Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json)
Hash identifier: 6ljSw80rN1QXQync+/rZvMpF9R9Vfjc/p6kXkvO+9os=
Subject key identifier: 3A:31:FA:EC:11:8D:EB:77:BE:82:B1:83:9C:DF:39:3D:AA:40:87:BD
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 0198C97FA353B50B649B211330A86DC1B928
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
Manifest number: 0DF3
Signing time: Wed 20 Aug 2025 22:00:41 +0000
Manifest this update: Wed 20 Aug 2025 22:00:41 +0000
Manifest next update: Thu 21 Aug 2025 22:00:41 +0000
Files and hashes: 1: 8rSm2TYmCggVgedhJYf2d5mO9bY.roa (hash: u5F6NWnwd9MOKoxteUtWCw1+tPwzMsMfG5qFtnCO6pk=)
2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: laUBLQWVKH67CEHBE6M9qiqWS+CSwNPdvq0hQqDcqbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 22:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c9:7f:a3:53:b5:0b:64:9b:21:13:30:a8:6d:c1:b9:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: Aug 20 22:00:41 2025 GMT
Not After : Aug 21 22:00:41 2025 GMT
Subject: CN=3a31faec118deb77be82b1839cdf393daa4087bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f6:cd:86:6d:26:90:7f:97:96:cc:b1:be:06:
d1:b3:63:1e:7e:b2:24:b9:83:d4:31:b4:bd:17:9f:
0c:72:d6:19:10:74:74:fe:7a:b5:c0:7c:75:9a:75:
8f:29:ae:9f:5e:41:1d:b2:8f:01:4c:b8:79:33:89:
53:43:9f:36:8e:f0:29:4a:ea:21:f3:09:50:d9:90:
9f:21:58:c3:2f:a8:3f:cf:6a:d1:14:9b:14:41:07:
34:f7:af:54:a7:21:7f:32:10:a0:04:91:e1:05:33:
d5:43:41:3f:ac:f2:76:d8:3c:ca:0c:26:2d:bb:19:
be:13:67:64:e2:69:f5:34:54:ca:47:ae:23:1e:e7:
7d:12:d1:f9:56:40:e4:7c:5c:2e:db:cb:c7:bb:a5:
7e:4a:a4:fa:60:66:ee:c8:12:9c:72:a0:ef:a3:3f:
d7:5a:90:8a:c1:eb:f8:a1:e5:77:47:90:2e:ea:d7:
a7:ab:71:ce:54:1c:f8:f5:a0:a0:06:8a:f4:5e:5d:
ac:72:60:79:bc:8a:98:95:fa:09:a0:55:ce:74:d5:
60:ba:ba:6e:9e:1f:73:61:48:35:22:d5:f6:eb:7a:
b0:d3:cc:7f:d5:5b:7a:e0:16:d9:fa:de:94:b5:d8:
84:78:d6:01:1c:2d:b1:96:99:de:34:0f:af:1d:dd:
51:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:31:FA:EC:11:8D:EB:77:BE:82:B1:83:9C:DF:39:3D:AA:40:87:BD
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:1a:8f:b5:4e:c8:a2:32:88:20:ee:a7:a8:6d:1d:55:5f:64:
14:59:c5:e4:b4:92:0b:aa:69:bb:fd:d7:8e:79:e8:8c:d8:8c:
b5:fa:c3:53:aa:3e:3b:a6:b5:6b:c6:2d:e2:a2:82:18:e6:35:
99:37:7f:0f:6c:0c:d4:e0:42:ce:80:5c:25:57:db:90:8a:ae:
35:6e:af:4d:3a:aa:e9:9c:57:f3:be:9b:7d:26:7e:53:37:8d:
44:2c:f9:6b:33:5a:32:1e:58:2f:ac:04:ec:e8:3e:0d:1c:58:
6c:43:53:f1:af:82:6f:5b:e3:ab:42:b5:8c:a4:62:f9:e6:25:
a2:ab:51:d0:39:9c:48:cc:c9:98:1b:ab:4f:0e:de:d6:c4:43:
d1:b3:5f:98:9c:55:d0:34:09:0d:58:4e:de:ef:d4:5a:a5:10:
4e:93:69:b5:bf:2b:48:8c:3c:34:23:7a:a8:c9:a0:08:d6:3c:
67:6a:13:5e:11:c4:3d:05:2c:88:c9:5f:80:3e:b9:98:98:e0:
b1:a9:b2:a4:4b:51:a7:29:72:01:c9:47:6e:4e:32:d9:02:55:
81:24:9a:18:c3:4e:dd:38:87:d2:23:59:d7:46:7a:4d:86:37:
8b:21:1e:c6:c7:87:ca:92:58:4b:eb:e1:ae:f5:d6:19:d4:39:
25:7d:4d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 01:28:19 2025 by rpki-client