Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
File: Xo0HtF99gxJMn4wPrAO-wCRos34.mft (raw, json)
Hash identifier: oUdz4sM7L2U9XY5GmuLPtCTk7wNXLiuJw/NUEyisMl0=
Subject key identifier: 90:F4:F3:FE:32:30:30:4E:D7:7B:DE:C3:D4:A2:3D:9D:25:00:66:46
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 0198D7061C248B77DF0AA08401C1E90FF2B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
Manifest number: 1663
Signing time: Sat 23 Aug 2025 13:02:38 +0000
Manifest this update: Sat 23 Aug 2025 13:02:38 +0000
Manifest next update: Sun 24 Aug 2025 13:02:38 +0000
Files and hashes: 1: 42NnB3jW5n3RbWWrHMDd_7NubAY.roa (hash: bZyySLXxgMQfpoBtEuXSmgHgMgLKQxBjV3IqMenXg0E=)
2: EuMIVvtjfwcw4H_1qN_NTTYxtB0.roa (hash: GstL7gwAEgcyBOR5WEEQ3UJ45LkAklqubcGaSv86PEM=)
3: U3GEel-_AheBYgIYIVYL9mt_5dg.roa (hash: qjeuuOD21NigMG6GkIxT7OwP2vU0izG4cg6tV2NDSPY=)
4: Xo0HtF99gxJMn4wPrAO-wCRos34.crl (hash: aeREZlW2TVjLohHAKRTxaOmTtj5rQ/tzqjJJdKTa6C8=)
5: ZvRJrTWQfMOoVK-yV_Cqwkgeu5A.roa (hash: hHz6N7J+wTDqY/Lm+M/7LMn5tnMNWvw100eCFcrE1zM=)
6: hMxFbe2_woNux6m3JkElwux-E5g.roa (hash: nrSIsPwWOsAGq4mrEG8bp4vhnLrScT5iVl2b8ClElOk=)
7: olCZzHEOZSOjj4yqtahX2zJkhMQ.roa (hash: aXtBhSkmw714xAy5wT1PAT7ELEpsc4omuqROu4g4WE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:06:1c:24:8b:77:df:0a:a0:84:01:c1:e9:0f:f2:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Aug 23 13:02:38 2025 GMT
Not After : Aug 24 13:02:38 2025 GMT
Subject: CN=90f4f3fe3230304ed77bdec3d4a23d9d25006646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b4:82:d3:83:97:ff:60:a3:4e:92:ca:46:87:
b0:60:f8:07:2f:d6:a6:ab:e3:a8:95:50:b0:87:15:
80:87:e6:ad:4f:12:39:86:ff:58:0b:23:5d:90:df:
ab:20:e5:cd:18:9b:4b:c3:a3:d1:1a:23:4f:8d:ad:
53:97:f5:67:6e:19:c0:52:f5:29:ab:b2:39:68:3c:
ac:e8:cc:3f:a9:f2:28:0e:9f:0b:4a:f3:1a:4b:77:
bf:2b:5f:86:17:90:8b:66:5e:09:ce:0b:02:28:86:
79:be:33:fd:70:1d:48:fd:06:88:14:d6:e3:83:c3:
59:e3:55:f5:4d:6d:55:32:3a:bd:99:22:48:6b:92:
a5:98:50:a1:2a:70:cb:36:de:43:7c:74:d8:d2:87:
e7:19:e6:98:da:cc:23:46:1f:20:a5:f2:ff:91:fa:
5b:43:b8:91:da:0f:0b:d1:c1:53:f6:0d:fc:f4:6d:
02:9d:1c:bc:2c:2e:fc:b4:f3:0e:21:c6:a6:ed:09:
07:94:01:ae:b3:80:e5:09:a4:fa:6d:ea:fe:79:12:
5d:4c:f5:b2:ef:2e:f4:4e:0c:87:ff:bf:cc:06:24:
d4:b2:71:fd:12:ad:2e:b1:9d:a9:1e:9f:84:b0:8a:
75:ee:ec:50:15:29:f2:16:ef:00:2a:7f:6a:2d:9a:
2f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F4:F3:FE:32:30:30:4E:D7:7B:DE:C3:D4:A2:3D:9D:25:00:66:46
