Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
File: XM3soXHkIseck4wnMqkNSKjFPAY.mft (raw, json)
Hash identifier: zUaz2KJWrv2rejhnABIO3+RUjIDxObZ/gO70jxYXIBA=
Subject key identifier: BD:00:C4:6F:37:F4:38:5B:98:4A:45:92:AF:B0:97:E6:BB:2C:4F:2F
Authority key identifier: 5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
Certificate issuer: /CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Certificate serial: 01987AF761AC878C14B6FEAAFF844F7DD125
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
Manifest number: 1627
Signing time: Tue 05 Aug 2025 16:01:29 +0000
Manifest this update: Tue 05 Aug 2025 16:01:29 +0000
Manifest next update: Wed 06 Aug 2025 16:01:29 +0000
Files and hashes: 1: 0l0FRi1gOGd0TS4FZSN0Y79Cp9A.roa (hash: 86dCUtTfvoVch56QFLTlRl27DwnhOkUYBn6k7s/V1lA=)
2: 1ZFRCjoLi_l_VlnDb8o8tJWIa2E.roa (hash: vVgcWoftvDNuMTcgCwdMnGyQwGXGLdFZoBkxUeU+jcg=)
3: LxxlY-veNdEFSuClmgliyHMOZOA.roa (hash: eyCm9s0PQeZ1TTpko+C38z1BbPAWbfE1nA0PWObj7+Q=)
4: NqBM7SejbvGbff9d0C8tNNMd9cE.roa (hash: NsdFpCr4tDnCXl/0XE2a5AdGU138fFNht03h3yMplDQ=)
5: XM3soXHkIseck4wnMqkNSKjFPAY.crl (hash: rQYSkzpBlwj+Y3e3CWVHXge7KNH2b5zlFc1PrAa24GM=)
6: aa3wYkdpjQEDieV4Tr1D1UlS-yQ.roa (hash: OvNz6w0TsSCTT94cQ7JVYM2YwdlsjARoid2lWLlXj5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:f7:61:ac:87:8c:14:b6:fe:aa:ff:84:4f:7d:d1:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Validity
Not Before: Aug 5 16:01:29 2025 GMT
Not After : Aug 6 16:01:29 2025 GMT
Subject: CN=bd00c46f37f4385b984a4592afb097e6bb2c4f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:63:a5:59:4e:73:1c:74:31:8b:71:81:88:6c:
18:50:4a:b5:48:8a:fd:08:8e:5e:46:2b:e2:0a:f9:
d5:17:c5:36:36:0c:c8:e3:87:69:1f:82:cd:1c:d5:
2b:51:d5:7e:7e:5c:33:f9:69:a8:e9:7b:53:7d:4e:
b3:e7:d3:c3:e7:b2:d1:58:45:b4:06:36:67:24:5d:
37:94:c5:39:1d:79:37:fa:8d:69:eb:3f:1d:3d:4b:
9e:4d:ee:dd:b8:e3:1c:2b:bf:bf:ba:3a:2b:c3:1b:
a9:c3:ff:17:66:d7:85:39:f1:21:04:48:fe:10:ff:
66:f5:ba:55:3b:ea:88:77:a3:04:75:25:89:aa:48:
b2:e4:3c:c6:5b:7a:61:48:2e:64:8d:72:24:0c:47:
d0:e0:6c:fd:03:a9:49:da:0b:b6:12:3b:e6:f4:d6:
b5:29:dd:ec:9b:b3:77:28:07:50:8f:62:51:a6:f3:
98:0b:3e:5f:f1:00:2b:bc:02:8d:56:07:28:ea:28:
b0:99:e5:c0:16:7f:c9:a4:6d:96:78:bf:5c:4e:be:
ef:3d:b5:e1:df:0d:f4:b2:c7:52:6c:e7:c2:ca:fd:
ff:9e:0d:18:80:a7:0e:28:3f:5a:b5:69:02:e2:fb:
d2:ab:4e:6c:ab:d2:92:5f:94:8c:1b:b9:90:44:4f:
61:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:00:C4:6F:37:F4:38:5B:98:4A:45:92:AF:B0:97:E6:BB:2C:4F:2F
X509v3 Authority Key Identifier:
keyid:5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:9d:a5:e7:7d:8e:23:f1:f0:2c:2a:3c:e4:50:f7:c1:af:20:
b4:b5:f4:e9:ca:ed:34:1a:19:65:85:ea:76:39:31:88:df:3d:
f2:9b:eb:92:ab:a4:14:4e:1c:2d:3a:b8:ba:c4:28:2d:f9:13:
04:da:87:98:77:ad:f2:32:c0:a8:9e:11:d2:69:3a:89:07:03:
10:a4:99:0c:a0:a9:19:97:65:70:c3:d6:6b:6a:c7:67:44:1c:
f1:f5:c2:d5:1b:06:43:45:c5:a6:02:41:f6:14:20:78:6e:c4:
6a:bb:d4:28:c0:69:09:62:cb:44:cc:37:d5:7a:27:a7:db:f9:
75:87:47:32:eb:d1:15:7d:5c:ab:72:65:cb:7c:37:5b:d1:84:
18:fc:9b:85:ec:d8:11:45:68:9f:e6:47:8f:14:4a:94:ae:06:
e1:b4:2a:24:b2:e9:9d:52:c3:87:d2:2a:11:1c:5d:be:31:a6:
4f:63:c7:09:0d:f5:7d:11:a6:bc:cc:dd:c8:59:9a:40:f2:56:
ce:da:52:dc:50:c3:b8:cc:ad:32:1f:2a:e4:11:d9:50:5b:bb:
44:c8:26:9f:72:dd:55:55:b6:c5:6b:7d:f3:35:08:27:b1:3d:
56:9f:86:f8:ab:5e:6a:98:52:48:3a:cf:50:ca:e1:d5:89:f0:
2e:f4:ef:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 23:12:24 2025 by rpki-client