Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
File: xKMWKFZYILOlo-HPyHdz4oP7lcE.mft (raw, json)
Hash identifier: yr8UI22NfvP8fYQ7Q2RC/tGE6bodmzLAzjdFC8YKYnU=
Subject key identifier: 71:64:47:D1:AD:DC:7C:E8:FA:F7:D6:12:C8:0A:33:58:30:AE:9B:D5
Authority key identifier: C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
Certificate issuer: /CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Certificate serial: 01988A699B7824CDE0A83D19F1C9413E4E29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
Manifest number: 0B68
Signing time: Fri 08 Aug 2025 16:00:33 +0000
Manifest this update: Fri 08 Aug 2025 16:00:33 +0000
Manifest next update: Sat 09 Aug 2025 16:00:33 +0000
Files and hashes: 1: O7JK_R6ip6iR244uyf3DBgROHco.roa (hash: GKH7o0xxF7nZfmB+4s7mUapBQQrsXrRHoDwbM7Hh8hA=)
2: xKMWKFZYILOlo-HPyHdz4oP7lcE.crl (hash: igQYKgTr+FGklxYgAHAkXyxVZh93zYftc1+Pwj3hVuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 16:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:69:9b:78:24:cd:e0:a8:3d:19:f1:c9:41:3e:4e:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Validity
Not Before: Aug 8 16:00:33 2025 GMT
Not After : Aug 9 16:00:33 2025 GMT
Subject: CN=716447d1addc7ce8faf7d612c80a335830ae9bd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b1:8f:a2:e8:df:f6:d1:1c:f6:c3:34:62:62:
50:4b:e7:53:60:6f:cb:29:5d:59:e8:09:74:a0:37:
be:34:93:6c:fa:64:a0:50:23:33:46:94:be:63:99:
4f:ec:88:e0:cd:be:e0:3c:19:f5:70:f8:cd:de:c7:
d4:ff:1e:55:5d:f6:34:70:e1:b9:ec:4b:1e:a3:31:
8e:39:72:a9:a3:f9:cb:65:ec:aa:6a:9f:55:74:48:
89:49:3b:24:11:1d:d3:2f:dd:21:b1:d2:4b:27:7c:
4d:b0:fd:e7:1a:eb:a0:31:42:9a:ae:1a:67:49:eb:
7c:42:6b:f5:bb:de:4a:8f:0a:4d:f2:c2:26:cb:ba:
65:f6:6a:ae:80:70:83:5a:5b:39:a2:b2:ff:f2:4a:
c5:99:70:8d:cf:50:18:eb:9d:ec:ec:3b:30:91:eb:
f8:b1:9d:82:c6:05:76:f1:2f:c2:d1:84:73:82:c7:
de:5e:e2:03:b5:44:f2:7d:23:1d:3d:ca:bb:cf:d4:
93:49:98:64:d3:50:25:93:a5:0c:bf:6e:a4:15:e4:
94:26:39:c2:ee:56:c1:97:2d:49:b6:32:c3:3f:a7:
14:c6:19:50:22:a6:3c:eb:50:f7:70:84:90:ab:e1:
25:14:f1:1e:9b:55:fe:20:a6:44:5a:db:af:49:79:
f7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:64:47:D1:AD:DC:7C:E8:FA:F7:D6:12:C8:0A:33:58:30:AE:9B:D5
X509v3 Authority Key Identifier:
keyid:C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:66:b8:f1:f3:99:d4:ea:4e:82:75:ee:ee:2a:ac:a5:78:db:
fa:3b:3e:af:ff:a1:6a:dd:5d:bc:e0:0f:0e:de:24:40:54:a5:
37:9d:b1:d1:36:0e:5f:29:84:90:1b:4d:e9:03:6a:a0:bd:af:
2a:32:7b:a2:b1:3e:ce:03:f9:6d:c8:35:a6:70:73:8f:82:0c:
05:15:ef:25:65:bb:b9:07:d1:d6:ff:f1:48:9b:a0:c6:8c:e8:
21:24:4d:71:cd:c1:84:59:7b:3a:ac:9a:19:ea:c3:03:8e:80:
75:28:34:c4:0e:c3:10:86:19:cd:c5:2c:2c:a2:ab:29:da:63:
7f:b0:90:c9:f0:8b:a7:cc:46:43:eb:58:15:49:8f:e4:50:60:
67:c2:50:d7:21:87:01:d0:0a:e0:51:c4:81:11:e6:d4:59:01:
9c:ac:91:b0:d6:93:4e:25:89:3a:86:12:7f:83:d2:e5:d4:00:
ae:45:66:35:f4:04:05:0a:34:2e:19:e2:c6:61:c0:dc:01:c2:
fd:4f:57:02:24:f9:33:b0:8b:4d:da:ff:ef:98:38:5c:97:2f:
43:80:8f:46:6a:f8:d6:63:89:40:64:fd:37:00:e8:8e:78:86:
ef:51:06:9d:08:a9:28:85:39:7e:93:08:19:55:c6:a0:f0:9b:
2c:fd:df:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:06:44 2025 by rpki-client