Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: FcRRhWtgAHgakCqKkcel8vXRgK0e/ZakCsDNkAQhf6M=
Subject key identifier: CD:3C:0A:71:9D:D2:36:86:00:DC:5D:34:BA:F6:6D:4C:A7:5B:77:4A
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 0198D5838DA2DB0E459D02619AA64ECF2A23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 1044
Signing time: Sat 23 Aug 2025 06:00:24 +0000
Manifest this update: Sat 23 Aug 2025 06:00:24 +0000
Manifest next update: Sun 24 Aug 2025 06:00:24 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: WIlw7cbS+KgHgeJjOhZTFGxasvQJsva+2UBbUPfQkEc=)
2: yQMt2r0-C951BN6h68fRFJDbCC8.roa (hash: tYqh+1wBm4KwmsyhvHbFDKO/UGyJb2eTnTj9n8iYekw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:8d:a2:db:0e:45:9d:02:61:9a:a6:4e:cf:2a:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Aug 23 06:00:24 2025 GMT
Not After : Aug 24 06:00:24 2025 GMT
Subject: CN=cd3c0a719dd2368600dc5d34baf66d4ca75b774a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2a:27:ae:27:15:d9:42:eb:89:68:ad:d0:fc:
a1:61:dc:00:1a:44:62:26:7c:8c:b7:d0:f8:ca:eb:
12:db:ba:4e:fa:55:6e:52:c5:c5:83:21:ca:bf:7a:
52:d8:c5:8b:d6:93:52:4e:70:3c:b2:cd:f6:80:96:
01:5b:ad:14:94:28:b5:5c:20:36:e4:1c:71:76:8f:
f8:36:f0:a9:c3:82:e9:5e:35:07:19:e5:8e:3f:7c:
7a:df:c3:d0:b1:69:0e:3b:27:32:74:dc:a2:f9:af:
22:2a:41:2a:e4:7c:d5:0c:d6:e1:03:3b:82:45:6e:
72:e4:d3:3a:42:67:8a:1e:0d:07:37:c9:99:44:77:
02:ce:15:f1:29:c3:37:ca:46:22:71:cd:a2:bc:93:
9f:76:32:32:ef:2a:3c:c2:a6:08:f9:e1:ae:60:67:
c8:3a:dc:fa:ac:35:fb:ff:e7:39:bb:c8:fb:3b:a9:
a8:ac:ec:61:6c:df:61:82:72:4b:e8:1b:a7:9e:56:
fc:fc:ce:cf:bc:db:96:c3:45:29:8c:0f:f9:d5:9a:
88:47:c9:4e:75:27:89:25:42:8a:45:6c:39:8b:bc:
12:bf:bb:b7:64:8d:c0:f4:4d:20:5d:e2:74:ab:a5:
d8:4e:94:ea:48:a1:f6:08:f7:01:3b:23:08:45:85:
d2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:3C:0A:71:9D:D2:36:86:00:DC:5D:34:BA:F6:6D:4C:A7:5B:77:4A
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:32:44:e5:b1:f4:74:a5:e8:e6:ee:34:39:a1:2c:7f:d0:7d:
f5:1a:31:ae:3f:2e:27:32:da:83:34:e9:65:87:97:35:c8:de:
ec:f4:3a:61:ed:55:b6:5a:c5:80:d9:fe:36:ad:07:a0:c3:f7:
c6:98:09:59:c3:74:da:29:9e:20:c4:e4:bd:dc:87:f5:db:3a:
e8:b1:4b:0f:3f:cd:22:b5:bc:7b:6a:f9:e4:84:2a:27:5f:47:
de:87:7d:ff:2f:31:56:5d:e6:25:33:cb:92:9a:15:a9:e6:27:
36:24:d6:bd:5a:7c:b8:5e:85:9c:4e:91:df:15:9e:40:2d:6a:
b7:41:e1:6e:db:98:4a:d1:3b:7e:da:da:51:05:9f:25:b4:9d:
ce:35:ac:e0:6c:53:77:f9:6b:8c:04:f7:e7:3c:bc:dc:34:66:
61:61:af:a2:40:2c:87:33:a1:74:6d:72:88:a6:9f:f5:a5:2f:
9a:30:f9:2a:e5:3b:82:56:a3:09:e8:c8:74:78:92:08:4f:61:
dc:48:cc:d5:61:de:98:db:ed:17:5f:ac:b4:3c:ae:11:ae:8f:
d5:cb:aa:9d:e1:8f:5a:d7:2d:92:06:4f:83:dc:1d:e8:f2:bc:
db:27:1c:62:08:46:17:93:c6:de:b5:a8:2a:b7:f0:2f:4c:7a:
42:7a:a0:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:33 2025 by rpki-client