Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: OZ2QqLBW/EWULHWrmPqCBNcGayT8wnqSDlz1cim+4JY=
Subject key identifier: 2C:90:65:52:0F:41:F1:12:7F:84:FE:64:69:EE:E0:6E:DE:C6:C6:B8
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 019873E33C6BC36E1C581B506CF2B3B18EBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 07B5
Signing time: Mon 04 Aug 2025 07:02:08 +0000
Manifest this update: Mon 04 Aug 2025 07:02:08 +0000
Manifest next update: Tue 05 Aug 2025 07:02:08 +0000
Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: ekP06kdzmg5n4AeF718L/AnV32+Q5fHJHkjOFhpYa3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:3c:6b:c3:6e:1c:58:1b:50:6c:f2:b3:b1:8e:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Aug 4 07:02:08 2025 GMT
Not After : Aug 5 07:02:08 2025 GMT
Subject: CN=2c9065520f41f1127f84fe6469eee06edec6c6b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:58:14:c1:24:e7:58:70:c9:9c:7b:c4:e2:7e:
a3:5b:55:19:98:2c:7e:04:df:f4:3e:1a:c8:39:fe:
c5:6a:65:be:f4:34:57:96:f7:48:0a:74:ce:5b:0f:
cf:37:61:9c:95:2b:5f:f6:80:95:cd:57:80:16:1b:
d4:c1:43:52:08:af:c8:ec:3e:e0:06:a5:e6:cc:2e:
38:d4:a9:9a:5c:0a:63:27:40:af:bc:66:b0:9d:d8:
d5:88:fc:9a:3b:16:9b:48:be:a7:98:44:14:aa:de:
fa:12:a4:f2:64:49:49:39:3f:03:36:aa:1d:d1:7d:
52:c5:1d:c8:bf:31:9a:d7:63:6f:e2:f4:f5:b9:bf:
ee:1d:51:b0:da:4f:46:0d:f4:07:ce:c6:d7:2b:fa:
70:cb:79:ca:ec:38:81:c1:d2:00:ea:f9:15:fc:3a:
76:7b:53:b4:5e:95:d5:f7:bb:e1:0d:d0:61:bb:2c:
ce:39:7c:ee:3a:3a:69:2d:ef:e2:fe:99:2c:9b:b0:
0d:ec:c6:be:41:f1:f2:a3:85:40:38:bc:5d:d0:b2:
c1:74:cf:56:32:1e:85:78:cf:f0:cc:87:cb:d6:81:
06:17:0c:a9:3d:e9:45:3d:73:ea:92:77:3b:b7:85:
86:82:6a:ca:79:d3:a9:cf:a5:a2:df:98:57:84:ff:
04:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:90:65:52:0F:41:F1:12:7F:84:FE:64:69:EE:E0:6E:DE:C6:C6:B8
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:a6:85:54:68:c0:c0:6f:64:f6:ed:bf:cd:6d:f3:43:bc:a2:
94:55:be:db:13:af:5e:4a:4f:68:cb:fa:2d:87:af:c0:c4:ee:
d1:5b:d4:be:e5:f3:b9:06:65:99:3c:69:61:4a:31:d6:b2:0a:
ef:90:b7:69:8f:f3:0f:a4:51:2d:cd:dd:a8:9f:7e:df:26:4c:
57:2a:c4:ef:de:8b:7e:80:2c:7c:58:99:88:cf:40:ac:f3:f0:
15:56:2a:51:e3:bd:e7:33:bc:62:a5:2d:43:45:d6:99:2d:e9:
ba:11:c7:df:9a:a6:31:4d:7d:f0:2b:a1:4a:51:35:b9:58:fe:
a7:25:01:87:35:9d:90:16:c7:6d:f4:33:97:c4:f1:f0:f5:aa:
f6:08:61:5d:bd:f0:ab:b3:92:e2:26:11:54:fe:3e:59:26:2f:
f0:39:b2:08:06:a4:4a:3f:48:e9:5d:39:99:6a:e2:56:8a:f4:
52:28:1a:9a:92:d0:dc:27:e0:c5:20:82:d6:84:bd:ed:f9:8a:
d2:18:db:d9:d1:16:f2:e4:96:3a:ba:3f:15:81:94:23:dc:cc:
d0:33:0b:60:38:b1:dd:18:eb:25:48:ef:40:09:07:b2:be:b2:
6f:f7:c3:01:6d:bc:12:41:b0:ee:a2:e8:ba:81:fb:21:1d:42:
c2:f5:e8:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:16:17 2025 by rpki-client