Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
File: XpNr6hsMOiCKuifYsQsnXkdN3iw.mft (raw, json)
Hash identifier: 7Yh3wQb/wminUvtoR2NhTV+XQFMg9YPZO7unda4Epkk=
Subject key identifier: 7C:F8:EE:BE:69:51:A5:0C:94:79:3F:FD:99:DA:2C:D6:3A:B8:A3:42
Authority key identifier: 5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
Certificate issuer: /CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Certificate serial: 01988957A489C1E5FB2F20A58CE54F004E26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
Manifest number: 1623
Signing time: Fri 08 Aug 2025 11:01:18 +0000
Manifest this update: Fri 08 Aug 2025 11:01:18 +0000
Manifest next update: Sat 09 Aug 2025 11:01:18 +0000
Files and hashes: 1: Nw7X2LCFZpQsGc2GoXyrFKElkBk.roa (hash: y5oQHHhbifcLGWzUQAXcT2e3MvPfBEuWSolqQY+gsts=)
2: XpNr6hsMOiCKuifYsQsnXkdN3iw.crl (hash: iJIrDyybrfke5+PGketB4Q1mHXRdn1dYV95BDj+7Rh0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:57:a4:89:c1:e5:fb:2f:20:a5:8c:e5:4f:00:4e:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Validity
Not Before: Aug 8 11:01:18 2025 GMT
Not After : Aug 9 11:01:18 2025 GMT
Subject: CN=7cf8eebe6951a50c94793ffd99da2cd63ab8a342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a4:e0:64:89:92:24:fc:d7:be:69:0d:6c:a4:
df:4a:f8:41:30:b3:18:69:a2:46:ee:c6:cc:7f:d4:
af:6c:b5:49:74:c5:3e:ef:7a:db:a5:72:dd:cd:32:
0e:6f:ad:bf:3b:7d:3b:61:ea:f6:ab:c5:ea:ec:19:
28:e9:fa:83:ef:c9:16:27:ea:9e:6f:b2:3a:ee:c4:
9f:78:4b:54:03:97:2e:88:97:8d:95:f2:02:d1:08:
ca:2d:1d:d2:17:fa:8e:37:9b:75:00:5a:35:80:59:
ce:9a:88:29:eb:02:47:e9:f6:49:f7:8d:8a:02:79:
0b:44:64:d6:21:57:fb:31:fa:7e:e9:e4:39:d3:bb:
80:76:c0:84:dd:e8:31:16:f2:f7:0e:46:ec:9c:f8:
36:19:4e:59:1b:4d:b9:72:7d:f5:9a:46:ae:5d:8d:
92:54:a0:fd:a9:a1:91:0b:68:a6:90:b7:a4:c3:0c:
22:9f:0b:40:a5:87:a7:da:65:4a:eb:c4:29:c2:35:
29:a8:af:b4:d2:d2:c5:f2:65:6a:88:3a:32:d7:c2:
90:90:72:6a:55:27:a9:ff:2b:bd:f8:15:65:31:7c:
50:cb:13:94:d9:d6:e3:69:2f:ef:66:2e:52:b0:1a:
ad:6c:3c:c3:10:5a:a9:d8:7f:f1:13:a6:10:94:fe:
ee:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F8:EE:BE:69:51:A5:0C:94:79:3F:FD:99:DA:2C:D6:3A:B8:A3:42
X509v3 Authority Key Identifier:
keyid:5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:82:a3:c0:3c:4d:10:d8:26:58:0e:1b:77:48:18:bf:b5:98:
26:c1:c1:a7:1f:60:5f:54:d9:c3:3f:64:91:77:b3:c2:af:cf:
