Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: V8qh0NvJA0ZtxImFgZlJOOw+op6+btWvJJAOhEYIXAM=
Subject key identifier: 89:CD:7E:BD:24:B3:58:6C:B0:1F:8E:5C:6B:84:6E:4D:A3:46:21:99
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 0198D6608F20E96AB0CB9D6659E03331FA9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 1159
Signing time: Sat 23 Aug 2025 10:01:48 +0000
Manifest this update: Sat 23 Aug 2025 10:01:48 +0000
Manifest next update: Sun 24 Aug 2025 10:01:48 +0000
Files and hashes: 1: QGKSiFavp9LMElSoLZBhqzLqFMM.roa (hash: ip/2uYmlI+BKnaF8k1mqNHwsPmNtHEQrk8aTeSCdMUA=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: 1RmoSAx/MNm0iKMxYBYz2Lx6MssOCN1CAebwpQdF/oA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:8f:20:e9:6a:b0:cb:9d:66:59:e0:33:31:fa:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Aug 23 10:01:48 2025 GMT
Not After : Aug 24 10:01:48 2025 GMT
Subject: CN=89cd7ebd24b3586cb01f8e5c6b846e4da3462199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:31:03:f2:ca:f4:44:d0:b5:8d:aa:60:03:18:
cf:be:df:57:38:a9:15:7e:96:64:f7:18:91:8e:33:
8b:4a:77:c5:21:dc:99:4c:de:8f:a0:7f:88:01:5e:
50:a1:6c:cf:55:bc:fb:f1:84:66:fd:ff:a6:b9:1a:
6a:d8:ea:f9:84:54:a6:c2:92:ec:3d:db:26:75:c6:
89:8b:13:27:ee:26:67:a0:a5:46:5e:7d:7e:27:0c:
f0:3a:a6:06:df:53:ae:0f:d4:f0:18:f7:da:a3:67:
f0:42:3c:c1:22:c1:4b:cd:c3:e0:1d:a5:67:d7:b2:
22:b1:22:9a:a8:3a:1d:19:2c:35:30:41:45:c4:01:
94:6c:20:85:a9:42:38:6c:09:8a:c3:42:bc:59:fa:
d7:de:65:da:50:ab:61:e3:bc:ac:e6:95:72:13:df:
03:a9:0f:8c:e9:d0:83:9f:ae:04:8d:39:48:6c:ed:
0d:ad:e4:29:fd:c1:d7:ca:5b:3c:ab:25:91:18:df:
65:25:d0:bf:ee:20:82:8b:b9:42:f8:6b:3b:78:04:
ad:bb:df:d1:50:68:82:6b:d3:37:6f:92:df:19:84:
ad:cb:46:a3:c5:94:84:79:d5:f3:85:37:be:c5:27:
21:9f:da:9c:b5:d2:90:7d:23:61:7a:9d:df:72:a5:
a7:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:CD:7E:BD:24:B3:58:6C:B0:1F:8E:5C:6B:84:6E:4D:A3:46:21:99
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:46:bb:4f:b4:87:99:58:52:cd:0f:7f:27:7e:81:be:27:9a:
83:58:29:65:f3:2c:81:19:45:ec:63:6d:04:26:97:e8:9e:d6:
6e:51:87:66:6b:92:17:63:ce:6a:01:c6:ce:15:78:f9:4f:6f:
93:c8:02:6d:80:99:b8:56:bf:a8:70:42:5b:82:3b:62:58:61:
54:6c:9a:f5:4d:22:f5:67:a9:4f:ef:36:37:24:ee:d7:6d:46:
ad:e2:a8:45:46:fc:7a:85:56:7c:ed:da:9e:60:40:f6:73:87:
e3:58:e7:18:99:c3:ad:20:ee:3e:1b:d3:6f:35:9c:de:83:34:
01:b1:6a:34:50:d4:85:78:cc:cd:7a:3c:83:b6:ee:e2:e1:ef:
6a:31:2e:bd:f9:0c:f4:39:8a:56:16:84:4b:dd:c0:0f:ee:ae:
4b:03:4f:d4:f3:89:f5:47:77:a6:e0:82:5a:f1:09:40:2d:9a:
33:d7:a9:7c:b0:5b:1c:3b:48:70:0c:72:df:b6:38:a0:04:45:
96:11:1e:80:91:83:a2:f9:99:ee:56:3a:99:15:74:02:93:e9:
31:a8:7c:c0:d2:64:84:66:3c:cc:89:7e:a7:0c:ca:3f:61:e5:
9e:5f:92:3d:04:41:79:8a:e9:7f:a0:14:4e:a2:33:fe:00:d2:
03:84:65:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:56 2025 by rpki-client