Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
File: xw2_VVhwtVas-rQox06s7lb3siI.mft (raw, json)
Hash identifier: iYxo6NYHZUzUSVe41Gqn2HIagG5GbK/L5d477lxNvJo=
Subject key identifier: 76:52:DD:91:E0:41:33:12:2F:56:D6:94:D2:D7:DB:CB:14:48:E6:01
Authority key identifier: C7:0D:BF:55:58:70:B5:56:AC:FA:B4:28:C7:4E:AC:EE:56:F7:B2:22
Certificate issuer: /CN=c70dbf555870b556acfab428c74eacee56f7b222
Certificate serial: 019A4EF56DFE85D32823FF58A4C69C3B4896
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 13:01:38 +0000
Manifest this update: Tue 04 Nov 2025 13:01:38 +0000
Manifest next update: Wed 05 Nov 2025 13:01:38 +0000
Files and hashes: 1: BIAxUnW_hCjMRjCzGvcDZv9IbZI.roa (hash: lpTkJGPX7x3xgf0arKc8U2BOXhSzOpi1sRj7xRP++p4=)
2: xw2_VVhwtVas-rQox06s7lb3siI.crl (hash: kYIRzbIcBQyPGxWBAn0LRFbuI9cGnr3keifIqG54d6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:6d:fe:85:d3:28:23:ff:58:a4:c6:9c:3b:48:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c70dbf555870b556acfab428c74eacee56f7b222
Validity
Not Before: Nov 4 13:01:38 2025 GMT
Not After : Nov 5 13:01:38 2025 GMT
Subject: CN=7652dd91e04133122f56d694d2d7dbcb1448e601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:06:db:8f:b1:21:98:60:eb:74:a3:be:d0:5d:
bd:c2:f2:73:f5:b4:8b:9f:7a:09:dd:1b:cd:f5:46:
90:b9:13:d9:34:a5:b9:ba:41:ac:88:8e:2e:36:2c:
72:3b:9b:44:31:8b:19:f4:a6:3c:e1:4c:4f:95:e8:
3b:27:27:6c:78:71:59:45:22:05:be:d6:f7:74:ec:
00:3c:43:78:eb:76:e3:9f:a7:b8:87:df:d1:fc:c8:
2d:b9:d2:5e:65:20:1e:bc:99:0a:ac:60:ba:96:ec:
44:80:6a:5d:a4:09:6f:5f:8c:b1:8a:c7:7f:af:6c:
8b:fd:c8:8f:1f:f0:08:e6:71:24:fb:dc:74:0c:25:
cf:90:41:30:fa:d1:eb:ea:d7:d5:54:69:45:b8:8f:
84:01:47:e9:87:51:96:d7:aa:46:47:ca:b8:f6:60:
92:4c:da:5e:f3:ec:8b:dc:a7:3f:4c:af:d1:e3:56:
a8:dc:65:b1:2b:5f:d8:42:39:9e:13:1f:fe:40:8e:
f9:f7:66:cd:b5:e2:f4:56:7c:6f:14:a3:5e:9a:ff:
06:e6:50:9c:04:25:7a:79:f1:d4:10:73:f6:7e:a3:
db:32:f8:d4:2f:8a:24:f6:7a:68:78:fb:87:cc:08:
6a:4d:22:f2:14:77:86:81:5a:a3:7b:33:47:ef:a4:
53:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:52:DD:91:E0:41:33:12:2F:56:D6:94:D2:D7:DB:CB:14:48:E6:01
X509v3 Authority Key Identifier:
keyid:C7:0D:BF:55:58:70:B5:56:AC:FA:B4:28:C7:4E:AC:EE:56:F7:B2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:52:e2:c1:5a:ee:29:ba:09:ec:fb:c3:cf:81:9c:ff:cc:5d:
04:89:d6:cd:80:39:82:33:49:53:60:e6:7e:74:06:4b:e5:60:
cc:4d:53:14:77:38:31:1f:39:fd:5b:07:21:f0:a5:b7:17:4d:
b2:ba:4c:5a:57:df:12:4a:8e:8c:18:9f:b8:ca:22:01:f1:44:
14:06:09:61:c1:40:12:6e:a6:e5:d8:c2:e6:0d:39:4c:04:8f:
47:dc:d3:bd:cf:3f:fe:5d:98:08:63:a3:05:ff:23:c5:a9:0a:
dd:c8:31:8d:d5:28:0a:57:11:25:c0:22:c1:af:9c:5d:67:5f:
57:98:5b:b4:52:60:1a:ee:e8:71:95:e8:4e:bb:bd:41:e9:64:
f1:41:ea:08:31:b2:64:c5:01:00:79:db:d7:a1:fe:03:e8:56:
48:8d:1a:e0:1d:c8:95:4e:da:80:b1:e7:70:76:f0:e5:15:98:
44:80:3b:68:57:83:ae:b2:e0:3e:71:e0:3b:60:cb:9e:61:4a:
b9:36:5b:fe:fa:36:9e:e6:c7:19:dc:d4:f4:5c:0e:4c:b5:3e:
03:cb:e4:e1:4f:61:1e:a5:33:bb:4c:ee:95:b5:80:1b:e9:bf:
21:12:ab:a4:03:3f:2a:56:6a:04:83:78:cb:73:c9:59:63:b8:
a7:41:23:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:50:13 2025 by rpki-client