Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.mft
File: xUIOtdlPD6uGLghAQU9DK3heYFQ.mft (raw, json)
Hash identifier: wfQPcsXdS1CcQ/OzSGdG4EMRp81IskRQ4sq3C9FJjQA=
Subject key identifier: D9:61:40:5E:F3:29:EE:49:DD:9A:26:88:1A:FF:55:F7:2B:74:1B:BD
Authority key identifier: C5:42:0E:B5:D9:4F:0F:AB:86:2E:08:40:41:4F:43:2B:78:5E:60:54
Certificate issuer: /CN=c5420eb5d94f0fab862e0840414f432b785e6054
Certificate serial: 0198895709F6B71B8721592DB604A4E761BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xUIOtdlPD6uGLghAQU9DK3heYFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.mft
Manifest number: 0436
Signing time: Fri 08 Aug 2025 11:00:39 +0000
Manifest this update: Fri 08 Aug 2025 11:00:39 +0000
Manifest next update: Sat 09 Aug 2025 11:00:39 +0000
Files and hashes: 1: Ta5lPzjSaWOGZmJzb8ldMeucHGI.roa (hash: d1Ea1L5jJ9KIi1NEhEpKqHGMktv6fUL4cljVIHxwf/0=)
2: xUIOtdlPD6uGLghAQU9DK3heYFQ.crl (hash: zL5reeceC7UHINq6w9lEI10GpfebVyFO9hYW0wVoAZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xUIOtdlPD6uGLghAQU9DK3heYFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:57:09:f6:b7:1b:87:21:59:2d:b6:04:a4:e7:61:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5420eb5d94f0fab862e0840414f432b785e6054
Validity
Not Before: Aug 8 11:00:39 2025 GMT
Not After : Aug 9 11:00:39 2025 GMT
Subject: CN=d961405ef329ee49dd9a26881aff55f72b741bbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4f:f8:9d:b9:17:8f:48:e1:41:4c:3b:77:61:
99:30:a3:34:0c:b6:f7:45:47:94:0c:77:1e:79:e5:
d8:5e:da:61:cb:be:a0:aa:42:a4:3f:a1:d0:39:11:
d3:32:a0:c2:e2:63:b7:5a:62:f5:7b:74:3d:54:26:
e8:b3:03:3d:68:dc:b2:f3:27:57:7e:ad:02:1d:17:
c3:ed:f4:90:22:1d:1a:42:e7:1c:b0:42:2c:aa:e4:
6a:d1:78:76:bb:aa:6c:47:35:e3:07:59:31:7b:7e:
09:ea:34:ab:8e:14:a1:c1:47:71:77:06:35:d8:5b:
19:98:db:34:d4:de:c5:02:12:17:69:fb:ac:79:23:
93:da:d3:57:88:c3:1d:ec:4b:1d:9a:81:98:15:b5:
6a:e8:7f:93:ca:8e:95:bb:04:24:d0:da:23:77:b1:
c6:50:c6:5e:42:38:71:46:8b:e7:dc:45:27:ec:50:
2f:49:a5:7e:bc:dd:5c:06:0f:43:55:c4:e8:db:53:
05:f4:48:2f:ce:cf:e3:43:22:fb:37:44:c8:78:ab:
03:bb:dd:1c:f6:5c:ba:9a:d0:3a:66:89:cd:1a:b2:
c5:4a:61:4f:e2:a4:b4:e3:97:99:42:88:f7:c8:31:
8e:d3:0f:27:3e:69:cd:5b:df:e9:3c:de:65:19:4b:
14:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:61:40:5E:F3:29:EE:49:DD:9A:26:88:1A:FF:55:F7:2B:74:1B:BD
X509v3 Authority Key Identifier:
keyid:C5:42:0E:B5:D9:4F:0F:AB:86:2E:08:40:41:4F:43:2B:78:5E:60:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xUIOtdlPD6uGLghAQU9DK3heYFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/09c538-b260-44ab-9166-4258ee4de91e/1/xUIOtdlPD6uGLghAQU9DK3heYFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:7d:ab:fe:58:2d:20:5a:90:c9:c7:98:38:15:e1:6f:80:9e:
05:94:83:48:a8:77:d3:db:a5:23:27:e8:78:57:ba:1e:22:85:
a6:1f:7e:67:2c:48:24:84:e5:f3:c5:cb:61:b9:8e:81:fa:18:
07:ca:fb:ed:19:7e:3a:c8:ba:7f:60:04:06:7c:19:ce:35:95:
a5:ca:58:0a:cb:b9:26:ce:9d:44:52:d6:f5:3e:82:d8:2c:a2:
dd:9e:05:35:1d:e0:dd:46:5a:a0:9d:10:2c:ce:5b:86:17:8b:
fd:bf:49:f6:2c:db:54:31:a1:9f:00:47:ae:8f:3b:62:a2:ed:
96:0e:2d:c1:bd:85:12:0b:ca:23:ff:a4:2a:de:df:fd:32:2f:
0a:42:32:3a:af:68:a5:1c:bf:4e:3b:2a:05:50:00:e2:4a:7d:
63:df:7e:df:38:8b:e4:fa:36:a0:10:74:f9:da:d1:c6:d0:ae:
bd:9b:4c:0b:94:f3:ab:26:2b:4f:30:c7:ff:ee:a2:35:8c:ae:
35:65:98:fa:0b:23:7f:31:ec:aa:68:01:a7:06:c0:17:ea:ac:
28:89:1c:39:da:e0:86:e1:56:6b:ba:19:43:44:24:25:f5:92:
00:1d:18:ac:8f:d1:ed:8b:6c:cd:2a:8a:91:fc:ed:fd:6a:8b:
31:15:67:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 19:21:22 2025 by rpki-client