Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
File: xs_ZQjfv0gDdCxFuH2-be8plnKc.mft (raw, json)
Hash identifier: sJDRt5mw+7qnIr/XwsvCMG3Vqh4PtaYAazqPj/6QIoY=
Subject key identifier: A1:23:FE:26:1F:67:90:D7:13:E0:F9:A6:A9:59:90:5D:07:1F:FE:5C
Authority key identifier: C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
Certificate issuer: /CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Certificate serial: 0198D583E49D1B39F74D05302E3D05519822
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 06:00:47 +0000
Manifest this update: Sat 23 Aug 2025 06:00:47 +0000
Manifest next update: Sun 24 Aug 2025 06:00:47 +0000
Files and hashes: 1: K9i5BAZ6MzcgF9CzcPcItueT7VY.roa (hash: SAFMofRuJhJyuX+kxWxAf3VBKLBtrOMj73WD80i1Rgo=)
2: xs_ZQjfv0gDdCxFuH2-be8plnKc.crl (hash: u4BCciypM1XWC8I8PqUaDAbcHiZ4ORzLmqt7sRwBvok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:e4:9d:1b:39:f7:4d:05:30:2e:3d:05:51:98:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Validity
Not Before: Aug 23 06:00:47 2025 GMT
Not After : Aug 24 06:00:47 2025 GMT
Subject: CN=a123fe261f6790d713e0f9a6a959905d071ffe5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:04:ba:f1:39:86:21:05:ed:69:e8:43:62:71:
21:38:d1:c8:1f:09:f0:21:49:d4:18:b9:cb:cf:2d:
8c:61:78:f1:06:df:dc:e5:4b:4b:08:36:b8:ae:fa:
39:13:1f:59:86:7e:86:52:4b:10:43:f2:3a:98:cf:
15:68:ef:4e:19:37:ff:d2:56:2c:2d:45:67:f8:43:
25:c6:65:e4:04:a2:5d:25:bf:bf:b6:f7:fe:6c:02:
13:ed:a7:d1:3e:03:6e:26:67:5a:65:bd:96:18:51:
88:e5:d0:48:02:9b:d5:ec:5a:42:4b:d6:d5:be:1b:
48:c7:ef:04:dd:39:38:56:9a:9c:ef:30:8b:4a:1a:
bc:8b:e7:53:4e:d5:78:67:34:29:39:47:18:5c:61:
c2:24:14:e4:d8:38:d1:a4:15:a1:a2:ec:ba:fe:d2:
04:32:1e:4f:ff:13:62:b6:a6:95:bc:27:c5:db:95:
ab:20:ca:68:a7:ed:73:a3:02:c7:00:f2:a9:b6:bf:
fd:da:f5:fc:c2:92:83:8a:ae:7d:7a:35:20:b9:c6:
e2:bf:e7:36:a4:76:fa:90:ae:53:25:1b:76:0e:1f:
fe:4c:30:8e:c7:d7:1a:d5:04:5c:f5:0d:0d:30:ab:
22:29:30:c2:02:2d:cd:2f:e7:1b:50:73:63:4b:23:
b2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:23:FE:26:1F:67:90:D7:13:E0:F9:A6:A9:59:90:5D:07:1F:FE:5C
X509v3 Authority Key Identifier:
keyid:C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:1b:c3:2c:ef:c8:3e:af:69:5c:b6:7f:26:3b:15:36:91:f9:
d4:f8:47:15:36:09:c2:6b:1f:39:91:ca:c7:ee:63:26:6f:1d:
17:6c:2d:bf:bc:43:84:c2:6a:4a:d8:82:32:1d:c7:95:49:a4:
19:9b:c5:e9:32:11:c7:ec:a1:99:9b:81:00:13:62:3f:99:8a:
52:ab:bb:ee:d9:d6:6d:e9:7b:76:be:40:6c:25:e8:f7:09:09:
d7:0a:bc:0c:ef:89:39:59:8c:9b:bb:60:cf:03:9b:6e:d2:5d:
f6:b2:69:48:c5:69:81:d8:54:96:5b:86:22:48:fe:6d:e8:fa:
c1:bb:f2:5a:d4:83:d7:03:29:62:b7:ad:24:87:96:b2:2a:44:
1b:15:44:72:a4:8c:11:88:8c:75:7a:ca:a2:9d:b8:18:28:79:
ac:9e:df:79:c3:0d:3f:0c:1f:9b:5d:8a:b3:67:1a:c4:05:c4:
77:e8:9a:63:0c:f1:9c:c4:ca:11:5c:95:df:bf:ad:d5:a4:ee:
46:10:8a:0f:36:a3:db:e2:b6:00:fe:84:7d:4e:6d:a5:b6:4b:
fa:33:5b:ab:e8:67:ab:2a:31:eb:74:0c:b1:37:17:10:14:1d:
b1:57:6a:55:f1:06:73:f7:e4:f5:c4:e7:53:4d:7e:0d:f4:86:
c5:8e:72:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:13:40 2025 by rpki-client