
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
File: XOMWuo-zBWfOy8cnBR02QA4lH8c.mft (raw, json)
Hash identifier: +GVjJu60mLWEm20Dr52yIifO0KBm8m6qnQRMxd4nDw8=
Subject key identifier: 53:BC:48:98:59:0D:78:02:01:4E:B2:1E:B0:15:B6:21:82:E4:D6:1A
Authority key identifier: 5C:E3:16:BA:8F:B3:05:67:CE:CB:C7:27:05:1D:36:40:0E:25:1F:C7
Certificate issuer: /CN=5ce316ba8fb30567cecbc727051d36400e251fc7
Certificate serial: 0198820B7A8AEF9CC79BE2C8299B39C32BAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
Manifest number: 03F6
Signing time: Thu 07 Aug 2025 01:00:46 +0000
Manifest this update: Thu 07 Aug 2025 01:00:46 +0000
Manifest next update: Fri 08 Aug 2025 01:00:46 +0000
Files and hashes: 1: XOMWuo-zBWfOy8cnBR02QA4lH8c.crl (hash: QwygmM+CgZs6LLbIX4SYPu/8H/PX5/+zLP+a/X0pvnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:0b:7a:8a:ef:9c:c7:9b:e2:c8:29:9b:39:c3:2b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce316ba8fb30567cecbc727051d36400e251fc7
Validity
Not Before: Aug 7 01:00:46 2025 GMT
Not After : Aug 8 01:00:46 2025 GMT
Subject: CN=53bc4898590d7802014eb21eb015b62182e4d61a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:90:ca:fd:63:de:0c:d1:20:5a:9e:38:d5:fe:
2f:bb:c4:bd:05:84:db:af:75:ff:d3:13:76:cd:2d:
d8:aa:82:cd:35:3b:1a:37:bf:89:56:f5:81:f6:99:
7e:42:66:17:c7:bc:bc:17:87:f1:fb:09:c0:af:4e:
cd:02:e6:61:46:88:2f:9d:06:51:8f:b4:26:f3:23:
ef:97:5a:16:f1:72:47:4a:b0:03:27:12:95:99:e1:
16:58:f5:ae:7a:ba:79:ff:db:70:5e:df:30:32:75:
54:60:eb:07:18:b2:4e:9d:3c:f2:a9:7a:3f:6f:00:
71:d2:18:01:88:56:3a:0f:37:90:dc:83:f8:80:05:
f0:d3:45:c8:c3:76:d2:e2:a8:f1:b2:60:ba:80:7f:
a2:09:8d:31:ea:ba:04:2f:0b:e6:a5:77:1c:fb:a4:
19:fe:f1:e6:cb:d5:34:1c:d7:18:c0:6f:fc:97:6e:
3d:cf:e9:19:24:48:f5:8b:09:23:17:01:10:52:98:
5b:04:d8:95:2f:ee:e5:06:aa:64:aa:eb:69:92:70:
e2:d5:16:da:e7:1c:37:92:7e:e1:34:03:9c:cf:9a:
65:3d:e9:d5:60:1e:82:d6:ef:23:7e:65:c6:f1:cf:
18:b7:37:1d:79:3b:0a:2a:92:b1:3a:5e:fd:ee:da:
ba:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BC:48:98:59:0D:78:02:01:4E:B2:1E:B0:15:B6:21:82:E4:D6:1A
X509v3 Authority Key Identifier:
keyid:5C:E3:16:BA:8F:B3:05:67:CE:CB:C7:27:05:1D:36:40:0E:25:1F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:27:29:18:f4:bf:17:a4:6a:99:40:fe:44:e8:b9:09:f6:76:
44:98:88:52:ad:11:2e:3f:38:9b:2c:25:5b:38:a2:ce:df:49:
