Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
File: XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft (raw, json)
Hash identifier: 7pPFUliXMN/kalRQRnbRrHlhNO9mGtFYzSsudQz0SvU=
Subject key identifier: A2:A7:6C:2B:71:3A:91:4E:5C:D2:0B:C4:8A:99:61:0A:DB:17:5F:4F
Authority key identifier: 5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
Certificate issuer: /CN=5dc67c6be367ab9e941d1427d050449447b8865c
Certificate serial: 0199225551185FF87F9B09E8A04424E5D199
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
Manifest number: 1678
Signing time: Sun 07 Sep 2025 04:00:40 +0000
Manifest this update: Sun 07 Sep 2025 04:00:40 +0000
Manifest next update: Mon 08 Sep 2025 04:00:40 +0000
Files and hashes: 1: XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl (hash: i0AR73ElvxYwjmlJ1isg4EPgzfizBYMSVzI2v0ybrJw=)
2: yPiwl9qBas0_CWwr3HhvXq6bAGE.roa (hash: yb05fvQGJfFhNZnnjkljRSCUExMNOud+I+YEv/Cdk1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:51:18:5f:f8:7f:9b:09:e8:a0:44:24:e5:d1:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc67c6be367ab9e941d1427d050449447b8865c
Validity
Not Before: Sep 7 04:00:40 2025 GMT
Not After : Sep 8 04:00:40 2025 GMT
Subject: CN=a2a76c2b713a914e5cd20bc48a99610adb175f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f1:fe:b2:e5:80:77:ab:08:81:c4:20:79:9c:
96:a9:7d:9a:4c:21:28:94:ff:9b:30:d9:d3:e1:0a:
a0:24:f2:13:75:ce:e1:65:f5:79:08:b1:e0:14:1d:
bb:ed:9b:1d:3c:10:4f:97:3d:4b:7c:77:3f:b5:07:
30:da:bb:1e:bc:06:4f:92:78:3c:9d:db:40:53:19:
e3:fb:ca:59:f4:7e:ea:fa:0e:ed:81:6d:66:f5:3b:
6b:ad:b2:17:a7:df:85:a5:a6:50:f2:00:34:79:00:
69:32:f6:d7:b0:e1:7f:b8:87:bc:a4:31:6e:86:cc:
d7:4f:bd:4a:ce:92:f3:ed:7f:95:84:6c:0c:a9:0d:
b9:55:81:b5:d4:33:4e:10:4c:25:a5:7c:18:c4:60:
b5:a5:5d:8e:13:62:85:62:f5:17:05:28:6e:9d:9a:
7c:fe:ea:f4:44:8c:f5:d2:64:53:2a:0e:dc:be:8a:
37:bd:5b:6c:bb:e6:e2:02:70:40:35:d6:77:f8:47:
ab:c2:e8:61:6d:36:fa:71:07:27:eb:57:25:21:42:
95:a0:df:3c:d5:b0:98:1f:44:7b:fd:9d:db:df:bf:
4f:0e:d2:78:d4:01:3f:3d:05:38:46:ac:96:76:21:
3a:1e:6c:07:b4:bf:f4:ce:14:be:cd:a3:69:06:0a:
da:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A7:6C:2B:71:3A:91:4E:5C:D2:0B:C4:8A:99:61:0A:DB:17:5F:4F
X509v3 Authority Key Identifier:
keyid:5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:f5:9c:19:44:0d:70:a3:87:43:3b:e6:bb:36:64:8c:f9:45:
86:a9:4b:2d:e1:65:db:58:b1:bc:29:10:3f:e7:ff:d7:aa:a4:
b6:d3:43:a2:5c:c0:10:f2:54:8b:65:fb:16:27:33:2f:cf:51:
83:27:4b:dd:f1:ec:b2:da:89:f5:59:34:8e:65:f1:df:81:17:
c9:93:e0:19:a1:a9:15:b9:25:45:c2:e8:a8:b9:e3:1c:ac:55:
c6:93:ee:96:32:8f:db:e2:dd:60:f2:97:5e:7e:f8:08:33:4f:
3b:d9:4b:03:6b:3a:1d:0c:91:ad:03:86:44:12:91:1b:48:5b:
0f:fa:5a:90:a0:47:21:b4:28:98:d1:18:be:80:3b:95:59:63:
89:f2:fa:f3:7f:aa:c4:a5:dd:17:52:46:3c:25:7e:dc:7b:31:
5a:30:d2:3f:1a:c2:d2:eb:87:c7:e5:10:52:ea:74:11:8d:3a:
6a:cd:8e:c3:2a:b1:b3:63:ec:c5:b7:ea:b7:90:f2:dd:0f:bf:
a9:99:32:bd:70:ca:cc:17:49:20:8a:0a:bb:2a:df:11:7a:ed:
6b:91:51:48:ad:b7:a0:fb:a3:b1:9d:06:08:12:08:b6:cc:12:
02:78:70:05:22:51:e7:0d:09:da:e8:8f:dd:ed:a8:c3:c5:dc:
fd:ed:c9:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:45:02 2025 by rpki-client