Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
File: XzHZebcQ7eIGiCOIGqYRrROvVFk.mft (raw, json)
Hash identifier: f2dmJh4bxttJnIp0UQSsNZmvI6Ntz1XVqWTYeIObY6g=
Subject key identifier: 48:0E:2B:5D:D4:23:20:C6:26:37:4B:AA:C7:D9:1A:FE:CD:BB:C7:36
Authority key identifier: 5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
Certificate issuer: /CN=5f31d979b710ede2068823881aa611ad13af5459
Certificate serial: 019873E1D34D3F14109F5C5DCA121153F540
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
Manifest number: 0BCC
Signing time: Mon 04 Aug 2025 07:00:36 +0000
Manifest this update: Mon 04 Aug 2025 07:00:36 +0000
Manifest next update: Tue 05 Aug 2025 07:00:36 +0000
Files and hashes: 1: 7VePb56Lb2mDp_DoHqAJOVOs_T8.roa (hash: V7IpcMoqQADg7SX3r725vYH2jPknDmi+ikdfBjQyP5c=)
2: XzHZebcQ7eIGiCOIGqYRrROvVFk.crl (hash: /WeqM/bFxuWqFQU7PBLp6F1LQ2JWd9pxdEyZN8QWd94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:d3:4d:3f:14:10:9f:5c:5d:ca:12:11:53:f5:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f31d979b710ede2068823881aa611ad13af5459
Validity
Not Before: Aug 4 07:00:36 2025 GMT
Not After : Aug 5 07:00:36 2025 GMT
Subject: CN=480e2b5dd42320c626374baac7d91afecdbbc736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:22:23:2f:e3:04:b3:54:dc:45:9a:82:88:fd:
27:c2:85:c0:61:77:66:26:b7:24:0a:52:89:7b:cb:
25:7a:31:10:95:c7:9b:d1:95:8b:7c:a7:ea:3b:08:
61:9a:c1:0a:05:47:c7:c0:f0:39:dc:93:62:82:64:
28:64:f2:cb:3f:f2:11:05:98:5a:b6:76:97:48:e8:
42:85:0a:de:e4:48:4a:42:4a:e3:a0:8d:0a:77:0c:
20:6a:f4:51:8b:12:0d:20:6c:88:fa:08:5a:e4:d0:
f0:79:2c:52:22:aa:63:89:3f:0a:49:65:ed:85:9f:
39:f3:ac:e3:66:8e:b7:79:f2:2e:10:53:a6:e2:98:
54:21:d7:17:64:b2:e0:7c:be:e7:cd:54:ff:b9:1a:
89:63:38:6b:ee:65:8d:6d:5f:47:91:3d:ce:d4:80:
fc:b8:9d:33:20:3f:71:d4:62:e8:84:11:66:ab:e5:
b3:de:6c:08:8b:8f:5c:cc:38:c5:b6:3c:fd:4d:4d:
c1:03:ec:de:33:52:b2:08:06:e5:9a:a0:fd:77:df:
e7:b5:a6:62:8e:fd:20:9a:dd:76:7a:c5:62:79:63:
d0:8a:1c:b3:ce:1e:da:75:10:b7:20:bb:33:ea:b2:
89:e8:45:9d:fa:34:17:d6:1a:23:8a:15:ae:85:3e:
8c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0E:2B:5D:D4:23:20:C6:26:37:4B:AA:C7:D9:1A:FE:CD:BB:C7:36
X509v3 Authority Key Identifier:
keyid:5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:1a:c3:65:12:fe:52:73:9c:79:29:a7:a6:e9:54:75:00:f2:
c0:2d:45:b4:49:ac:7c:30:04:b2:76:c0:6c:d9:e2:11:03:49:
2f:8b:9b:1b:f2:ca:ec:17:1f:a8:59:03:9f:6f:05:7a:c6:e4:
1d:30:fc:1f:39:85:ed:bb:48:39:49:da:b7:a7:48:51:16:86:
25:5d:83:0e:62:09:f3:4a:8a:de:26:0c:2a:78:94:6f:6a:89:
75:e7:a0:47:03:0f:b1:b7:8a:14:d6:80:58:16:e4:da:15:65:
e5:e3:a9:f7:50:71:3a:4b:53:89:fb:b3:ef:0a:24:0b:44:83:
8c:92:4c:bd:3b:6e:47:97:bf:74:5d:e6:33:f0:49:b0:b0:09:
81:82:ef:ff:03:1a:ff:aa:bf:1c:33:03:b5:94:86:d3:38:37:
43:dc:3d:4d:11:d5:5f:48:4c:4d:18:11:09:c9:8f:85:70:ea:
08:50:2c:f6:ce:43:6a:ea:0d:22:a0:82:1b:9a:66:fc:e3:92:
c8:2c:60:51:49:04:2b:b9:0b:ae:e3:45:6d:aa:24:20:7e:fd:
1b:7e:a3:96:72:62:d4:1e:6a:63:04:ba:a9:fb:3d:69:7b:78:
e4:8e:f0:e5:8e:97:ed:d3:ad:50:8e:ab:de:e2:19:8f:c5:45:
78:c6:49:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:12:35 2025 by rpki-client