Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
File: XFe2FhFxnsfI4AErGv9-gfx2ib0.mft (raw, json)
Hash identifier: rE8ErDGS5qwcipUroLiJ3bc4ED/nh81AOVQOPjfF3Dk=
Subject key identifier: 8F:2C:B0:2F:30:F5:D1:9D:52:D3:DE:C6:0F:30:A6:92:5E:DC:E3:4D
Authority key identifier: 5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD
Certificate issuer: /CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd
Certificate serial: 0199240D5C5D6F54E6972395B013DA4FE563
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
Manifest number: 106D
Signing time: Sun 07 Sep 2025 12:01:19 +0000
Manifest this update: Sun 07 Sep 2025 12:01:19 +0000
Manifest next update: Mon 08 Sep 2025 12:01:19 +0000
Files and hashes: 1: 736mr1KkVtoBPW1oR7owGe-ullo.roa (hash: uR2lVV+jre6sPLOQey9198pgiqdr//RLVlkZmwpBaQw=)
2: XFe2FhFxnsfI4AErGv9-gfx2ib0.crl (hash: yzTG/CsK/N2BN6FDozYW+tm3H7cYySlB0+9iJE7WD3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:5c:5d:6f:54:e6:97:23:95:b0:13:da:4f:e5:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd
Validity
Not Before: Sep 7 12:01:19 2025 GMT
Not After : Sep 8 12:01:19 2025 GMT
Subject: CN=8f2cb02f30f5d19d52d3dec60f30a6925edce34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:09:02:cb:fc:63:9d:3a:c3:2d:ad:ea:f9:08:
82:48:3e:5c:02:7a:87:e0:39:38:a3:eb:4b:59:6c:
ab:e9:37:79:4d:45:d1:39:f5:35:42:cf:ec:25:98:
f8:1c:cc:0c:e4:24:2a:7e:f1:b7:99:7a:33:b6:65:
e9:21:4f:80:2e:8f:e8:25:51:ed:2d:0f:d0:b6:35:
fa:9d:6e:64:d7:a1:40:48:77:ca:e4:f1:79:4f:a0:
a4:b3:56:9f:21:23:2e:ee:a6:86:e5:32:e6:92:fd:
05:44:c3:c6:7e:90:f2:e5:93:d2:ab:99:7b:49:29:
e5:84:87:3c:a6:05:9d:a5:f0:ab:b6:09:44:f5:4f:
a7:a7:88:59:e4:7c:3a:20:4c:23:7a:24:e1:68:96:
76:26:7e:ec:c1:29:87:18:e2:a6:0d:90:54:e0:41:
4c:1d:31:6a:71:be:4e:72:bc:4b:45:e4:62:4c:34:
65:0f:f5:13:a8:8d:cb:f3:48:a3:a0:5e:7a:8d:b5:
94:ab:eb:e3:3a:28:63:94:a1:58:c1:f1:cd:f6:26:
a6:51:bb:d4:e1:8f:22:eb:70:8d:52:ef:fc:4b:05:
25:a9:12:c2:25:77:69:37:a4:4e:a8:8d:72:05:40:
27:96:ad:bd:66:c7:cc:b8:7a:8a:fe:bb:fb:00:6b:
27:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2C:B0:2F:30:F5:D1:9D:52:D3:DE:C6:0F:30:A6:92:5E:DC:E3:4D
X509v3 Authority Key Identifier:
keyid:5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:29:fd:cd:ba:8f:95:9b:ef:76:c5:7f:57:64:e1:e9:30:9b:
dd:d5:ea:91:a3:e9:eb:af:fb:e3:14:58:6b:dc:50:e3:46:ce:
da:c7:5a:31:34:78:fa:5d:db:16:fe:35:dc:e2:4a:6a:e3:4c:
ef:ec:17:70:b9:c6:7c:9d:fb:a2:54:6c:ce:d1:97:a0:e8:06:
10:3f:3b:1d:20:92:55:ca:ef:ae:6f:81:f3:4c:df:39:73:6a:
ef:af:48:a8:c7:af:6f:d6:3f:b9:fe:cc:66:97:a2:79:50:89:
ab:79:6c:90:47:85:77:9b:e4:3d:7d:50:5e:8c:18:79:cc:6f:
bf:50:11:77:9e:29:12:f8:ae:5a:b8:b2:d4:f9:98:2a:5f:40:
6d:80:f2:db:6c:d1:91:ec:6d:ca:98:3e:95:5f:db:54:1d:2f:
db:11:6a:27:7e:b3:f2:68:75:d0:18:ae:3a:6e:e8:56:0a:d0:
40:6c:a0:20:2a:20:34:f0:60:4d:28:56:df:9d:34:83:43:5e:
85:20:59:a6:b6:62:bc:58:7c:2d:22:59:42:72:c0:c0:14:aa:
d1:0b:06:80:19:f6:87:e9:f5:fa:d3:f0:ff:9f:21:8e:6e:ad:
c0:46:67:a4:65:d4:ca:a5:5a:ad:2b:20:b4:a3:e8:49:b6:39:
1e:a0:93:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:35:44 2025 by rpki-client