Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: CGaidQ8BVFspZ0cxcamwoARF5x5AIpaylDUgWmueHhY=
Subject key identifier: 5C:D7:89:C3:E9:B5:5B:AD:9E:3B:96:09:E3:3E:1C:9D:E6:FB:08:E6
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 01988EEC7F8E8B439A8794174A9052D92863
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 15B8
Signing time: Sat 09 Aug 2025 13:02:00 +0000
Manifest this update: Sat 09 Aug 2025 13:02:00 +0000
Manifest next update: Sun 10 Aug 2025 13:02:00 +0000
Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: I4iZeahyLWM0EUkZEPCsCsTyxEyPhLBhV6M5d42Y4UM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:ec:7f:8e:8b:43:9a:87:94:17:4a:90:52:d9:28:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Aug 9 13:02:00 2025 GMT
Not After : Aug 10 13:02:00 2025 GMT
Subject: CN=5cd789c3e9b55bad9e3b9609e33e1c9de6fb08e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bc:f0:52:aa:e4:2f:62:ab:c9:50:fb:b9:c6:
41:e2:a2:e8:7f:84:34:d3:28:80:1b:12:a9:6f:70:
cc:64:f7:18:df:d1:a7:81:9b:aa:4a:69:ab:6d:5d:
14:1f:ea:b7:24:ed:84:7b:cd:e6:84:87:ac:73:fb:
7d:cd:7d:a3:d9:ff:f7:9f:10:f5:a3:9a:c9:4f:fa:
26:30:5d:6f:83:dc:5c:db:01:3c:46:21:50:7c:59:
a4:2f:74:55:c7:be:c2:cd:34:a7:8f:b7:b7:d5:51:
89:de:f5:80:e3:49:64:29:71:91:c9:5f:0b:3c:7e:
5c:d7:5f:d7:75:e4:a9:2a:b5:ae:e0:a5:34:0b:b0:
e3:65:2b:11:02:5a:aa:41:75:9a:7f:4d:9e:1b:ad:
71:04:88:c5:ba:d8:b3:f6:73:e0:d0:6c:ef:94:d2:
8d:50:58:df:94:9c:8c:a1:27:c4:f0:c4:7b:48:4d:
18:e0:9b:2e:2d:00:99:f5:f5:15:28:22:71:73:e6:
90:97:31:33:20:df:a4:c9:c5:5f:ab:eb:ee:c6:61:
c7:ed:3b:a8:81:fa:a4:0d:34:d5:e9:58:94:63:96:
23:28:61:b8:5d:74:8e:be:da:ec:dd:66:b4:82:3d:
0e:6c:b1:dc:77:30:25:88:0d:4c:75:bc:09:4b:c2:
e1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D7:89:C3:E9:B5:5B:AD:9E:3B:96:09:E3:3E:1C:9D:E6:FB:08:E6
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:6d:1d:26:67:c3:99:30:a6:8a:c7:4d:88:9c:7f:0f:f5:08:
68:e3:19:48:81:55:f1:90:cc:65:79:55:ce:21:49:7b:a3:76:
4c:2b:a9:91:a9:cb:04:e2:77:f7:4a:7d:c7:ce:42:88:23:50:
d0:66:8a:1a:0d:b8:a6:f2:00:40:31:87:9b:65:0c:95:a7:9d:
4a:4d:fc:1e:b2:66:62:4e:60:48:e6:f6:38:9e:aa:1e:72:1e:
23:55:4e:a3:bc:00:03:8b:c3:e7:0d:0b:05:95:2c:a5:a4:1a:
95:dd:ef:f4:24:7e:79:fb:29:7c:22:e2:e5:96:0d:c8:5d:49:
88:62:bd:c2:48:e2:fd:df:b4:21:5d:cd:d9:50:47:fa:7c:e9:
06:b2:c3:ba:03:3a:26:47:14:45:c3:90:e6:e3:3a:c4:b2:57:
b5:1e:cb:b5:74:26:3a:00:40:20:4d:89:c4:43:d4:20:1e:b4:
a8:da:8c:a5:61:c8:1e:99:8a:2a:e3:9c:27:26:0b:b8:7f:1e:
38:ba:e0:6f:53:f2:64:97:63:20:cf:59:6c:7f:3a:ad:7d:6f:
5d:7c:be:02:14:fd:ec:e1:78:b6:73:99:d4:a4:bf:df:a2:3f:
dc:b6:a2:2f:52:8f:a3:59:cd:3c:b7:ed:8a:c1:49:51:15:72:
fa:32:a5:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 15:10:36 2025 by rpki-client