Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
File: XqFlPhd6opVUAIBcjHW9DWhYOvw.mft (raw, json)
Hash identifier: BW39W5LTtDruSPCImCNbslbffXLvVoSWYM/M6/bU9Gg=
Subject key identifier: CC:6F:58:22:10:7B:5C:0A:A7:4A:85:28:D7:A1:78:57:3A:A3:16:0F
Authority key identifier: 5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC
Certificate issuer: /CN=5ea1653e177aa2955400805c8c75bd0d68583afc
Certificate serial: 01987FAF4F3E79D71505A09A16F273FBE15D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
Manifest number: 0AAD
Signing time: Wed 06 Aug 2025 14:00:52 +0000
Manifest this update: Wed 06 Aug 2025 14:00:52 +0000
Manifest next update: Thu 07 Aug 2025 14:00:52 +0000
Files and hashes: 1: XqFlPhd6opVUAIBcjHW9DWhYOvw.crl (hash: dlfJp8c+xpNpLliU1bz5jqU4mKPLQIoLagnXsDFnGl8=)
2: pG0gZB0nkw3GnTji0o-IVbuNrD4.roa (hash: viA8g+053tZ6I/BKlBgt30tnVs0+WwkriBcMwHPLKm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 14:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:af:4f:3e:79:d7:15:05:a0:9a:16:f2:73:fb:e1:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ea1653e177aa2955400805c8c75bd0d68583afc
Validity
Not Before: Aug 6 14:00:52 2025 GMT
Not After : Aug 7 14:00:52 2025 GMT
Subject: CN=cc6f5822107b5c0aa74a8528d7a178573aa3160f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:00:3f:07:10:99:b4:ab:4f:fd:1a:5c:3d:0d:
8c:c8:2e:be:91:71:20:ab:8b:61:eb:2f:c9:ed:00:
28:8d:79:f5:2e:bd:e0:88:c9:df:cb:59:eb:30:4b:
90:ea:b4:10:ef:87:44:75:32:ee:3f:7f:5a:0a:78:
bc:77:65:1b:19:35:89:d8:a7:67:a7:51:9c:bd:c9:
88:4f:b8:7a:46:9c:d7:60:2f:a4:8f:00:28:18:d8:
e1:6f:0f:53:90:de:24:9d:57:cb:d0:60:e5:9d:87:
b6:72:23:75:15:34:9e:20:eb:b0:4a:82:7d:0c:b7:
06:5e:ff:c2:77:00:83:9e:e4:97:e8:5e:cd:58:57:
d2:d6:51:28:50:28:66:0f:5a:42:f1:fa:48:77:15:
5c:4b:2c:57:c8:43:91:9c:f9:30:15:a3:22:95:28:
42:c4:d1:cf:6d:7f:c3:1c:c7:27:40:6a:96:f8:35:
31:ae:c4:46:52:bf:26:6a:a0:73:b5:4a:18:e9:c0:
1e:0a:b1:09:b9:36:a9:b9:0f:55:ab:32:ca:a3:39:
90:9d:2e:cc:70:34:99:9e:2e:a9:db:13:21:fe:63:
74:97:ad:5e:05:6f:d9:06:e1:81:1c:36:22:a3:e1:
bc:7f:87:1c:d2:a0:4b:69:fa:fe:7f:6b:b5:a3:cc:
0c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:6F:58:22:10:7B:5C:0A:A7:4A:85:28:D7:A1:78:57:3A:A3:16:0F
X509v3 Authority Key Identifier:
keyid:5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:f2:6a:f7:96:6e:bd:b0:2c:61:f1:a5:a6:43:9e:33:e5:b7:
