Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
File: XwImpwTPYg6yAA8n56kZznMJkb4.mft (raw, json)
Hash identifier: EcFL/xvacBsV0lr0yyrUDCVn4xIRE9ohlUvGIRNxMg4=
Subject key identifier: 0C:3A:47:65:B0:6D:E0:9F:05:85:0B:D6:22:76:12:8F:B9:37:6B:89
Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be
Certificate serial: 0199179AE03258E6DC44EAAA73D4AB474A91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
Manifest number: 0ECA
Signing time: Fri 05 Sep 2025 02:00:49 +0000
Manifest this update: Fri 05 Sep 2025 02:00:49 +0000
Manifest next update: Sat 06 Sep 2025 02:00:49 +0000
Files and hashes: 1: P2NRYwvD64-ChL8WHsL3n2VNc0o.roa (hash: ieevRAfzDccOVGuN3ZGz3jBO2k67pRtiKtsN5CR5hf4=)
2: WePWXi4BVJvCbK70G_Bl8LvCy1A.roa (hash: KcxOlT86bPrqOuZYUTgExqyOPNUmMSnB0pr0K4kluRk=)
3: XwImpwTPYg6yAA8n56kZznMJkb4.crl (hash: ZW8/JDoHwpsHHyNVPazQ7nOrY+dFxS3VhsCJHSAowHE=)
4: ZN7LHZSqu6VYidqfpIPOfCxL2L4.roa (hash: HOkUkg1LrwSaHvSseUfJQzAJzpgcTNuaZCYPqCnldN0=)
5: fm5A4Lmh3Dyoqm8phCUbdJ-SJ50.roa (hash: y1l9jzGOcVZ0GENozcALgbMdp6ZfPx8sRn42vZfb0eg=)
6: mOQsXh6W-nguYweUEP-GggtQ8co.roa (hash: BRX6qGv8sEq7HbLRmf+hKda82RdBa8GI6j+263A+qA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:9a:e0:32:58:e6:dc:44:ea:aa:73:d4:ab:47:4a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be
Validity
Not Before: Sep 5 02:00:49 2025 GMT
Not After : Sep 6 02:00:49 2025 GMT
Subject: CN=0c3a4765b06de09f05850bd62276128fb9376b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:54:8a:fc:cc:a0:22:2f:24:f6:9d:e5:d0:fd:
8b:05:a1:53:73:5c:e4:56:ea:38:f9:06:36:5d:2b:
eb:b4:4a:42:61:e6:c1:4c:cf:b5:8f:41:87:7a:4e:
3b:56:2f:ef:aa:eb:52:d9:d9:48:c7:1e:36:1c:69:
c4:c4:83:a7:a6:de:65:d2:92:73:0b:8c:69:7d:16:
f9:e4:61:4c:52:ad:1d:82:88:c0:71:25:13:b1:17:
a0:de:1f:7c:d4:8f:a2:64:ca:20:98:ff:4c:d4:3f:
f9:46:0f:c2:8c:0a:cd:e5:e3:ea:95:ad:ad:42:75:
2b:7c:f6:14:aa:fb:51:1d:45:82:63:36:6d:6d:46:
5c:58:f6:8c:ee:e9:e9:f1:58:28:8b:71:dc:b1:b9:
9e:9f:ea:cb:35:f9:92:02:23:47:51:6b:34:10:63:
8d:04:34:fa:33:62:34:34:cc:b6:50:80:0b:c6:60:
f7:25:f1:8f:f9:a7:76:d5:3c:7e:1b:dd:5e:45:3d:
5c:82:d3:90:e3:57:94:ca:56:9a:55:c3:48:13:d9:
22:bd:cd:b3:20:56:90:a9:6e:f1:f0:1b:4e:84:4a:
f9:9c:6c:b2:88:7c:22:99:1d:46:13:50:5b:dc:c7:
b9:4d:42:55:8d:86:76:f8:cc:39:89:1e:77:61:13:
bb:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:3A:47:65:B0:6D:E0:9F:05:85:0B:D6:22:76:12:8F:B9:37:6B:89
X509v3 Authority Key Identifier:
keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:a6:7c:ea:a5:21:55:32:9a:32:3c:1e:42:79:6f:59:05:71:
d3:87:92:f5:2d:98:88:61:41:79:93:e2:89:64:ff:4f:cb:bb:
ca:c5:8b:c5:91:4b:64:2e:0e:c0:7f:75:7e:86:89:c5:13:cb:
ed:63:f5:18:3e:52:43:98:eb:a5:eb:a9:d0:20:74:aa:02:6d:
89:3d:06:03:34:b6:6c:45:e5:7c:14:d4:6b:1a:41:55:4b:62:
25:ac:92:e7:7e:27:ef:4e:2c:4d:36:ae:ec:18:7c:f1:71:41:
24:7d:7d:66:5e:e5:0f:17:cd:d8:80:07:22:7a:69:20:c4:3e:
6b:46:e7:af:14:9e:99:23:d5:bc:37:7a:f5:9a:7e:0f:36:b7:
28:4f:8b:c6:40:13:e5:6d:52:24:f3:91:60:02:23:f9:4a:30:
f1:69:bf:89:55:cf:61:58:f3:88:d2:bd:b1:cc:74:0c:fd:d8:
6e:d4:27:3a:f9:0f:fb:17:b0:26:03:a5:b2:b4:87:c3:79:2e:
ef:7a:55:b4:29:a0:3c:06:94:ec:b9:c2:00:fc:15:ed:93:7e:
e0:59:59:dc:a0:0b:c3:8c:81:38:06:9d:76:ff:20:12:81:29:
fa:48:a4:f0:3f:71:36:18:79:31:ee:28:ad:67:52:ff:42:24:
12:14:dc:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:20:16 2025 by rpki-client