not After : Aug 7 04:01:54 2025 GMT
Subject: CN=b0bc107cd8a04ecd040fa0b53aafb7625f3c6868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b8:46:3d:b4:d6:65:d0:dc:23:f6:d9:b5:a1:
30:ef:b3:85:d4:e9:d8:bc:39:bf:3a:ff:05:f6:9e:
07:d8:96:d9:6e:b2:d9:9d:52:85:5a:88:1d:2f:d8:
a8:bc:a8:bf:bd:05:8b:5c:69:5c:64:ee:13:49:f4:
70:c8:fc:5c:b7:f2:d1:ff:1a:74:b2:2f:77:79:ed:
6f:a1:7c:cc:a5:20:ed:a4:2b:a6:0a:17:a4:36:e9:
01:e7:d2:e5:a9:08:b0:4e:c2:18:af:8d:fd:26:cb:
15:bc:8b:c9:fc:65:13:c7:d6:46:54:13:ce:f0:4c:
cd:d2:37:1c:32:08:e3:2c:1f:78:bf:f1:cb:53:03:
eb:c5:66:df:bb:b8:64:fb:40:f2:76:60:57:f2:60:
7f:2d:f6:11:db:8e:4a:b3:88:52:19:93:7f:a2:7c:
40:55:05:8a:f6:e2:cd:43:07:c1:4e:ab:3f:89:fa:
3e:27:33:12:11:de:81:ac:2f:55:bd:29:a3:47:f9:
e1:cf:0d:d0:da:4e:81:e0:d4:10:3c:61:4a:a2:b2:
4f:48:d3:a7:92:eb:a1:24:ac:6c:51:a8:00:73:9f:
78:c2:62:08:de:0e:e1:4b:f2:9e:02:45:71:5c:94:
d1:5e:ec:88:4f:04:30:0a:57:95:84:37:ff:22:63:
ec:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BC:10:7C:D8:A0:4E:CD:04:0F:A0:B5:3A:AF:B7:62:5F:3C:68:68
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e1:fa:85:bf:36:1c:55:40:32:b1:11:32:66:0c:69:d1:a2:
7f:34:0e:7e:da:1c:c3:bb:0a:8b:9c:0f:dc:e7:71:a7:f2:4a:
9c:75:90:63:f1:0d:8c:20:a4:97:90:37:38:64:d2:7d:f1:31:
b9:d6:3a:96:02:56:01:ad:b5:d1:5a:44:c2:b0:9a:1d:9f:74:
6b:27:fc:bc:00:ed:ef:d9:53:c1:c3:12:b8:3f:5f:62:fb:2e:
e8:09:5a:46:66:8a:3f:38:0f:7d:a3:aa:22:84:be:08:7e:d9:
f7:d5:36:e3:e8:68:80:00:69:79:9e:f4:e3:e7:7e:7d:59:83:
6f:a9:ec:3e:49:f1:e0:c3:8d:c6:9b:bb:fb:21:ff:b8:6a:7a:
08:31:2e:f5:74:61:9c:5a:a5:24:79:f0:20:7b:db:cc:70:f3:
4e:e6:05:41:cd:87:20:8f:61:a8:d1:21:a0:e1:ba:41:e8:71:
8c:fa:8a:e2:75:ee:5b:9b:51:ff:2e:eb:1b:c5:c7:c0:7c:8d:
75:18:39:61:42:35:0c:0d:64:bf:65:af:c1:e2:db:28:af:28:
64:51:aa:7a:f3:0a:8c:cc:7f:03:4d:9f:40:19:db:bb:69:d4:
03:9c:ca:59:66:d4:f0:06:3b:47:6d:79:46:24:d6:5f:c8:3d:
b3:ee:6c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:34:13 2025 by rpki-client