Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: y6UK/I0ENRcKUGU9ox3/V87TXIB6qCvt6eVuAkFW8oY=
Subject key identifier: 9F:48:6D:F8:F5:2C:41:22:AF:01:87:57:05:F6:DC:D1:7D:AD:F3:68
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 0198D4E017D49C9D499184B82DFED5BF3ED0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 0AD3
Signing time: Sat 23 Aug 2025 03:01:52 +0000
Manifest this update: Sat 23 Aug 2025 03:01:52 +0000
Manifest next update: Sun 24 Aug 2025 03:01:52 +0000
Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: F3MszRoqvtFkDdEnhmmibEIGT+NBV/UEwVBG3tIvHqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:17:d4:9c:9d:49:91:84:b8:2d:fe:d5:bf:3e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: Aug 23 03:01:52 2025 GMT
Not After : Aug 24 03:01:52 2025 GMT
Subject: CN=9f486df8f52c4122af01875705f6dcd17dadf368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7c:3a:fb:5d:13:07:63:aa:c3:6d:97:7e:ec:
59:20:f2:8a:c7:61:77:5c:d9:76:15:cc:b5:60:13:
c3:47:d4:a4:1b:da:b1:3c:50:09:e5:4c:21:5d:d2:
db:03:da:8c:c9:2b:e5:48:71:a6:26:ad:24:a5:9c:
67:1a:4e:e7:81:0b:cf:45:b5:a7:f6:04:50:01:19:
9d:1e:e4:55:96:55:13:97:34:24:e1:6d:4a:d4:5f:
9a:89:88:33:2e:5c:86:ac:14:40:76:cb:ee:c1:81:
9b:62:c4:b7:c8:98:f1:35:5c:a1:00:a0:2d:f1:4c:
69:60:ec:52:4e:2d:90:12:35:7f:80:ae:8c:7c:0a:
28:77:bb:c5:e1:23:1b:c2:f6:86:4e:89:a2:12:6a:
ea:0b:7b:f3:8b:48:5d:56:dd:d5:08:ea:97:e2:d3:
62:ae:f0:6e:dc:ab:43:1f:5c:74:cb:93:83:18:2c:
96:ac:03:7b:12:bf:43:cb:35:b6:24:9c:aa:af:61:
c8:d8:b1:5a:ab:bb:08:b4:25:eb:cf:c6:b5:dc:4d:
a3:45:66:77:d2:2a:02:ac:f8:f3:ee:3f:ed:8c:31:
27:33:89:24:a9:8a:c7:1c:f6:68:7e:12:c1:60:b1:
d9:7b:c7:84:60:45:04:17:f4:1a:0a:1b:74:95:41:
20:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:48:6D:F8:F5:2C:41:22:AF:01:87:57:05:F6:DC:D1:7D:AD:F3:68
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:15:d2:83:f6:8c:73:51:fa:86:0e:0b:6b:53:93:62:a1:e6:
72:7d:6b:73:ea:3d:4e:40:56:ef:e8:b2:39:46:9a:dd:8d:b4:
95:9c:aa:f5:67:0d:a6:cb:f2:ee:cf:0f:ce:39:bd:8a:b6:94:
17:7d:3d:ba:de:77:55:c7:d7:d0:a6:33:51:c0:e5:af:8b:7d:
ff:fb:4b:aa:d9:5c:b4:5f:66:35:40:9e:86:d6:30:e1:94:ea:
7b:00:63:18:aa:70:a7:1f:df:53:e8:2a:13:7f:dc:3e:8d:6f:
aa:1f:57:67:81:2a:8e:4f:a3:e6:ee:3c:7f:e9:6f:c4:ed:2e:
de:66:81:f9:63:e8:8a:92:c9:0a:ec:1b:ae:11:a0:34:8c:9b:
38:a2:56:96:6f:2c:df:52:17:b1:0a:ab:71:d6:e5:9f:f1:a8:
1b:7d:89:94:c9:76:f5:13:4f:3e:85:3c:e7:b2:fb:92:27:95:
32:2a:2b:c8:6a:4c:07:9b:9c:50:5a:17:e6:13:90:11:aa:f9:
9a:df:e3:5f:cb:08:4a:01:68:1a:72:31:e3:16:f7:ad:2f:d2:
34:66:8a:d1:73:e6:70:98:89:22:67:6b:e9:75:ef:e2:f2:08:
15:37:58:7e:34:b8:8d:09:b7:40:d7:6f:4f:22:4c:8b:29:bc:
bc:ac:09:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:46:06 2025 by rpki-client