Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
File: XLtvfRHev55LqLH2nDg7j8PErhI.mft (raw, json)
Hash identifier: pk29XKh3kcD5qEc7d9o6DTCIFpDMB5GtdFcqdyrpmUY=
Subject key identifier: 6A:FC:01:1E:9B:71:0F:B9:44:4F:AC:F2:7D:82:5B:E9:A5:7E:84:F2
Authority key identifier: 5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
Certificate issuer: /CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Certificate serial: 01988A32FFB44E8DDA20AE7EA5E185ACF49A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
Manifest number: 0A48
Signing time: Fri 08 Aug 2025 15:00:54 +0000
Manifest this update: Fri 08 Aug 2025 15:00:54 +0000
Manifest next update: Sat 09 Aug 2025 15:00:54 +0000
Files and hashes: 1: GeKBRab06m2Sa_WEDlm2vrbqt80.roa (hash: rshNYrEYAk6Ccd9rs6FmkxFoBRIeaz8vJy7lI8MW13k=)
2: XLtvfRHev55LqLH2nDg7j8PErhI.crl (hash: hJ0Qlf7tnzu2XCe574NlQ/0S8CDriToO5vLxy1lWwtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:32:ff:b4:4e:8d:da:20:ae:7e:a5:e1:85:ac:f4:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Validity
Not Before: Aug 8 15:00:54 2025 GMT
Not After : Aug 9 15:00:54 2025 GMT
Subject: CN=6afc011e9b710fb9444facf27d825be9a57e84f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b7:d0:a7:26:28:5e:00:a8:79:27:23:cb:fb:
31:69:21:eb:fc:5c:e1:6b:b0:6b:1f:0a:60:3b:cc:
96:6a:64:68:03:e0:c3:7a:49:07:dd:b5:35:f6:f9:
62:9e:10:ce:3e:94:8f:a5:3d:40:9b:64:70:1d:69:
20:ec:f9:bd:7c:74:ec:a5:72:1d:ed:f7:e5:5a:a1:
6a:e4:93:4d:82:ac:e0:a5:90:08:87:af:fd:a8:ba:
90:db:12:81:ca:c9:fd:c7:78:a9:13:80:30:0c:65:
dc:9c:41:7f:d7:05:25:fb:b4:25:6a:05:d8:a7:de:
3b:5a:95:0c:22:88:bf:77:88:94:0d:c3:03:f0:da:
54:73:89:ff:c0:33:cf:41:20:c2:6d:f9:e4:db:12:
c0:96:1c:f4:eb:ca:59:fb:a7:45:a3:aa:7d:e3:f3:
23:26:d4:31:7d:4d:04:57:cc:ec:85:40:7c:fe:db:
40:0f:ab:89:4a:67:57:9b:d0:49:02:25:f3:bc:66:
25:c0:3e:66:5c:ab:fb:ad:05:42:a2:7d:0c:38:1d:
83:6d:a5:10:7a:96:b0:f1:56:95:46:44:b9:ef:89:
1a:3e:31:da:a0:40:44:91:71:e1:57:ae:6e:ae:20:
48:06:d4:9c:99:c6:34:4e:57:ab:ee:b3:fe:49:e2:
5f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:FC:01:1E:9B:71:0F:B9:44:4F:AC:F2:7D:82:5B:E9:A5:7E:84:F2
X509v3 Authority Key Identifier:
keyid:5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:3c:21:00:f6:74:7e:13:9d:50:01:30:6b:3f:20:f9:72:69:
0b:ee:26:5d:3d:ef:a6:8e:2f:2b:d3:5c:27:ef:35:26:7e:f2:
1e:36:4f:ad:ba:23:2f:9c:36:fa:2a:1e:7c:3f:d6:1e:f2:6b:
6d:81:c7:d4:ff:32:16:4f:b6:6e:6c:da:c2:03:38:d4:46:09:
21:36:f3:cf:ac:54:3c:3b:2e:d1:0e:95:0e:31:01:ef:8b:a4:
00:57:4a:25:e5:ba:99:ff:12:c6:80:62:11:b1:14:c0:e4:8b:
30:05:22:ae:7e:34:28:de:4a:cc:69:7e:ff:6c:13:a8:85:2d:
27:cc:c8:c4:a7:7f:44:9f:8c:79:a1:f5:a1:17:49:35:cf:75:
b8:a5:a4:94:88:aa:4f:b5:b2:9b:87:b1:25:22:99:a2:f1:6b:
95:93:e9:e2:53:3f:9b:2d:9a:74:2f:90:68:f2:36:b2:7e:e8:
46:1d:f7:ef:13:f9:d1:1b:e4:b2:c7:a3:c2:8c:1e:f8:5f:de:
02:aa:21:e4:6c:ef:db:ad:29:d1:6f:70:4e:32:a5:b8:b5:51:
01:b0:31:1d:1e:f3:4f:4e:f7:ab:c9:c9:3e:09:79:f2:90:3d:
47:bf:16:3e:bf:3f:3b:50:be:eb:c9:2e:7e:b5:d7:d4:70:ec:
47:17:69:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 20:42:14 2025 by rpki-client