Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
File: XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft (raw, json)
Hash identifier: hDTzgIJA4wdDj1ehwedNDUN770yWyUJNX9j+CfIVxBY=
Subject key identifier: 82:4B:9B:9B:81:B7:4B:73:DB:0D:24:10:2C:54:21:86:19:26:D6:AA
Authority key identifier: 5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
Certificate issuer: /CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Certificate serial: 019847773E7FB9D0238238A38ADCACE6A9FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
Manifest number: 01DD
Signing time: Sat 26 Jul 2025 16:00:53 +0000
Manifest this update: Sat 26 Jul 2025 16:00:53 +0000
Manifest next update: Sun 27 Jul 2025 16:00:53 +0000
Files and hashes: 1: X7HkSzc73grEKj4u4ebonuY_N3k.roa (hash: OyEQG3xPXjnpnin1BNjI7sPjB8DI9jWlTT019Ki3K7k=)
2: XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl (hash: W9cy3djXeGbTBHggavZM0ZzxkW7xUpLnsqU8eGO4TGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:77:3e:7f:b9:d0:23:82:38:a3:8a:dc:ac:e6:a9:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Validity
Not Before: Jul 26 16:00:53 2025 GMT
Not After : Jul 27 16:00:53 2025 GMT
Subject: CN=824b9b9b81b74b73db0d24102c5421861926d6aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:19:c3:3d:10:b0:82:5e:ce:16:39:ec:bd:2b:
27:41:1d:01:fc:47:e9:57:3c:a5:21:80:61:a4:53:
b3:e7:c2:e8:f8:87:35:89:8e:18:5f:08:74:0d:21:
d0:ca:bb:f1:06:c7:43:29:57:28:56:50:29:b5:e9:
27:d2:10:45:5c:c1:ed:e0:39:5d:83:21:d6:61:c4:
c1:b5:fb:cb:e7:d4:75:33:c9:cf:94:96:91:f0:f9:
8e:61:c5:ec:ad:68:6c:1e:f7:8e:dc:a8:1d:eb:45:
d3:b2:b5:7c:11:dc:09:f1:02:b3:42:68:fd:7a:2c:
3e:15:a0:bb:e1:96:4b:fe:ac:db:76:10:a5:24:c1:
97:59:0d:9c:1c:f6:89:3b:db:49:45:82:1e:89:56:
c6:a2:c0:ea:56:78:5f:cf:a1:61:1c:79:dd:d4:e3:
b1:bf:c5:d4:f5:91:e6:eb:6b:47:a8:64:19:24:ab:
59:4f:ce:88:93:ee:21:80:8e:b7:5f:50:6b:1b:09:
bd:1e:46:92:2b:07:50:4f:c8:65:dd:b6:4a:6f:ee:
20:24:d8:b9:19:8f:b2:04:45:19:69:b8:aa:89:22:
33:dd:99:53:77:f9:da:34:c9:46:70:97:92:82:93:
99:19:92:4a:55:7c:40:72:20:24:d5:af:2d:d6:5b:
f2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:4B:9B:9B:81:B7:4B:73:DB:0D:24:10:2C:54:21:86:19:26:D6:AA
X509v3 Authority Key Identifier:
keyid:5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:26:02:37:c8:32:f4:6e:e6:52:9f:b6:82:bc:7f:f5:de:1e:
93:81:89:ed:3c:32:26:c6:a3:8a:17:69:d4:e6:04:2d:d7:9e:
9b:94:07:41:3f:3c:20:ae:7e:1d:80:a4:d4:75:10:24:7e:eb:
94:ef:65:f6:97:74:5c:b2:97:35:d5:80:82:06:24:d8:24:8c:
92:9a:d6:d4:94:ba:a9:33:ff:e5:64:b3:1b:4a:de:ae:e4:f1:
44:fe:b6:86:1e:ca:06:f1:9c:9b:10:ea:8d:5d:a3:fb:2f:9f:
82:c4:00:7d:ef:51:43:e7:b6:3c:8f:5c:9d:00:6d:37:8e:ba:
26:1d:b6:f8:b0:86:d3:1b:a6:32:7a:90:06:63:db:ff:a5:d2:
8e:bf:76:91:9b:43:d5:62:52:23:c9:cb:53:5b:d2:6e:0e:73:
27:5b:03:a5:71:7b:2f:3e:34:52:bf:05:4f:36:9a:de:cd:e2:
e0:b2:6f:14:15:61:5e:29:0d:04:4c:c3:33:c7:45:8c:a2:e1:
55:9b:bd:a2:b6:a8:1b:13:c5:9f:67:d0:e6:24:f3:49:17:a5:
3e:80:0b:6a:5e:12:36:73:89:85:27:4d:e5:6a:7c:e2:d5:43:
18:20:8b:01:57:f8:30:f4:33:95:97:66:6b:51:30:0d:12:ed:
65:20:ba:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:43:44 2025 by rpki-client