Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
File: XWU9B97R6Nf08uoEvTaELFsS8V4.mft (raw, json)
Hash identifier: t3oOwwsQYzmHWKgcy84xxNyJpWdmSXFxe/CXB+Jg5jc=
Subject key identifier: 23:B8:8D:09:42:1E:6E:F2:2C:F5:54:7B:AF:48:9C:24:F0:B2:8F:44
Authority key identifier: 5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
Certificate issuer: /CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Certificate serial: 0198D4E06BF52FAC059CB6249B0DA933CF7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
Manifest number: 0E71
Signing time: Sat 23 Aug 2025 03:02:14 +0000
Manifest this update: Sat 23 Aug 2025 03:02:14 +0000
Manifest next update: Sun 24 Aug 2025 03:02:14 +0000
Files and hashes: 1: LETlz166RFHGtOnMtZqu-hVYTtY.roa (hash: R/HDeBwYS+y6cI45NJn8rpNKDr4lgvNm8JPFpPhGnoo=)
2: XWU9B97R6Nf08uoEvTaELFsS8V4.crl (hash: 8hB0Qgju3mjnBVLcishVf0Fo26SVg88MPdGEwg8d8Ck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:6b:f5:2f:ac:05:9c:b6:24:9b:0d:a9:33:cf:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Validity
Not Before: Aug 23 03:02:14 2025 GMT
Not After : Aug 24 03:02:14 2025 GMT
Subject: CN=23b88d09421e6ef22cf5547baf489c24f0b28f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6d:e2:19:c8:d6:05:06:c5:34:19:19:9f:f8:
91:2b:28:dd:93:2a:23:26:7e:f7:dd:88:69:94:13:
cb:4d:e1:6c:36:02:77:db:b7:b2:e1:1b:f8:df:bb:
7c:9e:77:77:a0:3d:20:5b:2f:a4:f4:ca:d5:29:06:
d7:9a:05:73:ec:e7:19:4a:34:53:70:89:0b:b7:e0:
58:c9:44:51:7d:0d:9f:4f:88:d0:57:42:4e:cc:7c:
0d:2c:c5:3f:cd:2d:c5:a2:33:0d:4d:2e:78:02:e4:
f0:8d:8d:7c:ab:02:3a:d7:87:ab:a8:e5:d8:f9:eb:
46:0d:02:4e:0e:a8:5a:77:e0:06:a2:09:cc:c4:d4:
20:fe:14:c6:b9:16:b2:f6:66:36:09:46:0c:17:82:
d6:fc:30:1c:d1:5e:34:33:63:f1:ea:bc:08:f3:fa:
a8:bf:5b:03:89:6c:af:19:7c:9e:2c:69:75:29:a6:
13:c3:9c:ba:50:ff:82:31:8a:5f:99:6a:f6:da:c0:
b9:ad:74:07:fd:5c:54:a5:87:93:c5:80:9e:b3:16:
bb:78:6d:03:c4:41:37:2b:af:df:21:1a:73:c9:72:
11:5f:73:6e:9c:cb:f1:04:bc:b2:72:fb:95:95:33:
8d:7e:f7:6b:7c:32:15:7e:89:7e:ea:dd:a7:04:f3:
19:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B8:8D:09:42:1E:6E:F2:2C:F5:54:7B:AF:48:9C:24:F0:B2:8F:44
X509v3 Authority Key Identifier:
keyid:5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:64:87:fa:7d:4e:d4:ce:7d:10:bd:ed:d0:81:5e:d5:b6:69:
8c:e1:49:9e:7c:01:9f:8b:48:99:da:53:06:49:dc:a3:ca:d2:
96:79:2f:92:e5:fc:38:8c:1c:e4:ca:53:3d:d7:b5:83:32:ce:
4b:b5:ad:21:40:e4:67:6b:72:2b:82:3e:ca:69:a1:2e:3c:f0:
cc:c6:9c:f7:bf:91:50:78:5c:53:bf:f7:d1:b9:7b:d3:67:be:
c0:d7:a6:3d:2f:a6:88:b8:ce:a3:19:ea:db:a5:67:d7:98:3d:
6a:7c:a4:bd:92:0e:2b:95:5a:15:1b:b4:e4:72:07:70:25:2a:
0d:66:14:1f:10:60:2a:7e:ab:b7:64:7f:20:c1:f7:26:8e:3a:
c3:f8:1d:8c:f1:ec:a6:5d:51:3d:1c:16:72:b2:13:3c:f3:d2:
90:66:75:8e:d5:49:ec:c1:2f:10:44:72:cc:9d:0a:e0:b0:b9:
4e:df:ee:0a:bf:87:bd:a3:79:e2:20:68:9a:da:f4:a0:1e:e8:
5c:90:e6:ec:58:f2:c9:cb:37:8a:9a:7a:2b:f2:0d:fb:c5:6a:
ab:3d:d0:16:0f:44:b5:d2:ff:e1:81:87:de:cb:c8:e3:63:c1:
0a:d6:fe:78:7b:d4:3d:8e:da:5e:3b:79:85:09:93:7f:45:d5:
4d:37:4b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:17:58 2025 by rpki-client