Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: qmTahC1VBX/r34ZUiwOA1hxrW7JSEtcEbIhA6QFX7kM=
Subject key identifier: C1:F9:AB:AB:B1:5B:14:63:8F:24:AF:B4:41:8A:C0:B5:F3:C1:49:56
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 0198A0BB433CEAA011FF9233AC8934250FC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 0AB8
Signing time: Wed 13 Aug 2025 00:01:23 +0000
Manifest this update: Wed 13 Aug 2025 00:01:23 +0000
Manifest next update: Thu 14 Aug 2025 00:01:23 +0000
Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: 01dQcJhhP2xyb/+Vhq7ll54ImO33J8onNORLGHi7njw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:bb:43:3c:ea:a0:11:ff:92:33:ac:89:34:25:0f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: Aug 13 00:01:23 2025 GMT
Not After : Aug 14 00:01:23 2025 GMT
Subject: CN=c1f9ababb15b14638f24afb4418ac0b5f3c14956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:3d:cc:22:c0:b0:a6:89:9e:f4:0e:85:81:fd:
16:db:8a:20:08:4f:27:20:60:77:14:ba:58:e3:64:
a8:7a:58:f1:05:7c:65:b4:f4:96:70:69:ee:d0:74:
97:a0:a1:14:d8:bb:bb:2b:94:46:8d:10:d0:ad:96:
69:17:34:b1:96:82:4e:49:df:2d:e4:5d:18:c2:a3:
7a:32:e1:4f:7b:d0:7e:04:34:c5:5b:45:4b:7a:f3:
9e:77:1a:f5:f1:8d:32:d9:b0:50:b3:61:e6:ab:b0:
b4:49:4a:88:fa:fd:79:aa:c5:fd:5b:fb:0d:2a:95:
2a:22:ee:91:6f:19:a5:05:c4:a3:2b:15:98:86:cc:
e7:9f:30:91:2b:f8:2e:03:28:4f:88:6a:6d:09:42:
d4:65:c9:be:aa:e1:ef:29:b6:8c:94:b0:e0:90:19:
bd:04:cf:b4:4e:45:4d:17:74:a5:a2:15:bb:92:3a:
7a:05:7a:19:d2:5f:f3:88:03:84:0d:c7:b3:c1:89:
d2:92:09:6d:aa:96:92:3e:1a:55:93:74:52:9b:c4:
26:19:8a:34:cf:37:ac:a4:24:72:51:25:03:20:0e:
50:0c:e0:b4:47:be:7e:79:45:e0:ca:31:74:7b:b9:
2f:3e:cc:02:d7:5d:63:40:d5:a2:bc:ad:e3:ae:2f:
78:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F9:AB:AB:B1:5B:14:63:8F:24:AF:B4:41:8A:C0:B5:F3:C1:49:56
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:c4:7f:39:d3:89:cc:6f:0f:4e:15:37:45:4b:9f:6c:49:d7:
2b:1d:6b:5c:00:e5:61:0d:9b:43:5f:7b:4d:43:04:81:f3:60:
1a:71:1b:67:d0:53:bd:00:b5:f5:cb:53:5d:f6:4a:f5:9b:e2:
27:eb:6d:c1:d1:d8:aa:0d:ce:a1:03:12:96:4e:19:79:b8:6c:
c4:e7:27:b4:c5:59:c0:17:a4:a6:9a:c1:b0:a9:92:76:50:b1:
83:97:18:16:06:4d:02:7a:f1:80:78:b1:73:f1:18:fb:3a:46:
6c:37:c8:6c:9b:91:ef:a2:66:c6:c8:62:f1:6d:15:92:72:5d:
e5:cc:e0:f7:cb:1e:89:be:b0:b1:85:ca:b9:bb:81:90:a8:70:
4f:90:57:72:02:f4:1a:72:6e:98:33:0d:95:46:90:f8:93:d7:
47:26:65:d9:23:93:45:76:f0:e7:b4:e2:9a:d4:80:f9:f2:39:
b9:61:89:6a:b6:85:55:d1:ec:00:1a:db:e6:66:43:b9:56:84:
47:60:9d:a8:cb:55:4b:35:96:c8:98:50:ef:25:e5:72:96:23:
00:77:e8:1d:0d:42:ce:bb:d0:31:2c:1e:49:3e:69:c8:b2:5b:
6e:e0:19:b5:5f:46:bb:6e:44:63:55:7f:a1:52:e5:4a:08:38:
2d:dc:01:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:52:38 2025 by rpki-client