Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: XbynIbQb+d6TSFqj9zK2tfze79CwnVhlu6S9GMcTAGk=
Subject key identifier: F0:3C:F4:C7:0C:EC:55:C8:43:C6:BA:8A:92:57:55:B5:20:77:27:BD
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 01986100F06CED2586667E2E4C4C84185635
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 0A97
Signing time: Thu 31 Jul 2025 15:01:48 +0000
Manifest this update: Thu 31 Jul 2025 15:01:48 +0000
Manifest next update: Fri 01 Aug 2025 15:01:48 +0000
Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: oonwNVaJkKLNPH8B9FLKr4Y1gHXUbWV0OIA5HS+dX8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 Aug 2025 09:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:61:00:f0:6c:ed:25:86:66:7e:2e:4c:4c:84:18:56:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: Jul 31 15:01:48 2025 GMT
Not After : Aug 1 15:01:48 2025 GMT
Subject: CN=f03cf4c70cec55c843c6ba8a925755b5207727bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ba:af:d5:b7:95:b0:af:05:eb:fc:fa:5a:18:
ac:45:c1:10:53:cf:d4:f1:c9:5b:48:96:46:c3:ff:
ca:e3:b4:34:cd:26:93:0e:14:19:5f:d1:e4:47:74:
5a:c0:bf:c1:c7:08:e8:81:fb:d5:f6:d7:2f:79:7b:
81:86:c9:58:1b:d2:af:46:1d:d8:0f:df:ae:15:1e:
c3:50:dc:97:53:ae:9d:25:52:55:20:35:e4:ca:4e:
6c:99:d3:85:7f:86:34:02:ef:92:7d:57:7a:b8:cb:
61:f2:a0:40:5b:1e:fc:29:bf:56:8a:9b:fe:d6:a8:
ce:63:ea:08:e4:b0:d4:07:a5:9e:06:bc:59:08:a4:
a2:1f:16:40:3d:02:02:e5:a7:f6:f5:b8:c6:d8:31:
9a:c9:de:d2:7a:d3:09:fc:85:7d:c4:8b:33:80:93:
a2:e1:24:ee:28:62:56:37:14:02:58:58:47:df:67:
87:b3:c0:45:46:54:32:ab:c1:fe:40:1a:a1:b2:8a:
63:47:d1:e1:9d:50:7a:63:29:98:48:31:36:c6:64:
de:b7:cf:df:90:23:38:e7:7e:9d:c6:d0:c4:a2:93:
71:03:27:49:50:ae:9a:b7:c2:bb:ed:6b:aa:44:0b:
7f:5f:5b:5b:f4:a4:fc:14:13:69:a1:bc:f1:e4:7c:
2e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:3C:F4:C7:0C:EC:55:C8:43:C6:BA:8A:92:57:55:B5:20:77:27:BD
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:3b:d0:29:33:43:03:7e:c1:ba:18:25:b3:e9:03:f0:39:a2:
50:2b:43:31:f4:8f:b0:a9:6b:cb:00:fb:3e:1f:b5:1d:4c:e3:
d6:be:c3:00:5c:01:8f:34:2b:81:a6:f1:19:77:c8:bd:ef:45:
93:83:19:ef:49:60:1b:36:5f:b9:fa:5c:08:c0:3e:87:5a:ac:
a4:63:83:8f:51:97:6f:1b:29:49:bb:58:b6:ed:ee:3c:4c:72:
aa:1c:19:a6:69:4e:bf:22:9e:b0:f6:6b:36:ef:7a:29:94:74:
9b:dc:2e:cd:f5:42:62:97:4f:13:5e:b4:9b:7c:d1:36:d8:18:
96:f4:ad:99:ec:fd:fb:6f:f5:46:d8:74:7e:9a:07:ff:ba:4e:
c2:c4:05:48:f8:7e:45:bf:2c:d3:1a:6c:c9:09:a2:c8:0b:22:
37:5c:8d:7b:2e:87:a7:10:25:2e:60:2b:8a:87:83:95:20:63:
43:01:2d:bd:35:5f:c0:21:16:f6:18:e1:a0:bf:de:5d:38:18:
71:89:77:5d:1c:76:62:26:d7:1d:6c:04:38:f3:33:0f:4c:2d:
93:90:83:6b:e5:de:bd:f5:d4:08:9b:8f:f5:6d:d3:70:7b:5a:
31:cd:a0:4d:93:bb:6c:1d:2f:e2:c0:0c:8a:70:18:e2:8e:1d:
0f:2b:8f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 18:10:55 2025 by rpki-client