Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json)
Hash identifier: d2XTgOuwhAHA9a95oTUTuwKVtZPbnlSmj4GvJ2y7c8M=
Subject key identifier: 1D:73:4B:6E:14:AA:A7:21:F2:33:A2:55:30:ED:D9:1A:92:B2:C0:C4
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 0199221EE0A76475FE3D25C7E9B2F170BB94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 03:01:12 +0000
Manifest this update: Sun 07 Sep 2025 03:01:12 +0000
Manifest next update: Mon 08 Sep 2025 03:01:12 +0000
Files and hashes: 1: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: 9nAdk9KRg4WzMoMcHy/S7u2difJHyrBpJ+ITgGVCyQs=)
2: srWs4lSgEcXww8bmZ8Qduqdxgdw.roa (hash: Fa3vdYsDt8LbAe4PXMPi2JDBOubqWHhdVQas9y66mmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:e0:a7:64:75:fe:3d:25:c7:e9:b2:f1:70:bb:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: Sep 7 03:01:12 2025 GMT
Not After : Sep 8 03:01:12 2025 GMT
Subject: CN=1d734b6e14aaa721f233a25530edd91a92b2c0c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:95:f7:77:62:69:6f:03:c1:83:23:b0:0c:fc:
58:d2:20:1e:73:b5:f2:e9:06:44:20:03:ac:4f:64:
93:11:bd:8e:a2:8a:dc:7d:aa:b3:fc:60:66:14:01:
52:31:21:c1:f2:9d:6b:79:1f:9e:29:c7:39:ea:47:
84:2e:a3:0e:32:bf:48:4e:2d:64:15:f4:92:59:c7:
15:ec:be:f6:de:dd:b0:dd:be:a1:66:9f:5f:2d:74:
5a:f1:2c:d0:fe:33:9f:cc:89:14:bc:65:0c:41:ec:
66:bc:0d:f5:24:6f:83:c8:42:5b:01:60:a6:24:78:
0c:7b:19:77:4d:a8:62:ee:60:85:0f:67:ba:cb:44:
b6:7f:bf:ac:49:a8:b2:43:8b:8a:eb:ea:90:b0:1b:
92:8c:5b:5e:56:d1:c1:c2:5c:72:12:a7:b3:7a:ea:
e4:51:14:28:fa:67:55:a3:c0:9f:64:50:27:ca:60:
0f:08:31:09:01:0e:6e:9e:f4:cb:57:eb:41:ef:9b:
81:c3:17:95:3e:0a:49:26:cc:04:19:da:7b:1c:af:
7e:83:f2:83:eb:0d:93:7c:82:07:62:65:36:9c:81:
17:36:42:0f:bd:69:e3:01:8a:6a:82:38:e6:13:1a:
e1:30:03:66:51:2c:51:1d:97:b5:12:f4:f4:67:0e:
a0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:73:4B:6E:14:AA:A7:21:F2:33:A2:55:30:ED:D9:1A:92:B2:C0:C4
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:de:27:cf:dc:3a:50:26:c8:58:26:a5:ad:3a:a2:f0:d1:d5:
31:1f:f0:1b:59:66:7b:07:3a:d3:3c:49:ad:f7:3f:4f:3d:33:
d2:15:e6:87:bc:71:b6:f0:b8:2c:4d:55:4c:24:e6:0f:58:10:
93:8e:9b:87:c4:0c:07:df:84:10:91:76:06:ba:a9:3b:61:9e:
72:3a:64:57:34:fb:f9:2f:67:22:79:51:f9:64:f7:9a:5c:d9:
ac:17:0e:fe:25:d0:e5:a2:8d:e2:be:7c:10:a8:f7:79:a8:37:
9e:b7:32:4b:8c:e8:ae:be:80:f2:5b:03:78:21:e4:1d:98:f0:
37:d7:63:d9:e6:e5:22:b7:87:ad:67:e0:d1:a1:cc:47:e5:4e:
01:d3:fb:86:76:03:3a:1e:5f:47:3e:2d:24:bc:62:8e:18:3f:
e4:b1:48:33:23:ef:44:5f:97:0d:7f:27:02:62:cd:4d:a1:8b:
d3:a2:92:64:ae:0c:c4:f4:8f:e2:e7:01:a7:96:d4:36:69:7d:
76:80:33:ae:32:1d:24:bb:fd:93:9d:df:1c:f7:bd:20:86:52:
0e:d5:1b:60:f6:20:aa:c7:c7:b5:6e:4f:c4:c8:0e:b4:92:29:
ea:88:dc:ec:4c:e5:79:ee:e3:1d:39:95:94:6b:65:0d:7b:4b:
be:db:3a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:25:10 2025 by rpki-client