Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
File: XEwop1rJaVHcOEAKgPnvOqryqss.mft (raw, json)
Hash identifier: hIupHnTlyHx+GaeKFMz3oxrDEOQbTv0Rf4duVClgUgQ=
Subject key identifier: CD:88:88:B0:6C:DA:FA:7D:28:51:18:91:4E:26:AA:FF:19:52:56:B0
Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Certificate serial: 0199345BA42DEDC415184BE586336267AB9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
Manifest number: 167B
Signing time: Wed 10 Sep 2025 16:00:44 +0000
Manifest this update: Wed 10 Sep 2025 16:00:44 +0000
Manifest next update: Thu 11 Sep 2025 16:00:44 +0000
Files and hashes: 1: XEwop1rJaVHcOEAKgPnvOqryqss.crl (hash: C3OJCh5u5+xv5RI846bYBMbtRsxXSWzAouGqiJkRLE4=)
2: eIbScniidhxgoW_2gLpLbnftECI.roa (hash: 0LV2/9XqX9EVzrNxsg5Sc4fQTUKSwMZdzfQWJW36Pqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 16:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:5b:a4:2d:ed:c4:15:18:4b:e5:86:33:62:67:ab:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Validity
Not Before: Sep 10 16:00:44 2025 GMT
Not After : Sep 11 16:00:44 2025 GMT
Subject: CN=cd8888b06cdafa7d285118914e26aaff195256b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:42:dd:f8:94:1e:62:25:89:08:77:2b:a2:8a:
68:ed:41:29:b8:00:1a:30:77:16:d6:8e:15:eb:c3:
c0:18:50:02:93:05:a6:c0:fe:a9:1a:29:f5:49:32:
f2:3b:41:0b:06:5a:00:2a:44:96:27:b7:60:b6:23:
33:87:ae:34:72:d3:33:16:62:51:b2:2a:c5:8a:72:
37:96:b1:b8:c2:f5:a4:7f:62:1e:82:9a:f0:e1:26:
28:de:da:a9:ea:eb:f3:aa:dd:cd:b7:d1:38:f9:16:
92:a7:85:eb:df:59:92:3d:0b:da:ec:b8:fb:11:d3:
c1:31:2e:65:ce:e6:93:79:99:e2:88:fb:d3:cb:ce:
53:cc:3a:d9:2d:25:68:84:72:5d:bd:1e:51:68:6f:
db:64:84:7e:10:38:1f:4f:e5:4c:c0:26:00:96:e9:
c5:15:d8:32:6b:3b:bb:37:ea:c4:03:28:9e:ca:1b:
40:7f:70:2a:4a:0b:ec:90:92:15:de:b4:ae:f1:35:
e0:28:2b:1d:02:63:ca:d5:fd:b6:91:f3:e2:ef:a5:
c1:bd:c7:5f:1f:24:60:bd:89:7a:43:ee:73:31:2e:
b7:c3:ca:bf:b2:33:2a:df:4c:4a:67:91:ac:5f:a2:
b5:92:d2:08:1f:11:a4:46:f1:3f:ba:fa:55:5c:7c:
7b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:88:88:B0:6C:DA:FA:7D:28:51:18:91:4E:26:AA:FF:19:52:56:B0
X509v3 Authority Key Identifier:
keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:1e:2c:8c:86:c0:ea:06:63:d6:51:77:10:a8:4c:26:1a:47:
1b:fd:90:2e:3a:14:87:79:9d:0e:17:a5:97:73:e1:45:bd:aa:
4c:6d:ca:be:08:ac:37:06:eb:b3:7f:6d:07:51:95:98:db:2e:
