Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: FnGnTPNvDbG0NlAKYv4EkeZp52IK28c+4Q00/gcNfm8=
Subject key identifier: DA:56:B3:DB:AF:1A:F3:6F:B7:33:BA:DC:8A:13:2F:FA:E4:C9:ED:10
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 019873E2B463597020951553A6DB73BB843C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 0515
Signing time: Mon 04 Aug 2025 07:01:33 +0000
Manifest this update: Mon 04 Aug 2025 07:01:33 +0000
Manifest next update: Tue 05 Aug 2025 07:01:33 +0000
Files and hashes: 1: S6aYdrXE8VeCcP5w8D7hhhcOGoc.roa (hash: csN/l/mC6C7LyFwDFQUEKU3wX0HgZWqjImlEztzBO3Q=)
2: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: KbNgo0JHZkimHan2TU7oFL3vw6zc8AezlN9Grk/WcR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:b4:63:59:70:20:95:15:53:a6:db:73:bb:84:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Aug 4 07:01:33 2025 GMT
Not After : Aug 5 07:01:33 2025 GMT
Subject: CN=da56b3dbaf1af36fb733badc8a132ffae4c9ed10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4e:6c:30:35:e5:c9:15:a8:ba:3e:19:dd:5c:
c8:ee:f2:07:38:6f:9f:c0:9a:60:63:bb:0b:28:9c:
a3:5c:2e:54:e9:7e:a8:5d:ad:d0:0d:b9:01:6d:6e:
af:da:29:d0:98:f3:f0:03:89:31:00:6d:d6:bf:a0:
05:e2:05:ac:f4:5d:cf:6f:d0:61:17:37:03:b6:fb:
e9:11:1c:42:de:47:6f:01:3c:00:ce:e2:71:43:f9:
79:d3:9c:f6:03:99:73:63:48:21:8d:f6:26:4b:2d:
70:b6:77:4d:fe:3d:61:be:3a:d8:70:d0:8a:71:4c:
93:3f:2a:a6:24:5f:d4:90:84:91:5a:3c:43:c7:04:
2b:01:2c:8c:f4:d6:a4:52:29:81:81:7f:36:b3:1e:
24:b4:42:30:45:c2:4b:f6:8b:7a:e3:b9:82:f0:8d:
4e:e4:d6:3d:15:33:17:97:2d:e6:e7:80:2e:7f:d1:
48:62:82:99:fc:75:72:7f:ee:c4:9f:58:a7:b5:e3:
e7:8d:a3:12:71:18:e6:60:7f:0f:76:0f:da:1d:47:
70:a2:b7:33:06:72:51:8e:5f:e0:77:04:94:c4:82:
57:f5:1a:de:a8:35:b9:68:e1:63:ff:1b:ae:31:84:
8d:e4:9c:37:8c:9b:ec:09:ff:99:8f:07:5f:eb:0a:
9b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:56:B3:DB:AF:1A:F3:6F:B7:33:BA:DC:8A:13:2F:FA:E4:C9:ED:10
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:d7:ae:8f:25:ec:fe:34:d6:81:0d:8d:66:97:98:4b:84:03:
0a:fb:bb:fc:bf:64:06:cb:3c:ec:72:91:35:4f:b6:84:7d:07:
49:f3:2c:ce:b4:78:da:50:61:57:9c:16:22:49:83:7e:57:06:
6d:94:3a:5a:e7:03:d1:63:75:f9:04:5d:ef:c9:d9:4b:60:21:
b4:94:82:36:c1:e1:02:31:3f:61:6b:8a:9b:b6:e5:d3:b7:c7:
52:9c:96:08:7f:96:fa:a9:7c:d8:8b:2e:25:12:b3:b9:f9:7b:
f2:46:fb:78:a0:20:38:d2:48:51:d8:ca:ac:1a:1b:ed:83:7c:
1a:e2:27:80:21:89:c7:f6:9e:80:8c:76:ce:a5:e5:62:0b:7a:
31:5d:a8:2d:50:a7:9a:c3:89:ec:4f:91:75:de:d0:e9:01:37:
3b:02:38:0f:8c:c3:ef:51:56:e3:4d:e4:4d:f6:58:b0:a4:25:
0e:b0:d5:2b:71:99:d6:1c:30:7c:5e:77:5c:d6:78:92:a9:ab:
aa:b1:af:ae:91:51:9f:f3:d1:e3:04:35:2e:a8:55:ad:bb:c7:
47:38:fd:92:03:56:80:07:12:ce:76:f4:a9:f2:e1:80:20:de:
2f:90:31:94:f2:bb:31:ab:bd:dd:6a:1e:bc:15:4c:0b:3d:37:
f2:15:eb:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:17:53 2025 by rpki-client