Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
File: X8IN7HFLtUY7Fk4VpfihOYolUF0.mft (raw, json)
Hash identifier: fXknDrcVGm18GlIkRuXOD5v7zOO/4EnK13HBJwrgn9k=
Subject key identifier: DB:35:C8:91:5E:C4:3A:DC:FD:0F:B4:82:1B:00:8A:DA:54:C2:64:D2
Authority key identifier: 5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
Certificate issuer: /CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Certificate serial: 0198737429C122DBBD730984167BC5B715CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
Manifest number: 030F
Signing time: Mon 04 Aug 2025 05:00:49 +0000
Manifest this update: Mon 04 Aug 2025 05:00:49 +0000
Manifest next update: Tue 05 Aug 2025 05:00:49 +0000
Files and hashes: 1: VYOhWlm2y2YZ6EHcFnibmzsOVGY.roa (hash: GJjtJqaW4pHP1Y4i0oHxZvwkAfFAfi2jd3zkxgKT3N8=)
2: X8IN7HFLtUY7Fk4VpfihOYolUF0.crl (hash: Cn3LXSas4GRbLPOu3irw++4Z0fp7ysPN9Z4fNSpweJ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:29:c1:22:db:bd:73:09:84:16:7b:c5:b7:15:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Validity
Not Before: Aug 4 05:00:49 2025 GMT
Not After : Aug 5 05:00:49 2025 GMT
Subject: CN=db35c8915ec43adcfd0fb4821b008ada54c264d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0c:e7:bc:32:00:a9:bc:e4:3e:0d:f1:be:a1:
dd:14:4b:90:1c:67:c4:94:da:8a:b0:94:db:b1:09:
c1:ea:fd:9d:c2:8b:e5:49:bb:b7:f0:30:aa:5f:cb:
76:13:a3:c1:87:4f:aa:5f:e1:1e:cd:dd:0a:ba:db:
27:08:9e:f5:ac:6e:3e:fe:30:34:8b:ae:25:c7:f3:
a0:69:ad:f4:d6:63:23:57:fa:87:7a:3f:22:eb:f0:
ac:4a:56:43:fc:cb:81:40:6d:6a:13:fa:e2:ad:e8:
bf:cd:2f:7e:e7:16:4f:c5:60:ca:c2:e9:5c:d3:39:
ef:86:bc:ed:70:02:80:ca:83:bf:44:ed:57:4d:0e:
7b:ec:76:ec:43:0d:71:94:bf:58:d7:93:9f:ec:e4:
a8:25:cc:d3:7d:39:de:6d:ed:82:71:e0:13:03:01:
71:cb:3f:16:cf:ae:76:d1:1c:ed:a0:87:3a:c7:7e:
06:b0:c6:77:88:70:7e:59:0c:e7:f2:ee:cd:cb:42:
db:49:96:88:0f:7b:d1:6e:63:fb:e7:cb:6f:fa:d0:
27:52:8f:71:fa:ec:00:65:47:2e:50:cf:08:e2:14:
26:7b:f1:71:98:7c:20:54:cb:7f:53:5d:9a:a6:89:
f5:12:a2:54:b1:5d:3d:34:d7:8d:bd:28:2d:7b:3f:
f4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:35:C8:91:5E:C4:3A:DC:FD:0F:B4:82:1B:00:8A:DA:54:C2:64:D2
X509v3 Authority Key Identifier:
keyid:5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:a9:59:11:e1:ce:f7:a0:99:3a:75:7a:a6:e4:72:9b:ae:7a:
84:71:22:14:9d:07:0f:73:c4:b7:9f:4e:55:0e:b2:1d:a6:39:
ed:32:de:41:be:ad:e8:f0:d3:f3:ae:93:cd:06:d0:eb:cf:20:
94:cc:82:7a:9e:ee:64:20:e1:de:a9:ac:29:30:6f:f4:48:39:
4a:dc:e6:0d:39:1a:75:98:06:f5:76:bd:a5:87:cf:84:1d:b4:
93:a9:7c:06:e6:00:3a:5c:d1:3c:9d:5c:40:22:e1:ec:88:23:
b9:d0:e3:2f:3c:b7:a0:b5:5b:e6:1d:23:c0:d5:3d:a5:72:b6:
7f:56:02:5d:50:8c:73:0c:a6:b3:87:92:ba:be:c3:88:1e:08:
2e:6e:73:d6:1e:ac:3e:ae:ab:92:b3:01:59:3e:60:5f:40:a2:
f7:8f:a8:bd:8f:15:bb:27:2a:12:d1:cd:a1:e0:67:6a:35:2f:
2d:6b:d4:ab:13:76:37:49:65:e5:cd:84:74:1b:99:d1:a7:c9:
68:4c:b3:f5:fd:6e:51:e0:71:8c:48:8f:50:60:a4:6d:9b:98:
45:27:5e:8c:30:aa:c2:87:a2:b4:d1:88:5d:7c:2a:3d:d8:89:
ae:48:3a:6f:d2:3f:df:f9:23:96:b9:0a:11:3c:df:3a:f5:bc:
fa:ea:8c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:17:31 2025 by rpki-client