Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
File: XfEaGA3xeZTkitMxhyz9AK2augQ.mft (raw, json)
Hash identifier: TZkEcQX9ezlszo0bk3xELvJgLEUyi2Ax6J1TF6kfzmo=
Subject key identifier: 3D:53:E0:3D:F0:95:89:6F:96:F0:04:BF:6F:E2:68:49:4E:81:DC:78
Authority key identifier: 5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
Certificate issuer: /CN=5df11a180df17994e48ad331872cfd00ad9aba04
Certificate serial: 01989FDF27106FCCA76B4F4A5C3964869EEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
Manifest number: 162E
Signing time: Tue 12 Aug 2025 20:00:58 +0000
Manifest this update: Tue 12 Aug 2025 20:00:58 +0000
Manifest next update: Wed 13 Aug 2025 20:00:58 +0000
Files and hashes: 1: Ncjyog8MF3WbF2yJkOiT3QGNrY0.roa (hash: mac69omVU5l4vKMkEn8yNVakFQh8bBKDgGibhl+5Pew=)
2: XfEaGA3xeZTkitMxhyz9AK2augQ.crl (hash: xdwgJJ8PBPHgi3Opnvi3xN5Rh8LyOBgqJ60OtJEEkSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 20:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:df:27:10:6f:cc:a7:6b:4f:4a:5c:39:64:86:9e:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df11a180df17994e48ad331872cfd00ad9aba04
Validity
Not Before: Aug 12 20:00:58 2025 GMT
Not After : Aug 13 20:00:58 2025 GMT
Subject: CN=3d53e03df095896f96f004bf6fe268494e81dc78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9b:bc:21:90:b8:2c:82:99:0b:6a:c0:83:55:
51:31:32:a8:4e:68:8c:52:8a:ef:b1:69:fc:08:e1:
d3:3e:e0:a9:72:26:50:00:36:f4:03:f8:be:53:94:
ee:a0:68:ba:ae:d2:e9:44:7f:1a:5f:30:90:4e:dd:
4c:70:64:4f:ed:86:c0:a7:ce:95:e7:33:24:3e:5f:
9c:70:49:38:a6:5e:00:30:dc:d3:75:b6:11:25:98:
e7:c9:e2:ed:3b:11:07:c9:15:f7:6d:cc:3b:c3:d5:
c5:78:90:26:6d:53:c9:46:54:72:26:a7:c7:dc:03:
59:74:0c:53:0f:3c:57:e3:2c:72:ab:8e:58:a2:43:
66:1a:15:f7:c6:ff:63:32:fb:75:d9:1c:05:67:d5:
df:b5:f9:63:3f:1d:53:d9:ef:2b:c7:ec:05:8a:29:
ee:55:26:7d:39:33:8e:96:43:57:b9:87:e7:cc:65:
ae:66:24:75:28:d9:ca:87:da:79:06:f4:42:09:36:
16:04:6c:5c:0b:ef:9b:8f:9d:5f:51:42:a3:88:0e:
6a:ee:5e:c4:a8:f9:1b:17:ed:de:b9:fe:21:0c:6a:
66:cc:ea:09:c8:78:5a:a4:14:9b:69:60:df:41:d0:
43:0b:d2:ab:98:82:a0:d5:a0:24:1e:e7:c0:1b:7e:
ff:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:53:E0:3D:F0:95:89:6F:96:F0:04:BF:6F:E2:68:49:4E:81:DC:78
X509v3 Authority Key Identifier:
keyid:5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:dc:1c:05:87:0a:92:fb:38:66:1e:85:d5:fd:75:76:6e:09:
a0:40:8e:60:e1:90:21:d4:04:2b:2f:e1:7d:3f:c5:b3:f0:3a:
1e:b3:6c:cb:b5:e0:94:8b:c0:f4:45:d0:b5:df:6d:3e:04:c5:
b8:4d:cf:a1:1a:7e:62:04:fb:91:ca:50:c6:79:70:57:e2:65:
d1:ca:35:18:6c:1a:aa:20:c7:2d:ae:a1:0e:6a:23:ea:6b:34:
63:7f:f3:28:4b:b4:79:93:dd:bb:08:f0:cf:8a:6b:ba:94:c2:
f9:75:b0:56:86:9b:30:16:d6:37:b1:ba:0a:6d:b3:7d:80:31:
e8:0c:c2:c1:f0:99:e4:20:ca:29:81:57:75:33:51:db:8c:1f:
98:b0:e7:c6:22:c2:86:a1:3b:f9:9f:86:bd:79:09:16:61:7f:
5c:f0:10:e9:13:ed:2d:9d:a1:03:28:d6:08:d4:cb:20:74:d3:
ba:e6:f7:43:d5:99:6e:6f:95:08:bf:bd:da:11:84:c5:d7:ba:
3b:df:c5:fd:60:1c:17:1d:82:64:50:c1:1b:ad:03:8a:ef:b6:
36:16:d9:bf:ad:00:f6:19:23:03:bf:99:db:c5:54:5d:b0:83:
ee:c7:15:de:79:d2:71:19:a2:af:a5:a7:d0:ce:61:2a:49:64:
bb:5b:59:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:52:42 2025 by rpki-client