Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
File: XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft (raw, json)
Hash identifier: vGSPG7MskjMPxHHfPXjBkafrwWaXbJXaV4ywKUZoLoQ=
Subject key identifier: 4A:E5:58:50:86:45:4F:34:21:AB:34:6F:D8:52:DF:3B:1B:7E:5D:E7
Authority key identifier: 5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
Certificate issuer: /CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Certificate serial: 01987D1C17031CE0FC0EFA6C822C69D4C3BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
Manifest number: 1588
Signing time: Wed 06 Aug 2025 02:00:49 +0000
Manifest this update: Wed 06 Aug 2025 02:00:49 +0000
Manifest next update: Thu 07 Aug 2025 02:00:49 +0000
Files and hashes: 1: 2ywpCRCtpz6hrb_B5Z2UyYL2m-g.roa (hash: Z+2VK2G2lzN86LoPcE9VgbDrrppkQUiQOHGoi5RCAY8=)
2: XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl (hash: ttEKLCyJUxVGQvmH36yv8LkL6C5bYTgFA2o/P9hzaxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:1c:17:03:1c:e0:fc:0e:fa:6c:82:2c:69:d4:c3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Validity
Not Before: Aug 6 02:00:49 2025 GMT
Not After : Aug 7 02:00:49 2025 GMT
Subject: CN=4ae5585086454f3421ab346fd852df3b1b7e5de7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:0b:77:6f:59:42:28:c3:bb:7d:0d:e8:ff:bc:
77:63:54:6c:ad:dd:b9:24:0f:f8:a7:0d:81:c7:a9:
a8:47:13:b5:7f:2a:14:f6:67:55:af:74:a7:70:a9:
53:a0:96:16:45:56:44:6d:da:9e:e9:80:7a:3e:81:
75:e4:b8:db:22:fe:ce:dd:70:ff:c6:93:77:4a:ff:
6f:0f:9c:48:61:06:9a:a3:96:12:c6:e4:b2:c6:95:
b7:1e:5b:df:7d:ac:e4:c6:ed:d8:59:f5:74:12:16:
68:b6:99:6d:96:a1:29:71:fb:36:2e:1d:76:39:d6:
c9:64:3f:e6:d6:ba:e8:a7:b6:68:fb:30:1f:fa:a4:
93:0d:c3:1d:57:58:a1:9a:03:98:d3:d1:c1:6a:28:
4d:e7:f8:c7:bd:be:12:37:99:1a:4e:c4:e5:c8:0d:
fb:9b:65:8f:de:03:2e:c0:4a:a7:24:28:4b:d7:f2:
10:a2:54:32:d7:43:65:c8:a9:ae:4f:b6:5b:6b:16:
33:0a:e0:f9:de:cb:b1:8e:b8:d9:d5:4c:1c:6e:53:
12:ec:31:74:5a:5d:e5:e9:7d:fe:af:6f:28:d1:79:
9b:57:05:65:2d:66:2d:96:fb:7b:88:d4:d8:ff:80:
ac:ba:ac:60:e9:ee:e8:2d:0b:fb:cf:33:90:0b:9b:
88:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E5:58:50:86:45:4F:34:21:AB:34:6F:D8:52:DF:3B:1B:7E:5D:E7
X509v3 Authority Key Identifier:
keyid:5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:f8:71:61:8f:24:b4:33:7a:5e:af:f0:d6:5c:9a:55:14:1f:
fe:2e:6a:30:00:c1:44:54:91:68:1d:0d:c0:4b:03:80:d7:6a:
88:a2:14:de:f0:9e:79:7e:3f:6f:9a:6c:cf:de:f2:4a:36:56:
58:14:a9:04:c1:19:97:42:20:45:7e:5c:15:b2:4b:8d:f8:bf:
89:4c:88:46:48:0f:64:cc:80:f6:50:68:4b:17:b6:a8:77:30:
81:2b:7e:22:35:49:ae:db:ed:36:c1:6d:a6:d9:3e:2c:39:d6:
66:7d:78:70:2e:8e:d6:19:d7:2d:f7:a3:d5:fb:16:90:5e:c4:
46:e2:fa:76:23:ab:5a:f6:2b:ce:3b:1b:f3:38:ba:f0:67:ca:
ec:89:1f:e5:14:8e:07:74:76:ab:21:65:47:3e:c2:0c:ff:ca:
60:7a:73:9b:47:1c:56:2a:75:ba:fd:5e:d3:5a:57:97:7c:97:
15:2f:9d:69:c2:0d:c3:15:01:35:cd:41:69:27:d9:6a:5d:91:
f4:ed:49:03:2e:2c:99:d5:04:eb:cd:e9:82:83:f0:b5:92:bb:
01:01:a0:d7:87:2b:b1:b9:43:8a:56:b8:e3:51:c9:ce:5c:58:
05:bf:c7:41:6a:f7:e1:18:e4:38:4e:76:53:2a:b6:b7:cb:7f:
39:57:b5:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:09:09 2025 by rpki-client