
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
File: xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json)
Hash identifier: Neho2PlqFw5alrgvLr5T5KE/+vKquWlooz/gczSuNMQ=
Subject key identifier: 4B:CB:A7:09:86:68:CA:FE:34:77:62:D9:6C:7B:22:F1:0B:FD:FE:2D
Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
Certificate issuer: /CN=c5bfa71a5113fed82464776c14371514c9218ef5
Certificate serial: 01987A896E6B6C4CD77F0602D6737F6C1E19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
Manifest number: 0A52
Signing time: Tue 05 Aug 2025 14:01:23 +0000
Manifest this update: Tue 05 Aug 2025 14:01:23 +0000
Manifest next update: Wed 06 Aug 2025 14:01:23 +0000
Files and hashes: 1: IzmeYXYlO_xmlW74WeQyL7gffpE.roa (hash: Z5XX/V/bAHCE8fRhzNUzhUtEMOMQ14B1YoCinHSL1lM=)
2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: DkjBvb9kcPxpIlkaqzBat+0jw9slZqG6qi8vACbQh+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:89:6e:6b:6c:4c:d7:7f:06:02:d6:73:7f:6c:1e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5
Validity
Not Before: Aug 5 14:01:23 2025 GMT
Not After : Aug 6 14:01:23 2025 GMT
Subject: CN=4bcba7098668cafe347762d96c7b22f10bfdfe2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cc:b0:d6:3e:00:e3:47:d1:35:92:d4:78:9a:
10:8b:f5:b0:27:8c:f3:ca:09:49:36:85:f9:7d:2d:
33:11:f6:eb:f3:3b:09:4b:9b:43:ad:89:77:5f:9f:
0c:0a:94:e1:3f:d1:e9:c2:12:93:54:57:08:18:3c:
4c:3f:28:08:96:76:1f:f1:70:f8:d2:fa:2c:34:d6:
2c:0d:f0:e5:68:ee:8d:f5:70:14:80:37:81:b2:cc:
b5:cf:de:49:fe:f5:3f:80:1b:39:28:e4:df:92:a1:
a9:b3:90:d7:9e:ad:4c:c0:dc:a6:3b:df:5d:c7:e4:
7f:88:3d:ae:60:af:57:4a:2b:77:b3:ce:81:41:aa:
73:a8:b4:ad:ff:ba:50:64:fb:0e:af:b1:bc:b5:50:
d2:66:69:6d:c0:77:0b:2a:16:3e:6e:e3:5e:66:54:
2a:06:1d:9c:45:d9:80:56:13:79:59:2b:e8:f4:c4:
73:78:b3:39:21:0d:7f:66:e3:95:89:d6:62:42:d8:
00:21:27:4b:81:2c:6b:eb:4c:2e:59:2c:5a:1d:55:
f9:bc:b7:65:b5:d7:c3:a4:3f:a3:58:45:d0:df:f0:
fe:e7:22:cc:78:91:bd:35:54:92:f4:90:bd:2c:1c:
b5:c6:b4:ef:37:37:8f:d6:d9:0a:bb:b2:47:55:29:
4a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CB:A7:09:86:68:CA:FE:34:77:62:D9:6C:7B:22:F1:0B:FD:FE:2D
X509v3 Authority Key Identifier:
keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:3f:fb:ee:6c:a3:53:97:6b:c0:e8:ec:76:d2:9e:df:fa:57:
64:69:ea:41:88:13:41:ef:3c:37:f1:6d:a3:b3:b5:da:d1:38:
c8:e9:1e:f7:29:57:00:5b:ad:ae:85:84:78:43:37:1b:7f:18:
62:b4:05:4b:96:51:0b:b7:08:3f:e4:db:d8:a5:1e:04:2b:66:
7b:eb:e1:1e:d9:d9:42:cd:fe:ed:88:f8:29:48:39:b0:bd:8e:
4e:e7:c6:70:60:25:29:a0:c9:64:c0:96:92:b8:e0:45:33:c1:
d4:84:2a:92:a2:78:ab:a8:b5:ef:59:e9:48:f5:53:a8:d9:44:
a1:e8:1a:55:3c:ab:b7:1d:c9:27:ec:ea:d9:2a:64:cc:c0:16:
9a:22:8a:b2:11:f0:3c:79:9b:31:bd:e8:19:11:e7:75:fd:df:
6d:0b:d7:ce:64:60:7e:61:62:af:9e:58:11:4f:ad:f5:cd:d6:
79:c7:39:78:ff:e6:44:3b:68:06:da:c1:4c:ea:20:a9:6d:c8:
7e:b6:48:61:87:b8:7e:47:cc:ea:4a:d8:02:9a:d5:36:50:30:
43:2c:ab:29:1b:48:72:9a:d7:13:c1:72:9f:4c:95:d0:63:26:
fd:61:59:05:8d:4f:66:e1:8d:86:75:f5:b5:7c:93:b2:87:52:
ad:30:6b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 23:10:13 2025 by rpki-client