Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json)
Hash identifier: Bmmj7e1EYOG3nYlGPshi5qdtTvKRiW2HZyh8M+Y6oyM=
Subject key identifier: 02:9D:5D:E5:B1:9C:81:6E:E9:9B:81:31:97:5E:1B:EA:9C:D5:B2:08
Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d
Certificate serial: 0198729863E1C5E4450BA81B2D3F668DA281
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
Manifest number: 1236
Signing time: Mon 04 Aug 2025 01:00:46 +0000
Manifest this update: Mon 04 Aug 2025 01:00:46 +0000
Manifest next update: Tue 05 Aug 2025 01:00:46 +0000
Files and hashes: 1: Bu2qohV5DT207In6bmDkzPkl22w.roa (hash: yQgjgxJo0jD6Zb5Cbl39m04H6+9TPpDsNpPjtFWzK98=)
2: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: 4mqZMtOBI5HeLEfbEkR7PfqCjM3+LhELN8oi3gjwz04=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:63:e1:c5:e4:45:0b:a8:1b:2d:3f:66:8d:a2:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d
Validity
Not Before: Aug 4 01:00:46 2025 GMT
Not After : Aug 5 01:00:46 2025 GMT
Subject: CN=029d5de5b19c816ee99b8131975e1bea9cd5b208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:48:ad:df:6a:79:65:5c:31:4f:5d:53:94:f3:
d5:26:da:b5:e1:d5:ca:8f:40:50:8f:04:3a:38:bb:
23:f6:06:c5:b7:a9:64:cd:d0:b3:02:b5:1c:84:eb:
68:35:b9:11:3c:7c:20:32:96:9a:45:bf:15:cc:82:
8d:a8:75:bf:3d:2f:a4:d2:27:11:49:d5:83:21:3a:
ff:20:b6:23:1c:ea:c0:be:69:6e:ea:48:be:09:f9:
e9:ac:5e:b2:ac:5c:33:3e:82:04:cd:b4:d4:32:b0:
ed:35:c3:34:14:9a:a5:df:f1:3d:7d:50:6b:10:20:
de:7b:2c:4a:66:ff:ef:3e:e2:3b:e2:82:63:92:79:
c9:74:86:ef:6a:85:e4:7b:a4:f6:f6:37:af:db:2e:
cf:1e:a3:ae:94:8e:a1:14:6f:2a:26:b5:71:91:c6:
22:09:68:db:42:1c:53:4d:53:e2:65:0f:82:65:f0:
e7:db:02:bf:bc:70:bb:5f:53:cf:63:b9:19:87:68:
12:d3:c2:c4:84:23:fe:7a:f6:e4:2d:a5:43:0e:23:
f1:e9:68:fc:6a:61:59:5b:f1:dc:12:6e:f8:02:b7:
1d:f5:5e:3a:99:47:45:22:c5:b1:7f:78:3f:20:b0:
4d:ed:00:4f:62:fe:5e:09:44:ee:30:83:a7:0b:3c:
fe:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9D:5D:E5:B1:9C:81:6E:E9:9B:81:31:97:5E:1B:EA:9C:D5:B2:08
X509v3 Authority Key Identifier:
keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:78:30:49:8d:88:af:00:08:e2:01:55:83:e5:b0:6e:98:84:
6d:41:c4:1e:b5:9c:69:c7:52:ae:31:05:ab:6f:7f:2d:13:d2:
5d:da:10:c3:08:c8:65:66:24:5c:74:e1:7b:05:0c:c1:32:ce:
f8:38:50:b9:d1:0d:e7:61:5c:57:c3:c2:e8:19:c5:7d:bc:e2:
6a:8c:6f:80:13:e2:4e:09:bc:a5:31:0f:b3:e2:af:ec:38:26:
dd:8f:c7:e4:e4:ac:ab:3e:bb:f4:ad:8b:49:42:3e:25:e0:6d:
60:5a:9e:76:7d:e7:88:9c:61:21:b8:92:e5:c5:51:b3:11:91:
2d:6c:a4:2e:32:ee:4c:d8:bc:de:f8:eb:ae:50:1c:cb:ea:4b:
c5:c0:d0:a0:e1:43:9c:d3:96:6a:50:07:87:ea:f4:d8:65:9d:
2a:06:0f:19:20:61:5a:20:52:ef:7e:6a:2d:73:ab:94:57:e1:
d8:b7:71:5a:6b:31:f8:a3:b9:3d:79:0b:2d:cb:25:66:49:20:
c7:a5:54:c8:25:5e:b6:b3:d8:54:67:e4:ae:ec:8e:7e:28:03:
ef:ae:fa:19:0d:04:24:73:a8:62:69:94:68:6b:93:26:6e:47:
4b:e1:fa:b8:72:eb:1c:65:e4:1a:eb:03:f8:2f:71:9f:5c:ab:
63:cc:40:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:07:49 2025 by rpki-client