e4:71:69:d0:f3:76:43:0f:b2:9f:b3:ce:a8:71:37:03:01:84:
5c:78:08:f1:f0:e3:c1:49:c1:c3:5b:cb:d4:ea:55:9e:19:7a:
a4:b6:50:a2:a7:f1:ea:f7:25:ff:51:0b:df:ed:92:66:e8:a9:
99:9a:9a:17:2c:8b:3a:4e:f8:f6:90:34:5b:75:f9:25:bc:b4:
a9:4d:b6:fc:7c:d6:32:87:1a:ef:8b:05:cd:c6:c8:0c:18:87:
ba:2c:ab:a1:ff:69:e6:f9:26:7b:01:79:20:a5:53:18:22:72:
34:ed:10:43:e0:a9:c8:9d:8c:ee:f7:d1:6e:78:1f:a3:25:a8:
f6:43:3e:69:53:e3:92:6e:f1:75:b1:2f:70:86:53:47:7f:56:
22:cb:84:ac:d0:82:95:63:ca:7d:e7:54:ea:96:62:a3:7c:d9:
b7:f3:fd:8a:e2:ce:8c:60:61:2d:a3:66:2e:c9:a2:b3:01:13:
da:0a:06:8e:84:56:3b:ee:6c:2e:a1:bd:7a:c8:2b:aa:5c:15:
9b:03:68:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk0W6Qt7cQVGEvlhjNiZ6udMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNGMyOGE3NWFjOTY5NTFkYzM4NDAwYTgwZjllZjNhYWFm
MmFhY2IwHhcNMjUwOTEwMTYwMDQ0WhcNMjUwOTExMTYwMDQ0WjAzMTEwLwYDVQQD
EyhjZDg4ODhiMDZjZGFmYTdkMjg1MTE4OTE0ZTI2YWFmZjE5NTI1NmIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0Ld+JQeYiWJCHcroopo7UEpuAAa
MHcW1o4V68PAGFACkwWmwP6pGin1STLyO0ELBloAKkSWJ7dgtiMzh640ctMzFmJR
sirFinI3lrG4wvWkf2Iegprw4SYo3tqp6uvzqt3Nt9E4+RaSp4Xr31mSPQva7Lj7
EdPBMS5lzuaTeZniiPvTy85TzDrZLSVohHJdvR5RaG/bZIR+EDgfT+VMwCYAlunF
Fdgyazu7N+rEAyieyhtAf3AqSgvskJIV3rSu8TXgKCsdAmPK1f22kfPi76XBvcdf
HyRgvYl6Q+5zMS63w8q/sjMq30xKZ5GsX6K1ktIIHxGkRvE/uvpVXHx7sQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM2IiLBs2vp9KFEYkU4mqv8ZUlawMB8GA1UdIwQY
MBaAFFxMKKdayWlR3DhACoD57zqq8qrLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEV3b3AxckphVkhjT0VBS2dQbnZPcXJ5cXNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wOTc3ZWUtYjk4ZC00YTNlLWIzYWYt
NjdjNzYzMjAxODZhLzEvWEV3b3AxckphVkhjT0VBS2dQbnZPcXJ5cXNzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8wOTc3ZWUtYjk4ZC00YTNlLWIzYWYtNjdjNzYzMjAxODZh
LzEvWEV3b3AxckphVkhjT0VBS2dQbnZPcXJ5cXNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKB4sjIbA
6gZj1lF3EKhMJhpHG/2QLjoUh3mdDhell3PhRb2qTG3KvgisNwbrs39tB1GVmNsu
5HFp0PN2Qw+yn7POqHE3AwGEXHgI8fDjwUnBw1vL1OpVnhl6pLZQoqfx6vcl/1EL
3+2SZuipmZqaFyyLOk749pA0W3X5Jby0qU22/HzWMoca74sFzcbIDBiHuiyrof9p
5vkmewF5IKVTGCJyNO0QQ+CpyJ2M7vfRbngfoyWo9kM+aVPjkm7xdbEvcIZTR39W
IsuErNCClWPKfedU6pZio3zZt/P9iuLOjGBhLaNmLsmiswET2goGjoRWO+5sLqG9
esgrqlwVmwNoiQ==
-----END CERTIFICATE-----
Generated at Wed Sep 10 22:59:26 2025 by rpki-client