Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
File: XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft (raw, json)
Hash identifier: zIZi1GP7v8/rGDn5lTYK4tRfJcYRGx+z99PfL/egWBA=
Subject key identifier: 6A:FA:F0:4C:D3:A7:6A:E7:03:A7:51:12:2A:FA:15:A4:9D:9E:DD:53
Authority key identifier: 5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
Certificate issuer: /CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Certificate serial: 01993424B5F55FDC0373210C5ACACD392754
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
Manifest number: 04AA
Signing time: Wed 10 Sep 2025 15:00:44 +0000
Manifest this update: Wed 10 Sep 2025 15:00:44 +0000
Manifest next update: Thu 11 Sep 2025 15:00:44 +0000
Files and hashes: 1: FFFlJ1ntZuYfKnoxbFz369bHbCY.roa (hash: OzHlJ3L/Uq51e4UIV4xO7NIltGOZNXtcjik1Syg/eD0=)
2: XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl (hash: QhhZo3e8ltmCgTfcsGwAfyu5N34u0PHVg89mwXk9Yuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:24:b5:f5:5f:dc:03:73:21:0c:5a:ca:cd:39:27:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Validity
Not Before: Sep 10 15:00:44 2025 GMT
Not After : Sep 11 15:00:44 2025 GMT
Subject: CN=6afaf04cd3a76ae703a751122afa15a49d9edd53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:11:e8:91:55:57:73:86:7f:e3:a8:7d:cd:9e:
6f:82:e6:07:f3:20:d7:fc:96:75:4b:dd:f0:d1:02:
3c:87:af:aa:85:50:77:0a:65:d7:59:7c:98:59:b3:
ec:fd:81:5e:a8:b0:a7:76:5a:e7:c5:02:b9:86:64:
ac:bc:52:87:b3:2b:b5:8a:59:75:19:83:d8:21:c2:
01:23:56:e6:41:ed:35:cc:e9:a5:24:3b:74:85:e6:
2b:70:78:94:10:08:37:5a:47:84:7e:0c:72:d3:fc:
e2:95:b1:6d:0e:2e:28:29:3d:f0:ac:9a:c3:fb:ae:
97:dc:9e:c3:20:4b:f7:12:3d:ec:d3:ae:56:7b:d4:
4b:1c:6d:cb:4a:e9:1d:1a:3b:c9:fe:59:60:92:ac:
fa:a4:35:77:c1:20:dc:af:a0:3c:e8:5c:21:19:4a:
b9:c6:e4:ec:31:6c:07:8c:7e:67:94:eb:8b:8e:4e:
dd:1b:fb:2e:09:01:82:1a:0c:54:36:03:57:21:25:
e1:e8:58:fc:2a:83:fd:d2:e8:0d:4b:f4:68:22:40:
ce:3b:9b:a8:08:a0:18:36:01:62:b7:b3:d0:f8:7c:
3d:5e:e7:10:61:38:75:38:5f:b1:65:d1:35:27:cf:
17:59:4e:45:d0:51:06:4d:52:5b:55:aa:5b:1c:46:
6e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:FA:F0:4C:D3:A7:6A:E7:03:A7:51:12:2A:FA:15:A4:9D:9E:DD:53
X509v3 Authority Key Identifier:
keyid:5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:c8:7e:a8:9b:b9:5f:d8:7b:c9:ab:6a:ac:f6:79:9b:c0:2e:
0c:7c:fe:f2:ed:0b:b3:7f:e3:c8:f5:0d:44:80:c1:5c:90:a6:
7e:d8:c5:8e:7e:51:98:04:4a:2e:88:8f:04:69:10:41:55:d4:
38:44:0a:26:43:05:66:cb:3f:97:95:53:01:21:bc:0e:c9:4d:
0f:c9:d4:fb:3c:e0:a3:cb:e5:24:79:40:26:56:85:db:0e:9b:
68:a9:06:a5:a8:3f:9c:a5:da:77:51:67:b8:dc:7b:56:f1:1b:
db:ca:c7:ff:96:33:29:72:89:42:b7:37:ea:86:84:26:ee:4a:
41:d4:67:b0:86:5b:c4:e9:22:ba:2b:12:4c:5d:40:d9:cc:76:
f5:82:b4:37:9d:2e:5c:6b:7c:8e:28:b6:bf:e8:22:70:bf:0d:
13:2f:a5:05:9e:1a:64:91:4f:fc:b1:31:3f:14:65:91:4a:fe:
a8:3d:70:8f:8d:06:54:8a:17:92:0b:8f:79:56:34:0c:11:b7:
0d:b4:97:53:f9:97:fc:23:67:88:60:f6:6a:e1:56:d8:5c:35:
e1:a5:dc:04:9e:ab:7a:28:08:52:85:3a:5b:8e:24:63:70:e0:
5b:e8:f1:79:36:cb:c4:f7:a3:b4:3a:d9:72:da:cc:ce:62:54:
5e:5a:ee:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 17:25:29 2025 by rpki-client