Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: +IZvP+ilVumf+/UBRJo1SE4uNrPc5cjv6Sn3ULXUjHc=
Subject key identifier: 10:CD:5A:4E:FF:61:07:AF:FF:4D:B3:ED:B9:E4:9B:41:EF:F1:2C:B0
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 01988920513F8A0D426C76729C9613C1FB73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 1131
Signing time: Fri 08 Aug 2025 10:00:53 +0000
Manifest this update: Fri 08 Aug 2025 10:00:53 +0000
Manifest next update: Sat 09 Aug 2025 10:00:53 +0000
Files and hashes: 1: QGKSiFavp9LMElSoLZBhqzLqFMM.roa (hash: ip/2uYmlI+BKnaF8k1mqNHwsPmNtHEQrk8aTeSCdMUA=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: pnIf8NDBVnMBVLjZ4wsaxrKcIhvZPBNhZ6SiBiDPZxY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 10:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:20:51:3f:8a:0d:42:6c:76:72:9c:96:13:c1:fb:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Aug 8 10:00:53 2025 GMT
Not After : Aug 9 10:00:53 2025 GMT
Subject: CN=10cd5a4eff6107afff4db3edb9e49b41eff12cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ea:db:c2:b2:41:33:7f:39:2f:e6:e9:da:df:
41:b1:48:54:c5:2a:52:9f:b5:74:9b:b2:60:ac:9a:
24:c6:e6:15:25:ba:b1:96:b6:b9:d2:f7:2e:ca:06:
5e:75:6f:61:e3:e5:99:90:65:62:db:6e:44:06:20:
89:b0:b2:f3:e6:0d:1f:55:da:fa:8a:42:0e:6d:43:
94:7d:a1:8b:61:3b:e8:98:53:fe:4b:7f:dc:0b:31:
9b:22:65:09:21:5e:94:e3:96:89:d3:11:67:90:bd:
97:6e:78:b3:f7:e5:ce:da:f7:da:df:28:24:62:42:
19:bf:89:be:89:b6:83:81:1f:cc:64:11:47:ee:fc:
9a:3d:02:5e:f5:7f:02:3d:60:28:1e:94:8d:c2:0d:
63:d5:34:f6:f1:70:72:3f:6a:30:e0:13:db:46:f3:
86:cf:11:6c:61:e8:41:d1:48:cd:53:4e:44:36:c3:
ed:16:28:0d:07:f4:22:f0:91:96:68:c3:2d:e3:68:
bd:da:22:a5:90:2b:38:5a:57:75:3c:c9:0b:12:1c:
20:45:1e:26:56:03:42:d3:5e:67:45:17:63:c1:c1:
b3:14:27:4d:c1:3d:50:58:c6:29:88:54:fb:95:c1:
fd:17:5d:e6:4b:02:7f:47:b1:ef:66:bd:ab:0e:58:
32:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CD:5A:4E:FF:61:07:AF:FF:4D:B3:ED:B9:E4:9B:41:EF:F1:2C:B0
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:78:c2:66:54:b2:f1:13:73:7c:fa:7f:c0:0d:52:d9:6d:29:
01:a0:fb:0a:90:66:cd:19:52:da:21:b1:b1:19:95:f3:ae:b2:
f6:f1:bf:fc:10:3c:cf:4b:3a:2d:89:e5:93:7c:75:14:88:10:
14:3d:22:b2:fc:90:96:44:85:11:e9:45:d9:28:57:f6:e3:80:
4b:61:23:d0:a4:9b:27:dc:d9:91:44:ee:a0:e9:0e:ad:9a:4a:
2b:04:ca:d9:89:25:96:7a:01:18:ba:11:89:1c:1f:4e:52:55:
32:49:54:b2:47:d9:fb:e2:9d:5a:d5:0f:19:94:52:72:a4:a2:
d6:f5:55:94:51:9d:9e:09:63:09:f2:10:d2:b1:39:4a:89:9f:
ac:81:b6:f2:61:34:a4:b2:e2:46:c4:e3:ac:45:48:e9:bc:d1:
79:be:c2:df:dc:90:e7:77:5b:15:2e:15:0e:c7:47:f8:f9:70:
f5:aa:a7:7b:1f:a8:03:40:e0:8f:60:6b:67:76:7d:0a:3f:6f:
43:64:55:da:2f:a6:95:23:02:87:f5:89:c5:2e:30:c4:ce:29:
ed:ac:20:9b:67:8b:f5:24:72:e7:42:91:f0:1b:77:1a:0b:1c:
a3:4f:85:46:ee:be:c7:98:b8:6c:e2:aa:ec:12:9d:63:9b:27:
72:a3:c4:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 13:06:07 2025 by rpki-client