Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
File: xhMz0OgQeIbQMFx72BvdNUiVJ64.mft (raw, json)
Hash identifier: /tBrYCh7zfLBLPy/2Rpy79jEXWFf+GzkIFGCOCVdAU8=
Subject key identifier: D6:61:99:B7:CC:BB:68:2C:BE:6B:D5:51:CF:07:97:E2:DC:5B:07:0D
Authority key identifier: C6:13:33:D0:E8:10:78:86:D0:30:5C:7B:D8:1B:DD:35:48:95:27:AE
Certificate issuer: /CN=c61333d0e8107886d0305c7bd81bdd35489527ae
Certificate serial: 019882B0E3C31AE5018EF32D1B13A5A7963B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
Manifest number: 161F
Signing time: Thu 07 Aug 2025 04:01:27 +0000
Manifest this update: Thu 07 Aug 2025 04:01:27 +0000
Manifest next update: Fri 08 Aug 2025 04:01:27 +0000
Files and hashes: 1: vl15h6bSawu987-Q_9jiY_8d_bU.roa (hash: Ky1qbRFkXL3xxI3+FV1tNHYzBN6SggIg4pNwGCFKnF8=)
2: xhMz0OgQeIbQMFx72BvdNUiVJ64.crl (hash: +AbqF6v8r6rt2CBc2Dev4WMQ9+LQgXHyCxuoz0/djZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 04:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:b0:e3:c3:1a:e5:01:8e:f3:2d:1b:13:a5:a7:96:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61333d0e8107886d0305c7bd81bdd35489527ae
Validity
Not Before: Aug 7 04:01:27 2025 GMT
Not After : Aug 8 04:01:27 2025 GMT
Subject: CN=d66199b7ccbb682cbe6bd551cf0797e2dc5b070d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:05:5a:fc:e5:6a:85:7b:57:04:15:2f:e0:f8:
cd:93:2a:d8:f4:3d:05:34:d2:51:14:66:14:30:69:
87:1f:d8:4f:30:c7:95:30:c1:08:80:f3:64:d6:22:
56:a9:ab:ca:84:ee:93:ac:34:de:80:54:22:88:f6:
31:09:36:53:ec:48:88:d8:bf:de:44:40:a9:d7:27:
ba:9e:5f:83:da:16:ae:e2:0b:6a:48:d3:82:cb:d5:
a2:d5:c6:9f:38:7e:70:51:9a:3e:39:d1:8c:07:98:
cb:ff:2c:4a:f6:e9:20:97:f1:07:fa:b1:de:92:e2:
ba:ea:1a:37:d0:13:88:24:dd:f0:f8:60:89:13:66:
b9:60:1f:37:9b:db:10:8f:98:36:d1:dd:7b:b8:f6:
80:73:05:02:8c:35:25:bc:01:b8:5a:99:8a:23:89:
8e:75:c3:21:a4:53:bc:36:9a:b8:00:ae:03:be:ef:
ba:a5:30:90:88:97:02:ca:68:e6:27:ed:85:2a:39:
c3:95:32:4b:4b:2f:f5:c7:cf:6b:26:e5:e0:b1:c5:
5f:fc:cb:a3:c1:76:65:0e:e7:a2:ef:2c:80:bb:11:
67:c9:76:a2:2e:27:91:0b:de:ef:75:37:37:11:f5:
71:c5:de:9c:e0:5b:2d:1c:93:d1:e8:63:92:0f:b1:
d0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:61:99:B7:CC:BB:68:2C:BE:6B:D5:51:CF:07:97:E2:DC:5B:07:0D
X509v3 Authority Key Identifier:
keyid:C6:13:33:D0:E8:10:78:86:D0:30:5C:7B:D8:1B:DD:35:48:95:27:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMz0OgQeIbQMFx72BvdNUiVJ64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dd32c3-fe8f-4047-b68a-8ec5f0eea045/1/xhMz0OgQeIbQMFx72BvdNUiVJ64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:3c:a4:dc:d5:8d:38:9c:77:88:0a:43:07:53:13:f9:f0:21:
47:c7:f9:e6:63:3d:f9:75:98:c3:0f:fe:a9:cd:db:15:da:9f:
5a:76:e8:d7:61:46:2b:b1:25:c4:b8:72:10:8d:f2:76:80:f3:
52:72:85:9f:21:16:a2:5a:a4:03:5a:a7:40:36:2e:42:04:60:
21:9a:b3:4c:cf:09:a0:2d:7f:c3:38:3f:1a:5f:d6:07:3b:4e:
a7:d3:6d:c3:20:1a:08:f5:db:72:cf:e4:bc:c3:11:90:38:83:
a3:c5:68:63:2c:27:24:5d:64:4b:58:06:5a:9f:07:cc:bb:e2:
ef:bf:35:d6:ba:c7:55:7a:c0:29:a4:05:4f:c1:4e:11:71:45:
ce:58:a0:3c:51:a2:e3:ee:24:99:d7:7e:81:bf:91:4d:aa:8b:
01:f6:ca:93:8f:ed:aa:3d:71:0b:9a:ff:26:ba:9d:17:59:da:
20:67:b2:d6:e8:b3:5e:83:0e:c3:b0:6e:4a:af:ee:23:0e:ed:
02:0b:c0:ee:4d:f9:97:96:7f:fe:ef:7f:f3:b0:c6:3f:8e:37:
65:69:98:a6:23:c5:0b:2d:e6:8e:92:76:9a:83:84:e5:af:78:
20:e7:33:b6:10:8f:b6:8a:f9:5f:28:d2:eb:02:ab:fd:e3:b9:
1e:7d:67:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 13:05:14 2025 by rpki-client