Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
File: xw2_VVhwtVas-rQox06s7lb3siI.mft (raw, json)
Hash identifier: BaxOnoIF/+fHrCZx1Ilk644WodvU0TlvahNIrb8HlAI=
Subject key identifier: A4:B9:08:D4:0D:12:9C:A2:76:02:30:2F:9F:C9:53:74:C7:84:97:1F
Authority key identifier: C7:0D:BF:55:58:70:B5:56:AC:FA:B4:28:C7:4E:AC:EE:56:F7:B2:22
Certificate issuer: /CN=c70dbf555870b556acfab428c74eacee56f7b222
Certificate serial: 019885443D43A1A320326710B6BF6478ACA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
Manifest number: 1621
Signing time: Thu 07 Aug 2025 16:01:38 +0000
Manifest this update: Thu 07 Aug 2025 16:01:38 +0000
Manifest next update: Fri 08 Aug 2025 16:01:38 +0000
Files and hashes: 1: BIAxUnW_hCjMRjCzGvcDZv9IbZI.roa (hash: lpTkJGPX7x3xgf0arKc8U2BOXhSzOpi1sRj7xRP++p4=)
2: xw2_VVhwtVas-rQox06s7lb3siI.crl (hash: yLpGjqrSBwJlv9AWdDTqjIH3DvNeyhbs9cex2LHrEgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:44:3d:43:a1:a3:20:32:67:10:b6:bf:64:78:ac:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c70dbf555870b556acfab428c74eacee56f7b222
Validity
Not Before: Aug 7 16:01:38 2025 GMT
Not After : Aug 8 16:01:38 2025 GMT
Subject: CN=a4b908d40d129ca27602302f9fc95374c784971f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:07:50:77:51:5c:6b:c1:a9:2e:3d:e5:c8:be:
ed:fa:09:c9:58:64:50:43:a4:e0:1d:66:ea:81:2a:
74:85:61:4d:f6:9b:05:f1:64:e3:b1:bc:a8:bf:25:
95:01:79:ff:59:bc:07:0b:1f:22:40:53:a6:81:1f:
a9:e0:96:27:3b:ae:bf:a7:7f:f0:bf:ef:ac:a0:d1:
7a:8a:21:2c:84:2e:6f:5f:9b:57:2e:a5:bf:c0:64:
ec:76:47:e6:64:e7:c8:6b:20:b7:78:c5:26:ca:7f:
5c:06:49:31:9a:45:18:4e:94:8c:fb:3f:c1:b1:cf:
e5:99:ad:49:fe:b5:ce:98:cf:35:36:3d:d5:60:3c:
e9:69:24:d2:ee:24:7b:61:90:23:71:ee:80:76:93:
75:da:ed:8a:7a:11:0d:9e:1d:30:c8:88:6b:b4:43:
5a:a3:67:24:31:0c:f7:f5:38:30:54:ca:cb:bd:ae:
76:32:21:b6:6f:a6:e5:6a:37:2d:4c:92:bb:74:3c:
e3:ff:f3:fe:ed:cf:27:66:21:b4:3e:bc:d4:c6:76:
b3:fb:10:29:7d:f8:f8:00:b2:3f:51:56:7d:e5:07:
93:4e:d8:92:4c:76:a3:95:6e:4b:3e:fb:5e:c0:dd:
3b:3f:6e:83:f2:54:6b:13:09:48:20:7c:3a:57:8d:
30:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B9:08:D4:0D:12:9C:A2:76:02:30:2F:9F:C9:53:74:C7:84:97:1F
X509v3 Authority Key Identifier:
keyid:C7:0D:BF:55:58:70:B5:56:AC:FA:B4:28:C7:4E:AC:EE:56:F7:B2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:6c:6f:90:70:5f:67:94:58:cc:39:97:3b:51:46:d2:77:12:
f5:a7:c5:36:3d:e1:0c:ff:b8:48:ac:8d:b2:32:96:b7:53:8d:
63:54:51:c2:4b:01:25:f1:75:b8:10:e6:e5:c7:e6:f5:1e:47:
b4:b0:9b:08:06:a5:ac:b4:61:65:ef:8b:c5:3c:73:20:95:b5:
5e:80:91:64:62:49:48:ab:2c:d4:9d:61:21:17:81:a1:ad:6e:
9d:ad:87:91:b6:d5:7a:f3:ef:64:ab:75:4d:48:58:66:48:5d:
51:87:34:ca:3f:45:db:ff:44:0c:1a:93:76:8b:df:8a:4a:40:
5d:e0:e7:e3:7a:8d:99:bf:10:84:28:0e:77:26:d5:8a:29:04:
f6:10:98:22:71:c6:50:2d:48:45:9a:5b:fb:6b:04:a8:94:70:
cc:b6:4c:0c:2c:12:08:6f:68:85:91:5c:d2:ca:1f:b5:71:80:
d0:45:32:10:30:f0:bc:9c:e1:5f:7f:11:da:59:28:09:59:a5:
1a:e2:ee:f7:2f:42:94:f7:c7:63:35:56:93:9e:d3:48:06:43:
01:4a:ea:53:0c:ad:a0:86:2f:3b:f7:29:8c:88:a8:02:b9:e7:
95:81:19:a2:9f:a0:fc:34:b7:14:3f:b4:1d:a8:fa:b0:4c:96:
5b:dd:81:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:13:28 2025 by rpki-client