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:2e:f8:87:d1:d9:5d:d8:b2:06:37:00:ad:e4:7b:57:44:f3:
59:22:a8:ff:3f:44:4f:7d:73:f0:8a:ed:ad:e2:c5:ff:88:8b:
78:36:cf:2b:94:58:95:71:3b:02:25:9e:ae:aa:e4:0e:bb:b8:
e4:80:da:eb:52:cb:1c:c8:fd:e8:64:72:8c:5b:5e:db:b0:15:
e7:28:0e:73:01:1c:a2:37:4a:14:7b:db:c3:ac:0d:76:2a:b0:
39:88:b6:6d:14:28:bb:12:24:93:99:00:ca:df:11:31:3f:14:
20:e2:b5:c5:fe:a4:ca:f2:14:52:e2:dd:7a:d8:c7:2e:fe:10:
03:16:d3:51:c0:7e:bd:74:cc:e6:e1:34:c2:b2:3e:e8:03:50:
2a:31:d8:28:48:77:01:20:c3:e9:80:78:b8:7f:f4:74:b2:e4:
26:e2:5a:40:61:b8:43:e7:dd:48:93:37:d6:c5:45:f4:70:68:
ee:18:93:8e:a2:ef:85:1e:24:62:97:ac:b1:bc:69:17:d1:7e:
cc:f3:aa:a5:b7:60:7c:9b:43:0a:78:64:9d:e2:63:4a:06:4c:
75:3e:4c:4a:d0:d1:f4:6e:2e:6e:c8:22:31:b2:20:e3:51:4c:
a8:bf:21:be:4d:35:bc:19:14:7e:80:c6:d1:00:08:36:59:b3:
43:8d:0d:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXBhwki3ffCqCEAcHpD/KyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlOGQwN2I0NWY3ZDgzMTI0YzlmOGMwZmFjMDNiZWMwMjQ2
OGIzN2UwHhcNMjUwODIzMTMwMjM4WhcNMjUwODI0MTMwMjM4WjAzMTEwLwYDVQQD
Eyg5MGY0ZjNmZTMyMzAzMDRlZDc3YmRlYzNkNGEyM2Q5ZDI1MDA2NjQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0bSC04OX/2CjTpLKRoewYPgHL9am
q+OolVCwhxWAh+atTxI5hv9YCyNdkN+rIOXNGJtLw6PRGiNPja1Tl/VnbhnAUvUp
q7I5aDys6Mw/qfIoDp8LSvMaS3e/K1+GF5CLZl4JzgsCKIZ5vjP9cB1I/QaIFNbj
g8NZ41X1TW1VMjq9mSJIa5KlmFChKnDLNt5DfHTY0ofnGeaY2swjRh8gpfL/kfpb
Q7iR2g8L0cFT9g389G0CnRy8LC78tPMOIcam7QkHlAGus4DlCaT6ber+eRJdTPWy
7y70TgyH/7/MBiTUsnH9Eq0usZ2pHp+EsIp17uxQFSnyFu8AKn9qLZovSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJD08/4yMDBO13vew9SiPZ0lAGZGMB8GA1UdIwQY
MBaAFF6NB7RffYMSTJ+MD6wDvsAkaLN+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9hMTY4ZTktZDA3MC00NGUwLTk0YTQt
NmM4ZmQ4NGJiNWY1LzEvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9hMTY4ZTktZDA3MC00NGUwLTk0YTQtNmM4ZmQ4NGJiNWY1
LzEvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfy74h9HZ
XdiyBjcAreR7V0TzWSKo/z9ET31z8IrtreLF/4iLeDbPK5RYlXE7AiWerqrkDru4
5IDa61LLHMj96GRyjFte27AV5ygOcwEcojdKFHvbw6wNdiqwOYi2bRQouxIkk5kA
yt8RMT8UIOK1xf6kyvIUUuLdetjHLv4QAxbTUcB+vXTM5uE0wrI+6ANQKjHYKEh3
ASDD6YB4uH/0dLLkJuJaQGG4Q+fdSJM31sVF9HBo7hiTjqLvhR4kYpessbxpF9F+
zPOqpbdgfJtDCnhkneJjSgZMdT5MStDR9G4ubsgiMbIg41FMqL8hvk01vBkUfoDG
0QAINlmzQ40Nig==
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:46:51 2025 by rpki-client