Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
File: XNhYOyEXQQSea7GalG2DGqvxGtM.mft (raw, json)
Hash identifier: 8Wxd6v5WYvDbjOrSy3RNi5X7WL3Q0rqvYC59A7VJ3T4=
Subject key identifier: 66:92:FE:CA:BE:17:4A:E7:C2:C2:C8:3C:19:87:48:A5:40:7B:8D:FE
Authority key identifier: 5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
Certificate issuer: /CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Certificate serial: 01987C77DDAA2228CDDB73EC801FF0F49DF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
Manifest number: 155D
Signing time: Tue 05 Aug 2025 23:01:26 +0000
Manifest this update: Tue 05 Aug 2025 23:01:26 +0000
Manifest next update: Wed 06 Aug 2025 23:01:26 +0000
Files and hashes: 1: XNhYOyEXQQSea7GalG2DGqvxGtM.crl (hash: XIx5Q+czRiZzr5OFoN0FPXlQdaxw+DOj3qZNRNyY60I=)
2: ir_nzSQYAsgPoPu8kRGYQzALm7U.roa (hash: TCpfNyg//XzFyrfc8SAsUbs4iWswcCSro2mnromAmQo=)
3: m3SzGaHBe-liV9k_hjkTUrNHXMg.roa (hash: 1IYirY3YGGwbakrzW31PvEOIIPUhpCQb3MNxcEFgdzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:dd:aa:22:28:cd:db:73:ec:80:1f:f0:f4:9d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Validity
Not Before: Aug 5 23:01:26 2025 GMT
Not After : Aug 6 23:01:26 2025 GMT
Subject: CN=6692fecabe174ae7c2c2c83c198748a5407b8dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a2:8b:0f:e8:c4:16:48:42:a8:8a:e7:6f:48:
2e:7f:a6:5b:3a:a6:1b:a6:1c:ae:30:b8:1a:da:5a:
87:58:05:3c:e8:5a:64:0f:2b:a0:b9:40:c1:9f:f2:
78:c7:d5:be:7b:f7:5e:b0:b1:88:1c:e2:75:ac:6f:
0a:d2:ff:ac:4f:5b:42:d0:ea:2f:96:0b:c1:53:ee:
15:cd:c7:6b:e7:a0:11:98:28:75:cc:c7:53:05:bf:
ac:db:9a:89:09:b3:ec:44:e5:03:8c:39:b5:ec:8e:
9c:16:ec:66:8b:14:34:9f:ee:11:fa:72:61:8f:e5:
da:99:1b:67:d3:c4:dc:f5:27:1a:68:e0:75:16:41:
2a:a2:26:73:ab:73:94:7d:be:03:9b:b9:0e:71:c1:
b5:ba:f9:30:3e:ba:c9:ff:db:6b:eb:db:99:a3:4d:
1f:2c:93:6a:22:96:46:de:40:39:f7:eb:a0:25:5b:
b1:a5:27:07:69:64:19:88:78:8a:83:f2:7a:77:b9:
f2:27:0d:d2:c7:87:37:e4:02:8d:58:b9:07:f4:a3:
56:ef:46:86:ec:54:b8:ac:39:da:3c:83:ab:86:3a:
ac:03:6e:28:18:17:64:7d:f8:6c:09:a2:fa:64:0b:
ae:96:b8:46:df:bd:62:bf:f6:82:4e:29:ac:be:51:
28:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:92:FE:CA:BE:17:4A:E7:C2:C2:C8:3C:19:87:48:A5:40:7B:8D:FE
X509v3 Authority Key Identifier:
keyid:5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:93:56:cb:26:db:b0:ba:0f:fc:87:a0:43:f0:05:e6:92:eb:
b3:33:2b:d5:86:02:42:17:bf:87:49:67:4d:90:0c:b3:c8:11:
c0:28:c0:e8:20:5c:1b:fd:18:5f:d3:fd:37:86:8f:db:b3:e1:
30:06:a3:19:34:75:36:13:07:9c:1c:16:1e:02:c1:a8:60:ea:
dd:de:3f:6a:90:9e:ab:5c:e1:d0:ca:a3:d7:bd:c1:67:93:1f:
3f:5a:82:3c:b3:b2:76:cf:f5:49:cd:a4:b1:f1:dd:57:26:28:
4b:2d:fb:8d:24:66:ad:81:00:42:5b:37:bc:56:de:e0:c7:83:
d8:d6:1d:27:6c:8a:90:42:c9:3f:94:0f:13:26:d6:d1:74:9a:
db:72:c9:c3:0b:ed:f8:8c:b6:1b:d4:01:9a:e7:66:42:68:5c:
6e:08:a0:28:e7:4c:b1:40:24:3c:8c:09:28:f1:c5:03:2c:95:
96:00:5e:f8:fb:7c:ee:ff:c8:04:78:f0:be:55:9e:1e:cf:70:
14:e1:0f:91:b1:70:b3:1c:f0:97:0a:c4:04:cd:f4:2f:59:53:
88:0e:ad:0d:33:f9:2b:42:f3:ca:22:54:85:8d:5c:d7:a4:37:
0b:c7:88:45:7b:55:66:e6:c2:19:84:e9:ff:d2:17:f8:60:92:
18:77:bd:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:03:42 2025 by rpki-client