e1:57:f0:68:27:ac:63:ee:c2:75:41:37:9a:b0:09:0c:fc:53:
5a:e0:ab:6f:0b:91:30:eb:6c:4b:24:45:b6:0b:46:8a:8f:86:
3b:d5:9c:a2:87:91:b6:22:90:93:98:39:35:e2:95:f2:a3:87:
ba:3b:90:96:67:c5:3a:a3:d3:bc:42:eb:25:04:39:32:fd:cc:
b7:5d:97:11:79:b2:f5:57:1e:7a:0b:b1:4b:47:e6:fb:5c:9d:
82:6e:3a:43:04:91:5f:dc:b2:e2:ca:47:5a:49:bd:df:9f:7f:
1f:b3:ce:df:ef:0e:47:61:f6:ed:56:8a:dd:ac:c9:87:a8:8e:
75:fe:58:0b:09:7e:15:19:f9:fe:36:5e:2e:59:31:48:f1:b9:
49:f4:50:28:e2:40:6c:33:a5:0f:76:ac:4b:db:fc:06:5e:64:
18:99:4c:2b:39:2e:c8:75:01:75:b8:8b:d9:80:bc:08:d1:b9:
8c:2b:90:df:a1:fb:ac:c4:a9:17:49:d4:31:ab:16:8f:fc:f0:
42:76:31:15:5d:c4:01:b5:b5:da:5e:ba:9e:d0:53:4d:a4:8b:
01:85:5d:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiCC3qK75zHm+LIKZs5wyusMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZTMxNmJhOGZiMzA1NjdjZWNiYzcyNzA1MWQzNjQwMGUy
NTFmYzcwHhcNMjUwODA3MDEwMDQ2WhcNMjUwODA4MDEwMDQ2WjAzMTEwLwYDVQQD
Eyg1M2JjNDg5ODU5MGQ3ODAyMDE0ZWIyMWViMDE1YjYyMTgyZTRkNjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJDK/WPeDNEgWp441f4vu8S9BYTb
r3X/0xN2zS3YqoLNNTsaN7+JVvWB9pl+QmYXx7y8F4fx+wnAr07NAuZhRogvnQZR
j7Qm8yPvl1oW8XJHSrADJxKVmeEWWPWuerp5/9twXt8wMnVUYOsHGLJOnTzyqXo/
bwBx0hgBiFY6DzeQ3IP4gAXw00XIw3bS4qjxsmC6gH+iCY0x6roELwvmpXcc+6QZ
/vHmy9U0HNcYwG/8l249z+kZJEj1iwkjFwEQUphbBNiVL+7lBqpkqutpknDi1Rba
5xw3kn7hNAOcz5plPenVYB6C1u8jfmXG8c8YtzcdeTsKKpKxOl797tq66wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFO8SJhZDXgCAU6yHrAVtiGC5NYaMB8GA1UdIwQY
MBaAFFzjFrqPswVnzsvHJwUdNkAOJR/HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE9NV3VvLXpCV2ZPeThjbkJSMDJRQTRsSDhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8yNDdlZWYtZjcxYS00MjFmLWJiODYt
MjY3MjlkODk0ZWY3LzEvWE9NV3VvLXpCV2ZPeThjbkJSMDJRQTRsSDhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8yNDdlZWYtZjcxYS00MjFmLWJiODYtMjY3MjlkODk0ZWY3
LzEvWE9NV3VvLXpCV2ZPeThjbkJSMDJRQTRsSDhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASycpGPS/
F6RqmUD+ROi5CfZ2RJiIUq0RLj84mywlWziizt9J4VfwaCesY+7CdUE3mrAJDPxT
WuCrbwuRMOtsSyRFtgtGio+GO9WcooeRtiKQk5g5NeKV8qOHujuQlmfFOqPTvELr
JQQ5Mv3Mt12XEXmy9VceeguxS0fm+1ydgm46QwSRX9yy4spHWkm9359/H7PO3+8O
R2H27VaK3azJh6iOdf5YCwl+FRn5/jZeLlkxSPG5SfRQKOJAbDOlD3asS9v8Bl5k
GJlMKzkuyHUBdbiL2YC8CNG5jCuQ36H7rMSpF0nUMasWj/zwQnYxFV3EAbW12l66
ntBTTaSLAYVdRQ==
-----END CERTIFICATE-----
Generated at Thu Aug 7 03:22:14 2025 by rpki-client