Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json)
Hash identifier: TKtLTFwl2Am5DRDEvxW8lE91AVm27Yo+AVXuZZByJKI=
Subject key identifier: FA:40:F0:F7:24:94:E6:D3:B0:03:10:2A:32:23:60:96:A4:2E:9D:C8
Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Certificate serial: 01987B2DE88E96327775CD3C1172A94F0E39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
Manifest number: 0B57
Signing time: Tue 05 Aug 2025 17:01:02 +0000
Manifest this update: Tue 05 Aug 2025 17:01:02 +0000
Manifest next update: Wed 06 Aug 2025 17:01:02 +0000
Files and hashes: 1: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: jBbd/BlVyWQhhlUOSIHJc3+r96DejqsXTSmN0h/74+I=)
2: _GYD1AJUDNposAkJpRDfG9xq6dk.roa (hash: afY5Qh0XccEeUiEofkFyRBQd+JnAG3mTgUzmW0se7YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:2d:e8:8e:96:32:77:75:cd:3c:11:72:a9:4f:0e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Validity
Not Before: Aug 5 17:01:02 2025 GMT
Not After : Aug 6 17:01:02 2025 GMT
Subject: CN=fa40f0f72494e6d3b003102a32236096a42e9dc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:43:2d:bc:4c:ce:b2:84:9b:ed:2a:88:c0:5c:
51:12:ce:91:fe:bc:20:cc:6a:68:58:13:c6:14:70:
e0:ff:11:1e:66:bb:3b:1c:a4:61:04:f1:5b:74:22:
7e:86:4d:b2:8f:a9:80:16:00:d9:97:96:19:9f:65:
29:55:d3:f1:a5:e4:71:e0:02:9f:bc:c4:10:63:3e:
93:14:36:35:dc:39:df:38:d3:27:df:03:b6:a3:3c:
4f:49:ae:f3:64:71:f2:b6:3a:3f:34:c9:82:6a:c0:
80:96:98:9a:9c:05:c8:e5:82:6b:45:39:34:75:5a:
e3:b2:20:49:b1:22:38:27:37:9c:a5:e5:3e:c5:9f:
7e:ec:51:39:e8:5d:25:2a:a5:a7:a9:06:c8:10:c9:
70:6d:28:98:62:96:9e:38:07:72:4d:0e:2c:90:24:
8e:f7:a9:f4:99:3e:85:b5:67:09:42:9e:5f:8c:44:
70:28:b5:99:37:1a:08:fd:05:04:b0:55:f0:b3:24:
1d:d0:99:42:cb:d1:7e:a1:42:18:01:03:fe:79:af:
fc:c6:8f:1d:fa:60:37:32:b8:a6:d0:35:28:7b:46:
e8:f3:3c:79:1e:99:6f:fa:81:23:07:b2:b6:e7:ec:
8d:9e:1c:25:9a:5c:f2:cb:42:62:5d:f4:5d:e1:ff:
a7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:40:F0:F7:24:94:E6:D3:B0:03:10:2A:32:23:60:96:A4:2E:9D:C8
X509v3 Authority Key Identifier:
keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:13:2a:d1:9e:56:96:80:ab:68:8f:a2:d3:c9:27:7a:b4:9e:
72:d7:a5:a3:cb:ee:25:62:45:81:68:5f:9d:26:ce:39:e1:17:
81:a0:3c:b9:af:46:c0:6e:a1:df:31:c1:17:41:29:97:91:94:
b8:91:4c:b7:26:2e:b2:0a:48:41:ce:6f:8c:54:bd:d7:a0:20:
da:e8:a8:c7:41:e6:26:a1:e4:01:e0:8f:9a:0c:19:6c:b8:ef:
f6:b7:c5:d0:58:14:b7:b8:3c:76:0b:f9:1f:9f:c1:2e:d3:80:
7e:e7:49:0b:b9:16:b5:d2:b0:41:2e:f4:74:13:89:f1:88:00:
62:eb:fd:af:78:32:21:1c:ca:c2:ec:a7:e9:8b:61:3a:b7:92:
e5:7c:bd:95:b2:61:85:fd:54:d5:bf:1d:f5:be:96:73:39:a7:
26:fc:62:74:ce:21:fd:62:10:b1:76:b9:03:e2:51:0d:15:87:
83:3a:2e:9a:e3:4b:ff:9d:ac:97:c5:ae:fa:e3:b5:ad:db:90:
54:b0:33:56:b2:7a:b8:1f:29:bb:b9:a0:89:dc:ec:91:9e:1a:
e5:83:92:ea:61:c7:61:d2:67:59:6f:ea:cc:d8:af:56:f0:2f:
93:a9:09:be:c1:3b:c2:ae:b2:8d:c9:cb:ed:04:a1:c3:18:65:
18:5a:e4:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 20:19:37 2025 by rpki-client