ac:b5:ca:76:95:15:cb:b9:21:0e:b6:fc:6f:47:12:4b:10:e2:
83:96:ac:d0:7d:ed:42:c3:a6:30:21:46:ec:7a:c0:91:b4:77:
e1:14:27:0a:74:c1:fc:09:cc:0f:1d:9a:a5:65:36:00:37:35:
77:24:73:42:2e:1c:29:74:77:86:05:c1:60:86:88:25:27:cf:
b1:d5:71:a1:5c:11:94:60:7d:f9:87:f2:a3:eb:cd:45:ee:4b:
0e:71:5e:ac:5c:5d:1a:27:4d:37:67:af:b6:ec:f1:34:35:5c:
dd:a7:fd:d7:17:6a:af:96:e1:37:41:36:65:34:e9:bf:a2:2a:
f7:4c:1e:df:d8:26:13:bf:1e:15:a8:9b:d4:b4:1d:80:31:f5:
64:ac:82:50:b8:da:48:03:3b:93:3e:48:78:21:1b:cb:1a:b9:
f0:c5:f4:73:f1:57:4f:85:67:b7:80:00:3e:02:8f:c4:b3:13:
2a:f4:66:4f:d2:74:e1:21:3b:99:75:e8:7d:83:5b:f7:85:1d:
f5:e0:8c:4d:14:c9:d2:8d:d6:cb:27:f6:67:48:2b:68:b3:f8:
a8:95:8b:f4:11:7e:20:a4:ab:bd:f6:ec:da:b5:46:62:71:05:
ed:18:65:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh/r08+edcVBaCaFvJz++FdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlYTE2NTNlMTc3YWEyOTU1NDAwODA1YzhjNzViZDBkNjg1
ODNhZmMwHhcNMjUwODA2MTQwMDUyWhcNMjUwODA3MTQwMDUyWjAzMTEwLwYDVQQD
EyhjYzZmNTgyMjEwN2I1YzBhYTc0YTg1MjhkN2ExNzg1NzNhYTMxNjBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAA/BxCZtKtP/RpcPQ2MyC6+kXEg
q4th6y/J7QAojXn1Lr3giMnfy1nrMEuQ6rQQ74dEdTLuP39aCni8d2UbGTWJ2Kdn
p1GcvcmIT7h6RpzXYC+kjwAoGNjhbw9TkN4knVfL0GDlnYe2ciN1FTSeIOuwSoJ9
DLcGXv/CdwCDnuSX6F7NWFfS1lEoUChmD1pC8fpIdxVcSyxXyEORnPkwFaMilShC
xNHPbX/DHMcnQGqW+DUxrsRGUr8maqBztUoY6cAeCrEJuTapuQ9VqzLKozmQnS7M
cDSZni6p2xMh/mN0l61eBW/ZBuGBHDYio+G8f4cc0qBLafr+f2u1o8wMvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMxvWCIQe1wKp0qFKNeheFc6oxYPMB8GA1UdIwQY
MBaAFF6hZT4XeqKVVACAXIx1vQ1oWDr8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHFGbFBoZDZvcFZVQUlCY2pIVzlEV2hZT3Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9hNGFmMTUtN2ZkZC00NWE0LWExNzIt
MWRmOGZhMjBmYTllLzEvWHFGbFBoZDZvcFZVQUlCY2pIVzlEV2hZT3Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy9hNGFmMTUtN2ZkZC00NWE0LWExNzItMWRmOGZhMjBmYTll
LzEvWHFGbFBoZDZvcFZVQUlCY2pIVzlEV2hZT3Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWvJq95Zu
vbAsYfGlpkOeM+W3rLXKdpUVy7khDrb8b0cSSxDig5as0H3tQsOmMCFG7HrAkbR3
4RQnCnTB/AnMDx2apWU2ADc1dyRzQi4cKXR3hgXBYIaIJSfPsdVxoVwRlGB9+Yfy
o+vNRe5LDnFerFxdGidNN2evtuzxNDVc3af91xdqr5bhN0E2ZTTpv6Iq90we39gm
E78eFaib1LQdgDH1ZKyCULjaSAM7kz5IeCEbyxq58MX0c/FXT4Vnt4AAPgKPxLMT
KvRmT9J04SE7mXXofYNb94Ud9eCMTRTJ0o3Wyyf2Z0graLP4qJWL9BF+IKSrvfbs
2rVGYnEF7RhlZw==
-----END CERTIFICATE-----
Generated at Wed Aug 6 18:48:05 2025 by rpki-client