Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
File: XiZI8SkNRHG821C4K-TtkyADCU0.mft (raw, json)
Hash identifier: e+M93o4aOLWiEF8RI3gF8W5mGqiatp3dPuF8STvAtak=
Subject key identifier: 84:EA:BC:CE:9E:C8:C6:9D:E7:25:E7:4F:72:C5:16:82:41:5E:F6:71
Authority key identifier: 5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
Certificate issuer: /CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Certificate serial: 01987C7753FD44D643710E1DDD322C17320B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
Manifest number: 15AD
Signing time: Tue 05 Aug 2025 23:00:51 +0000
Manifest this update: Tue 05 Aug 2025 23:00:51 +0000
Manifest next update: Wed 06 Aug 2025 23:00:51 +0000
Files and hashes: 1: BECHjRO1sNTrECspSOXRaHeMWRM.roa (hash: CUP2bSCGR2R7pQJIeBFSspVhJwtI4r06AoqaZ9LnrhQ=)
2: XiZI8SkNRHG821C4K-TtkyADCU0.crl (hash: hbwCAqcIe/meuZi+CKn4VmCCk7sjyKJYT1HYnd5nXd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:53:fd:44:d6:43:71:0e:1d:dd:32:2c:17:32:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Validity
Not Before: Aug 5 23:00:51 2025 GMT
Not After : Aug 6 23:00:51 2025 GMT
Subject: CN=84eabcce9ec8c69de725e74f72c51682415ef671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:37:6a:06:95:47:43:18:16:77:7b:9e:74:10:
f3:98:74:33:f6:e8:80:dd:32:c2:2a:dd:c5:ee:01:
a6:77:6f:74:e6:ba:e1:ac:45:6b:31:f5:04:99:8f:
c6:21:69:00:13:34:31:fd:4f:3d:28:a9:ca:f7:b6:
1d:c1:a8:b7:f9:da:eb:76:7d:f9:db:e8:97:2d:ec:
0a:7e:36:06:76:86:1e:0d:21:40:a2:79:d5:a0:a1:
da:6d:7c:19:68:c5:94:e4:0f:1a:87:a7:a2:5a:38:
5e:d5:42:d0:97:c4:01:14:7a:4b:1f:c7:56:78:a8:
0b:8f:4a:11:3e:7b:cf:c7:c4:75:8b:9a:4c:68:4c:
83:06:38:54:35:c8:87:1c:f1:19:a0:dc:1a:97:a3:
bd:6e:aa:02:14:fe:2a:a6:37:b2:62:37:4d:40:53:
00:69:ed:f4:68:b6:34:13:ea:94:41:a9:88:15:56:
5a:3f:50:61:d4:23:db:eb:22:92:10:b1:c3:86:2b:
0a:07:98:1b:92:a8:64:c2:92:ea:b8:c6:51:7b:5d:
97:65:c2:bf:a8:67:e2:87:bf:46:74:40:40:a4:dd:
f5:e8:94:8f:49:10:b1:9d:83:20:b8:63:db:e5:b3:
24:2d:67:18:97:3b:2f:07:df:1f:ae:72:01:06:da:
aa:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EA:BC:CE:9E:C8:C6:9D:E7:25:E7:4F:72:C5:16:82:41:5E:F6:71
X509v3 Authority Key Identifier:
keyid:5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:74:4d:9f:a3:de:55:36:4f:53:93:c5:61:e4:ac:ac:97:9f:
d7:85:b1:8d:fe:eb:b7:e4:26:63:92:81:2e:25:81:7d:e7:6d:
75:23:0e:85:68:91:28:6b:ad:42:66:76:ff:af:6a:36:d7:71:
a1:6c:88:55:ff:df:13:5e:cd:6c:38:ce:5e:59:f1:c1:d6:24:
6d:93:20:93:23:b5:c9:79:6b:69:90:44:16:10:a6:46:47:c1:
0a:91:31:dd:a3:35:37:10:53:a7:4f:67:34:b3:3d:22:34:f0:
f5:ea:f7:97:ec:ad:59:b8:94:4f:e7:89:bd:8a:4b:3f:fd:46:
00:70:24:f8:35:39:bd:ae:3a:85:15:75:95:c2:b8:2c:18:c2:
71:90:78:51:f1:6b:c8:e1:4e:7c:d1:df:fb:31:84:62:d7:d2:
6a:0b:cb:71:2f:a6:0c:32:c0:43:f9:89:f9:44:42:c3:c1:9c:
40:74:34:e2:f6:9d:0b:b2:fb:af:a8:ab:e3:c0:95:ee:90:76:
40:ab:82:dc:01:d3:c2:85:77:24:30:bf:01:f3:93:8c:9e:45:
ef:19:32:9c:dd:2f:33:cc:90:c2:e3:9b:bc:81:5e:17:66:ae:
2d:b4:a8:df:ba:8c:54:12:9c:12:3d:35:aa:4c:a6:05:a0:52:
6e:b4:88:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh8d1P9RNZDcQ4d3TIsFzILMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlMjY0OGYxMjkwZDQ0NzFiY2RiNTBiODJiZTRlZDkzMjAw
MzA5NGQwHhcNMjUwODA1MjMwMDUxWhcNMjUwODA2MjMwMDUxWjAzMTEwLwYDVQQD
Eyg4NGVhYmNjZTllYzhjNjlkZTcyNWU3NGY3MmM1MTY4MjQxNWVmNjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDdqBpVHQxgWd3uedBDzmHQz9uiA
3TLCKt3F7gGmd2905rrhrEVrMfUEmY/GIWkAEzQx/U89KKnK97Ydwai3+drrdn35
2+iXLewKfjYGdoYeDSFAonnVoKHabXwZaMWU5A8ah6eiWjhe1ULQl8QBFHpLH8dW
eKgLj0oRPnvPx8R1i5pMaEyDBjhUNciHHPEZoNwal6O9bqoCFP4qpjeyYjdNQFMA
ae30aLY0E+qUQamIFVZaP1Bh1CPb6yKSELHDhisKB5gbkqhkwpLquMZRe12XZcK/
qGfih79GdEBApN316JSPSRCxnYMguGPb5bMkLWcYlzsvB98frnIBBtqq/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFITqvM6eyMad5yXnT3LFFoJBXvZxMB8GA1UdIwQY
MBaAFF4mSPEpDURxvNtQuCvk7ZMgAwlNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iYzRjNTMtMGRiNS00ZjExLTg0ZjYt
ZjU1ZmNkZjk3ODQ2LzEvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iYzRjNTMtMGRiNS00ZjExLTg0ZjYtZjU1ZmNkZjk3ODQ2
LzEvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaXRNn6Pe
VTZPU5PFYeSsrJef14Wxjf7rt+QmY5KBLiWBfedtdSMOhWiRKGutQmZ2/69qNtdx
oWyIVf/fE17NbDjOXlnxwdYkbZMgkyO1yXlraZBEFhCmRkfBCpEx3aM1NxBTp09n
NLM9IjTw9er3l+ytWbiUT+eJvYpLP/1GAHAk+DU5va46hRV1lcK4LBjCcZB4UfFr
yOFOfNHf+zGEYtfSagvLcS+mDDLAQ/mJ+URCw8GcQHQ04vadC7L7r6ir48CV7pB2
QKuC3AHTwoV3JDC/AfOTjJ5F7xkynN0vM8yQwuObvIFeF2auLbSo37qMVBKcEj01
qkymBaBSbrSI1Q==
-----END CERTIFICATE-----
Generated at Wed Aug 6 00:47:40 2025 by rpki-client