Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
File: xafD9LFGk1EiAllaik-VsNa3oQE.mft (raw, json)
Hash identifier: q8AuHZ4z6MgN8NzeSFLsiLeu4fov8toqJaCYXpFEwm8=
Subject key identifier: 5E:58:4F:68:BB:80:E4:77:C8:7A:69:09:F8:2B:24:6F:47:5E:36:50
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 01993492A7679D109362841D1DC80638B708
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
Manifest number: 160E
Signing time: Wed 10 Sep 2025 17:00:50 +0000
Manifest this update: Wed 10 Sep 2025 17:00:50 +0000
Manifest next update: Thu 11 Sep 2025 17:00:50 +0000
Files and hashes: 1: Bbxo5GOkMtBPV4eyDiJBtgGCAvs.roa (hash: gPTOZ/QwaGNzYqcGskaYm0Q9CUgsB/kmTCxE6lNVoV8=)
2: GkWtiMh4Kekgq83feCXLfv_pub8.roa (hash: UboiG7GPy5Vm4OyfuuuEVh7hhcZoHsmQQgbXPLJ/4ug=)
3: ScP8kW7fVZKKIlJqtoPhrGG1uQo.roa (hash: kBK8cN2i6ByxK8RJnTQxES9FzgvOd8FoOcnJVY/e4Bc=)
4: xafD9LFGk1EiAllaik-VsNa3oQE.crl (hash: u02xAPYWBPYNrjIRaOIzm0EoiRX9omGrPCgGwADtsEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 17:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:92:a7:67:9d:10:93:62:84:1d:1d:c8:06:38:b7:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: Sep 10 17:00:50 2025 GMT
Not After : Sep 11 17:00:50 2025 GMT
Subject: CN=5e584f68bb80e477c87a6909f82b246f475e3650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1a:b6:dc:9b:83:80:22:49:4a:83:31:0d:b2:
9f:c8:56:fe:2a:31:87:2f:f5:f5:00:40:6d:6e:51:
ed:c8:57:41:34:90:6a:27:63:14:f0:66:55:0b:75:
ed:1f:68:55:3a:86:c7:4c:50:39:62:b9:0e:8a:6b:
f0:c3:da:4c:37:3e:60:73:57:d2:81:eb:5f:cb:59:
ce:a4:b9:43:76:07:24:22:81:9c:e9:72:93:6b:7c:
b4:eb:33:ca:b4:dc:49:bf:65:42:09:df:06:23:b2:
91:ae:9e:5b:62:77:f1:d4:43:ac:5e:55:b3:14:ef:
38:6d:7d:67:d1:eb:88:59:cf:31:09:c4:2f:65:b5:
6c:57:25:72:23:9d:6c:f6:a1:61:08:4b:03:34:7f:
3f:d9:70:5b:53:f8:f5:dc:0e:19:2d:c2:4d:9d:36:
1d:71:ee:f4:48:c5:f4:8e:1d:7a:68:1b:88:8d:6f:
ac:49:25:04:35:57:23:cb:ad:2d:83:69:f4:0f:cb:
cc:87:a3:6a:d6:b1:6c:31:02:f3:c2:38:6f:44:b7:
f9:95:db:78:95:39:27:38:9e:63:51:bc:a5:bf:43:
c5:a0:28:40:3e:d9:79:15:b6:2d:5b:c6:a9:43:36:
23:c4:bb:0e:83:b2:e4:21:29:80:35:77:0a:ed:a5:
e5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:58:4F:68:BB:80:E4:77:C8:7A:69:09:F8:2B:24:6F:47:5E:36:50
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:3b:a7:33:cd:99:31:4c:21:f6:56:63:47:c7:e6:f4:ea:1d:
1c:ba:6c:48:b2:52:9a:2b:56:2b:92:a9:de:ef:04:e0:61:03:
96:07:84:98:97:0e:b0:75:ee:a0:43:36:2c:33:78:e6:ba:6f:
20:80:53:5f:4f:ba:d0:33:a2:ea:20:3d:4f:f2:22:aa:29:6e:
28:32:4d:55:1e:76:b8:f3:2d:4d:3d:5c:00:c0:ce:63:aa:06:
a6:1c:83:04:b4:c4:4c:dd:6e:6c:9c:c5:1e:52:9d:6d:b4:a1:
c0:1a:e8:af:ee:89:6b:4c:ee:1c:c7:29:da:24:16:cd:36:75:
51:d0:a7:a6:23:08:1c:6b:d7:f1:ee:45:03:f5:81:0b:0b:9f:
ae:de:7d:f7:83:2b:61:e5:3c:f1:75:fb:51:1e:ed:24:01:50:
dd:ba:e2:35:59:02:d7:f8:8f:e0:ed:3d:28:bc:db:8c:a4:9f:
90:ee:3d:42:37:b8:dc:29:d5:42:88:f1:e7:af:17:0f:18:2c:
f2:e1:02:b1:fd:da:e3:7a:79:bd:b7:fa:ec:b1:3d:f0:78:4f:
dc:99:3d:46:a1:5d:72:e7:d1:39:21:92:d0:96:f2:35:b2:08:
c1:b3:a5:c8:dc:b7:18:ab:8f:dd:cb:57:a4:1f:7d:02:d8:c5:
ed:06:a1:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 22:53:32 2025 by rpki-client