0c:08:e9:1b:8b:48:1e:f4:37:a6:e3:50:84:ee:32:d7:75:25:
9a:d3:94:56:88:7a:5e:cc:e6:74:a0:11:10:82:d0:75:cd:81:
93:2c:7d:27:54:4f:7a:f6:94:21:ec:b0:3a:86:dc:53:fa:18:
e2:ab:9c:21:72:51:ca:8a:0a:b4:cf:22:c7:92:ff:2b:1e:91:
60:0d:3a:80:e4:9b:7e:5b:05:bf:81:29:41:e9:31:00:bf:93:
ae:70:8a:03:c2:cd:e8:04:c7:2a:f1:37:4b:0f:b3:23:ec:cb:
b2:a0:6b:09:50:1d:13:6b:fd:5f:0c:0f:06:20:28:df:37:34:
d7:5c:69:a9:7d:ae:dc:e3:08:94:91:47:0c:c6:01:8e:94:26:
76:34:6c:0e:eb:48:27:cd:d8:d8:84:a7:54:16:92:40:c5:43:
9c:9a:93:9f:49:76:75:c4:0f:11:0c:c0:e0:5c:9d:18:d7:b0:
91:08:df:1d:26:b4:be:e3:1e:7c:df:b4:57:fc:1b:08:01:19:
1c:5f:6c:0f:c9:be:b9:20:b4:d3:66:58:b2:f8:f4:60:31:3c:
f4:fe:82:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiJV6SJweX7LyCljOVPAE4mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlOTM2YmVhMWIwYzNhMjA4YWJhMjdkOGIxMGIyNzVlNDc0
ZGRlMmMwHhcNMjUwODA4MTEwMTE4WhcNMjUwODA5MTEwMTE4WjAzMTEwLwYDVQQD
Eyg3Y2Y4ZWViZTY5NTFhNTBjOTQ3OTNmZmQ5OWRhMmNkNjNhYjhhMzQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqTgZImSJPzXvmkNbKTfSvhBMLMY
aaJG7sbMf9SvbLVJdMU+73rbpXLdzTIOb62/O307Yer2q8Xq7Bko6fqD78kWJ+qe
b7I67sSfeEtUA5cuiJeNlfIC0QjKLR3SF/qON5t1AFo1gFnOmogp6wJH6fZJ942K
AnkLRGTWIVf7Mfp+6eQ507uAdsCE3egxFvL3DkbsnPg2GU5ZG025cn31mkauXY2S
VKD9qaGRC2imkLekwwwinwtApYen2mVK68QpwjUpqK+00tLF8mVqiDoy18KQkHJq
VSep/yu9+BVlMXxQyxOU2dbjaS/vZi5SsBqtbDzDEFqp2H/xE6YQlP7uMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHz47r5pUaUMlHk//ZnaLNY6uKNCMB8GA1UdIwQY
MBaAFF6Ta+obDDogiron2LELJ15HTd4sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHBOcjZoc01PaUNLdWlmWXNRc25Ya2ROM2l3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zMjg3NmItYTgyYi00NzA0LWJhNjct
OTg0NzdhODY1M2M3LzEvWHBOcjZoc01PaUNLdWlmWXNRc25Ya2ROM2l3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS8zMjg3NmItYTgyYi00NzA0LWJhNjctOTg0NzdhODY1M2M3
LzEvWHBOcjZoc01PaUNLdWlmWXNRc25Ya2ROM2l3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATIKjwDxN
ENgmWA4bd0gYv7WYJsHBpx9gX1TZwz9kkXezwq/PDAjpG4tIHvQ3puNQhO4y13Ul
mtOUVoh6XszmdKAREILQdc2Bkyx9J1RPevaUIeywOobcU/oY4qucIXJRyooKtM8i
x5L/Kx6RYA06gOSbflsFv4EpQekxAL+TrnCKA8LN6ATHKvE3Sw+zI+zLsqBrCVAd
E2v9XwwPBiAo3zc011xpqX2u3OMIlJFHDMYBjpQmdjRsDutIJ83Y2ISnVBaSQMVD
nJqTn0l2dcQPEQzA4FydGNewkQjfHSa0vuMefN+0V/wbCAEZHF9sD8m+uSC002ZY
svj0YDE89P6CwA==
-----END CERTIFICATE-----
Generated at Fri Aug 8 20:46:53 2025 by rpki-client