Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
File: xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json)
Hash identifier: ryLt/tzzuhA/hjd/BgkF7T6KTRZqs9xbVQskp3zivWs=
Subject key identifier: 1E:A0:E1:3A:DB:26:DF:E2:2D:7F:7A:5A:11:BE:E5:A7:A4:21:18:0C
Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
Certificate issuer: /CN=c5bfa71a5113fed82464776c14371514c9218ef5
Certificate serial: 019954C23386A9F423541BDA208E217375F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
Manifest number: 0AC3
Signing time: Tue 16 Sep 2025 23:00:37 +0000
Manifest this update: Tue 16 Sep 2025 23:00:37 +0000
Manifest next update: Wed 17 Sep 2025 23:00:37 +0000
Files and hashes: 1: IzmeYXYlO_xmlW74WeQyL7gffpE.roa (hash: Z5XX/V/bAHCE8fRhzNUzhUtEMOMQ14B1YoCinHSL1lM=)
2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: UBEwuu8d0vuUv6jUh+sD5YhyHQSSqKlvLWTCSrqcTqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 22:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:54:c2:33:86:a9:f4:23:54:1b:da:20:8e:21:73:75:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5
Validity
Not Before: Sep 16 23:00:37 2025 GMT
Not After : Sep 17 23:00:37 2025 GMT
Subject: CN=1ea0e13adb26dfe22d7f7a5a11bee5a7a421180c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:88:fc:bb:05:cf:91:50:21:b4:98:3f:9a:55:
20:1d:ba:d7:fd:7e:92:8b:76:a4:9a:94:07:a4:59:
96:83:06:59:f8:58:a9:2a:ed:d2:16:99:22:3d:ea:
16:a2:1e:03:23:2d:0a:30:5d:a7:77:63:04:86:58:
c7:e0:45:05:35:65:f7:fc:7d:b2:e0:9b:5c:7e:e2:
c7:45:2e:6f:e7:9b:22:e1:d3:1a:36:2c:e6:82:51:
40:c6:02:01:c6:d1:82:d6:54:f9:68:94:5a:28:1b:
03:50:c3:11:12:74:97:2f:e4:d3:e3:ba:82:da:63:
10:b4:f4:40:c0:7f:cb:17:4f:24:88:d7:4a:99:1e:
41:6c:07:ac:18:d0:22:dd:ea:81:7c:9f:da:58:7d:
94:c8:23:30:2e:f1:15:8b:8d:fe:a0:25:11:1b:82:
6c:2d:1e:20:a4:4f:36:dc:00:b4:2d:0c:64:85:60:
a5:b6:8a:fe:8f:67:2a:3c:be:db:dd:85:2d:08:27:
4d:fc:70:bf:da:e6:ba:12:17:13:0e:18:df:f3:d5:
ff:89:b9:3d:72:d0:f7:ca:4f:60:ed:e8:d4:21:60:
f4:fa:9a:8d:2b:ae:99:5f:c0:f9:6f:b3:5c:72:4f:
f1:8f:85:1e:5a:a1:2d:2b:27:88:10:cd:26:ff:dd:
32:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A0:E1:3A:DB:26:DF:E2:2D:7F:7A:5A:11:BE:E5:A7:A4:21:18:0C
X509v3 Authority Key Identifier:
keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:17:c5:1a:f8:85:64:55:47:db:dd:5e:b3:ef:c3:df:0a:2f:
61:3c:c2:04:a3:c4:19:1e:ca:a0:61:80:43:3a:e8:49:c4:a6:
ca:41:ba:63:db:65:64:99:f2:1e:b7:48:91:da:d6:3c:eb:e9:
0a:2a:20:bb:f7:47:4d:cd:c5:39:2f:81:42:b9:67:f4:b9:05:
23:1f:79:98:b2:a9:2a:06:22:a9:ae:a8:b2:9d:b2:15:47:0a:
df:50:21:64:06:14:3f:9a:1f:e1:9d:38:0a:79:46:f7:d3:db:
a9:38:f7:92:7f:10:da:52:b3:8e:8a:0c:5f:9b:73:37:04:b0:
bc:65:3a:8e:b5:3a:14:82:f8:7a:69:ba:69:44:c7:72:43:a4:
03:0f:72:51:f2:b8:5d:a3:24:7f:ac:8f:e5:ba:34:e2:c1:f7:
a4:8a:2a:b5:0e:85:de:e3:20:ed:06:6f:d5:0e:43:41:7a:3c:
9c:27:2e:1f:7c:33:eb:3d:f0:7f:29:7f:20:54:a0:cb:82:9c:
0d:97:70:ea:ff:7d:f5:ea:30:fb:1c:34:0b:a7:09:1b:43:86:
98:c5:65:ec:af:b1:bf:70:9d:ee:b9:77:fe:af:06:41:0f:9c:
38:17:f5:ae:d8:60:e5:a0:a4:e5:28:a2:48:e5:e1:95:00:fd:
fa:d6:0c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 17 08:34:32 2025 by rpki-client