Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
File: xafD9LFGk1EiAllaik-VsNa3oQE.mft (raw, json)
Hash identifier: KeoR/5G9lYgYOKeiS3g2fnn97map+OQUJpeqf+zW0PM=
Subject key identifier: AE:3A:FD:5A:C7:84:46:EF:44:F2:C1:26:D4:F0:5F:BF:87:BD:01:64
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 019882E7B33279717392D22E557D2CB48674
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
Manifest number: 15B2
Signing time: Thu 07 Aug 2025 05:01:19 +0000
Manifest this update: Thu 07 Aug 2025 05:01:19 +0000
Manifest next update: Fri 08 Aug 2025 05:01:19 +0000
Files and hashes: 1: Bbxo5GOkMtBPV4eyDiJBtgGCAvs.roa (hash: gPTOZ/QwaGNzYqcGskaYm0Q9CUgsB/kmTCxE6lNVoV8=)
2: GkWtiMh4Kekgq83feCXLfv_pub8.roa (hash: UboiG7GPy5Vm4OyfuuuEVh7hhcZoHsmQQgbXPLJ/4ug=)
3: ScP8kW7fVZKKIlJqtoPhrGG1uQo.roa (hash: kBK8cN2i6ByxK8RJnTQxES9FzgvOd8FoOcnJVY/e4Bc=)
4: xafD9LFGk1EiAllaik-VsNa3oQE.crl (hash: LbBjC3nLbycTlDzX2SBvJsMUUg2PY4XpCutJ7MGztTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 05:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:e7:b3:32:79:71:73:92:d2:2e:55:7d:2c:b4:86:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: Aug 7 05:01:19 2025 GMT
Not After : Aug 8 05:01:19 2025 GMT
Subject: CN=ae3afd5ac78446ef44f2c126d4f05fbf87bd0164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:11:a1:69:29:a0:d3:1f:51:28:93:c3:70:71:
88:e9:1a:89:6f:df:a8:bb:40:c0:fb:ea:80:45:3e:
1f:78:c4:90:6f:42:99:2c:f6:ac:89:16:99:53:fd:
a5:0c:e3:1c:2b:21:72:be:8f:39:cb:c6:d6:5b:55:
8b:ba:02:ef:dd:31:fb:a0:d6:16:c6:9b:fb:00:32:
53:ac:07:a3:2a:b7:61:a9:05:cb:a8:16:5e:8f:92:
16:9e:e5:dd:73:7b:2d:f8:fb:fd:9d:0e:13:ad:a3:
bb:a8:a5:e5:a3:47:6f:86:5d:13:e3:b1:21:8c:3f:
82:6b:0e:e5:5e:11:01:76:46:17:20:b6:1a:41:51:
71:1d:e9:8b:5e:1a:e0:d3:01:e4:cb:4a:f5:33:6d:
6f:32:fd:c5:f1:9b:72:65:15:7f:6a:83:e9:f1:a1:
17:4c:9b:26:1b:34:b1:72:25:ab:d6:a7:63:07:fb:
9c:b9:a7:71:0d:11:67:57:54:e3:03:96:dd:70:74:
e4:15:a2:88:36:7c:2b:28:da:b8:73:d7:48:51:60:
55:10:5f:35:b2:26:b1:b8:16:8e:c4:f4:f9:ce:b6:
4e:7f:cf:f8:ca:49:8b:4e:41:d1:96:95:0f:d0:c7:
cc:10:bc:c8:d3:33:30:02:6b:ab:b7:18:6d:45:4f:
6e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3A:FD:5A:C7:84:46:EF:44:F2:C1:26:D4:F0:5F:BF:87:BD:01:64
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:5e:c3:8a:c4:6d:13:12:0b:79:b3:4f:a3:1b:ee:91:d8:0d:
69:90:b9:8d:b2:c7:83:7f:3d:2c:90:a2:65:b1:2b:f0:43:ac:
e8:17:9f:e5:46:6e:80:82:01:10:d9:8c:53:02:18:5b:d6:3c:
db:63:1b:11:92:eb:2c:14:a3:2e:91:6b:fd:0a:25:04:3c:cd:
5b:55:41:6c:ce:cb:19:dd:d1:fa:52:ed:fe:e1:d9:ab:fe:21:
9d:39:f3:ee:96:35:75:28:90:1b:2c:7b:7e:53:b9:a5:eb:4b:
a0:8d:97:e3:90:1d:79:dc:55:7c:93:73:7a:29:27:f8:b3:ca:
84:79:ed:92:8b:d5:7e:7b:cf:e3:6f:b1:ad:d2:fb:b7:b9:35:
84:ab:57:25:ae:75:fa:d7:ba:58:4b:28:14:8a:02:12:1a:a2:
43:c6:4f:0a:e7:cd:2c:3b:38:4a:63:ea:98:5d:0a:f4:b6:39:
c5:dc:91:40:55:27:06:2d:78:2c:ac:80:ed:b4:00:22:dc:6d:
e6:1b:6a:49:48:c2:64:11:c5:85:fc:97:c7:aa:41:47:e5:e4:
b2:a0:69:db:46:ae:33:96:c8:c1:c5:22:cc:c8:35:9e:2e:ce:
8d:7e:88:0c:b4:34:7e:91:c6:d1:09:6f:d7:29:8a:bd:e7:6c:
8d:cb:de:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiC57MyeXFzktIuVX0stIZ0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTdjM2Y0YjE0NjkzNTEyMjAyNTk1YThhNGY5NWIwZDZi
N2ExMDEwHhcNMjUwODA3MDUwMTE5WhcNMjUwODA4MDUwMTE5WjAzMTEwLwYDVQQD
EyhhZTNhZmQ1YWM3ODQ0NmVmNDRmMmMxMjZkNGYwNWZiZjg3YmQwMTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiRGhaSmg0x9RKJPDcHGI6RqJb9+o
u0DA++qART4feMSQb0KZLPasiRaZU/2lDOMcKyFyvo85y8bWW1WLugLv3TH7oNYW
xpv7ADJTrAejKrdhqQXLqBZej5IWnuXdc3st+Pv9nQ4TraO7qKXlo0dvhl0T47Eh
jD+Caw7lXhEBdkYXILYaQVFxHemLXhrg0wHky0r1M21vMv3F8ZtyZRV/aoPp8aEX
TJsmGzSxciWr1qdjB/ucuadxDRFnV1TjA5bdcHTkFaKINnwrKNq4c9dIUWBVEF81
siaxuBaOxPT5zrZOf8/4ykmLTkHRlpUP0MfMELzI0zMwAmurtxhtRU9uGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK46/VrHhEbvRPLBJtTwX7+HvQFkMB8GA1UdIwQY
MBaAFMWnw/SxRpNRIgJZWopPlbDWt6EBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFmRDlMRkdrMUVpQWxsYWlrLVZzTmEzb1FFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8zYTNiMmMtNzZiOS00OWI0LTgyMTgt
ZDEyZjFlMjQ1NmJhLzEveGFmRDlMRkdrMUVpQWxsYWlrLVZzTmEzb1FFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS8zYTNiMmMtNzZiOS00OWI0LTgyMTgtZDEyZjFlMjQ1NmJh
LzEveGFmRDlMRkdrMUVpQWxsYWlrLVZzTmEzb1FFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaF7DisRt
ExILebNPoxvukdgNaZC5jbLHg389LJCiZbEr8EOs6Bef5UZugIIBENmMUwIYW9Y8
22MbEZLrLBSjLpFr/QolBDzNW1VBbM7LGd3R+lLt/uHZq/4hnTnz7pY1dSiQGyx7
flO5petLoI2X45AdedxVfJNzeikn+LPKhHntkovVfnvP42+xrdL7t7k1hKtXJa51
+te6WEsoFIoCEhqiQ8ZPCufNLDs4SmPqmF0K9LY5xdyRQFUnBi14LKyA7bQAItxt
5htqSUjCZBHFhfyXx6pBR+XksqBp20auM5bIwcUizMg1ni7OjX6IDLQ0fpHG0Qlv
1ymKvedsjcveog==
-----END CERTIFICATE-----
Generated at Thu Aug 7 11:07:13 2025 by rpki-client