Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
File: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft (raw, json)
Hash identifier: QteAnYYj6xxDZ/vqW8L8uyR926uQV3jS9lcAuer48Tk=
Subject key identifier: DD:44:E9:52:69:DA:45:26:46:5F:C8:FA:25:3D:27:87:9E:40:CE:33
Authority key identifier: 5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
Certificate issuer: /CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Certificate serial: 01987562EB0A25D4CDB8F3FBC48FA3B3EF5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
Manifest number: 10D5
Signing time: Mon 04 Aug 2025 14:01:13 +0000
Manifest this update: Mon 04 Aug 2025 14:01:13 +0000
Manifest next update: Tue 05 Aug 2025 14:01:13 +0000
Files and hashes: 1: 3Lwgv8G7H1M7aUpcEvNgmowlLx4.roa (hash: mpBdcgU7I+uQ5H1oVCfF7A1oXC3Ul6uCrit0pbGiORo=)
2: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl (hash: cGQbM+pU9SDnKjx3jhqKGfogRWHP+cn9XYwtQD1byoA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:62:eb:0a:25:d4:cd:b8:f3:fb:c4:8f:a3:b3:ef:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Validity
Not Before: Aug 4 14:01:13 2025 GMT
Not After : Aug 5 14:01:13 2025 GMT
Subject: CN=dd44e95269da4526465fc8fa253d27879e40ce33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:77:df:31:24:8d:30:a5:84:88:48:75:9d:1e:
5a:c5:83:d3:ca:fd:7e:36:48:8a:d4:a9:45:b1:68:
6a:9d:71:01:22:04:8f:e3:f1:72:72:9b:14:5f:1a:
80:3b:ef:22:89:70:a9:67:48:32:4a:09:c6:ad:57:
17:8f:c5:eb:14:4e:c9:1e:82:12:d2:6d:e5:24:eb:
1b:16:88:33:a3:e9:fb:5a:c7:c5:ef:a8:5f:fa:e8:
3e:fd:e7:eb:d6:75:27:da:67:e3:9f:0f:b3:37:fc:
0d:4b:13:8c:ce:78:67:f1:7a:dd:a9:cf:95:d6:cb:
3b:83:08:f1:b7:e8:88:1d:ec:a1:0c:3d:5e:22:fb:
59:39:4d:da:68:1b:d3:47:57:8c:46:bf:32:e6:4d:
9e:73:1d:5d:03:01:d6:93:25:3d:54:1a:c9:ed:41:
b7:39:0f:d1:67:cb:3d:ad:ca:20:d4:71:86:61:e7:
fd:95:47:dc:d3:8d:09:ff:c4:cb:e3:51:7a:2d:ca:
fb:64:f7:5e:e0:bd:1f:33:cd:e7:f6:ca:58:99:c1:
15:81:d4:9c:ee:47:53:bf:58:03:42:89:88:18:e2:
a2:53:b3:a9:84:b5:5f:c0:f5:21:1b:b2:96:55:88:
ba:c6:63:9d:af:f9:52:d7:e6:a8:5a:73:3d:6c:4c:
d3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:44:E9:52:69:DA:45:26:46:5F:C8:FA:25:3D:27:87:9E:40:CE:33
X509v3 Authority Key Identifier:
keyid:5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:ef:1f:bf:8f:b1:cc:74:df:b6:04:e8:fd:64:f3:81:78:66:
fe:f3:b2:44:c9:44:af:30:f6:ca:be:16:70:7c:3c:d6:32:0d:
15:e2:08:41:7e:2d:07:34:90:2b:45:40:60:f0:2b:2b:6f:c1:
5d:d0:bd:48:7c:3a:91:01:5f:cc:cf:d6:f0:40:04:fe:b2:1c:
e6:11:86:7b:92:56:98:18:97:08:2d:6d:44:60:2c:ff:f1:ae:
fe:d0:62:df:61:dd:b4:6d:20:21:f7:73:f4:a3:5b:00:e8:85:
db:57:48:cd:9a:4b:d4:a0:e4:c8:21:6e:4c:9e:76:90:33:ff:
dd:f3:85:fd:6a:eb:a2:1a:37:54:a1:1b:89:7a:0f:b2:15:2e:
f1:19:ce:38:f6:54:e7:df:f8:58:c1:d8:68:4d:2e:1f:9c:62:
c7:50:36:9d:af:00:8d:cf:30:76:9b:2a:2a:80:56:fe:ac:f8:
d6:57:cc:3a:2b:23:f5:c4:f9:47:ed:86:93:54:26:c4:6d:6f:
e4:6d:8c:f5:c1:5d:15:57:1d:25:43:55:3b:8c:fd:91:ab:85:
ed:55:3c:c5:ab:95:52:4f:ea:fb:fc:b4:87:a5:88:db:fa:57:
0c:59:aa:37:5f:ba:37:98:77:e1:5f:2a:40:69:c5:84:d0:a3:
dc:81:a7:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 22:16:24 2025 by rpki-client