Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: ZdUntdervzS081R4sVcglQsY3vEvh7FpKiM2JozBrkM=
Subject key identifier: 14:F8:6E:CE:DE:8C:5A:05:38:12:F8:CC:F3:98:05:2F:3D:11:09:C0
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 0198684C1020D7558BFB45C14F6ED0F67678
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 1120
Signing time: Sat 02 Aug 2025 01:01:11 +0000
Manifest this update: Sat 02 Aug 2025 01:01:11 +0000
Manifest next update: Sun 03 Aug 2025 01:01:11 +0000
Files and hashes: 1: QGKSiFavp9LMElSoLZBhqzLqFMM.roa (hash: ip/2uYmlI+BKnaF8k1mqNHwsPmNtHEQrk8aTeSCdMUA=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: XFpaRKPqMVZ7rKhYSc1lRWWU+DItLfQkLV8i4ZQox+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 02 Aug 2025 21:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:68:4c:10:20:d7:55:8b:fb:45:c1:4f:6e:d0:f6:76:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Aug 2 01:01:11 2025 GMT
Not After : Aug 3 01:01:11 2025 GMT
Subject: CN=14f86ecede8c5a053812f8ccf398052f3d1109c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5b:fc:b7:ae:df:54:2c:cd:5f:c9:a8:35:4c:
e2:3e:ea:7a:bc:11:b5:f8:d0:06:de:5b:03:8c:ac:
9a:2c:4b:5d:08:d6:6b:e1:94:18:24:33:97:35:c7:
34:10:1d:b9:73:78:68:9b:23:f4:a1:04:27:59:26:
14:24:28:c1:7e:87:f6:47:0b:78:28:1e:f4:13:77:
6c:68:c0:e0:cd:35:e2:93:ee:cf:0b:f2:66:dd:e3:
8f:96:1e:61:e0:53:bb:42:67:a9:c8:35:7f:0b:c3:
0d:be:fd:37:d5:c8:02:87:53:bf:9d:43:6a:87:86:
9d:4f:48:09:78:59:14:94:05:a8:f2:22:e8:36:1d:
64:43:06:b0:dc:fe:a1:36:f3:ad:d6:e7:88:83:68:
73:3e:1e:9a:6c:ab:5d:fb:e7:d4:6b:04:ca:63:d2:
cf:b6:85:6b:4d:4b:8a:d3:d0:b8:31:30:78:85:dc:
51:b3:6c:80:c8:17:1c:80:a3:80:34:50:bb:d2:22:
6d:2e:db:b3:88:03:e3:16:08:58:f7:45:79:f1:ce:
d7:1a:ff:10:4f:5e:42:3a:b5:90:72:59:89:9d:af:
bb:c1:2c:75:99:6f:55:d1:bc:15:ef:ab:f3:a1:64:
28:26:53:b6:ba:da:e5:81:90:f1:fb:20:dd:b2:97:
2c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F8:6E:CE:DE:8C:5A:05:38:12:F8:CC:F3:98:05:2F:3D:11:09:C0
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:54:09:6b:cb:49:ee:db:2b:91:83:91:da:61:5d:8a:1b:22:
7e:e4:a5:14:5b:1b:fe:dc:b1:5c:1d:de:79:4e:6a:ee:fd:a1:
03:c9:09:a3:68:55:f1:7e:64:cd:bf:0e:4a:8d:2e:f3:1b:06:
f1:3d:da:c4:87:f8:62:10:24:3b:bb:21:42:5c:79:fb:8d:a0:
06:44:bd:0b:28:68:31:ab:3a:c7:14:b4:3f:96:b2:b9:66:dc:
e2:97:cd:35:c8:c2:fc:bb:1b:ee:e1:b0:5c:7d:b2:ff:8e:ad:
b8:96:87:a2:5e:a2:b6:90:8e:89:e9:53:33:1c:db:e7:07:1f:
47:23:51:08:8a:00:9c:8d:19:36:de:ab:d1:0e:e7:d1:1f:c0:
cd:c8:8d:ec:93:a6:68:c0:08:b2:5d:66:55:cd:58:75:e4:f9:
f2:5f:ab:32:9c:d1:76:9b:0b:c4:96:1c:f7:af:5c:31:fe:b3:
23:5f:de:c1:62:0d:a3:ea:7f:82:d9:c9:dc:03:2b:d5:56:c8:
20:c1:7b:80:99:68:26:04:8a:9a:57:60:1f:1c:e1:8d:91:1f:
04:af:57:8d:b4:92:57:07:17:84:fe:2c:d2:0a:48:b2:7a:a8:
7b:28:a4:42:09:d4:34:74:bb:e8:26:d2:32:d8:f2:42:5e:81:
0d:4b:67:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 2 05:53:22 2025 by rpki-client