Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
File: Xojs8KFK0YVzWdLOW9BCuflsfN0.mft (raw, json)
Hash identifier: smboXhYpjixTLag5F8AhsE2LR+sZGjIvhEbJBeSHzBQ=
Subject key identifier: F9:F6:5E:6B:FA:A7:62:F0:55:D4:F9:E5:17:B8:E4:0E:CF:CE:10:C7
Authority key identifier: 5E:88:EC:F0:A1:4A:D1:85:73:59:D2:CE:5B:D0:42:B9:F9:6C:7C:DD
Certificate issuer: /CN=5e88ecf0a14ad1857359d2ce5bd042b9f96c7cdd
Certificate serial: 0198D5838C471341C59A271F72E3DC3A7720
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
Manifest number: 07C8
Signing time: Sat 23 Aug 2025 06:00:24 +0000
Manifest this update: Sat 23 Aug 2025 06:00:24 +0000
Manifest next update: Sun 24 Aug 2025 06:00:24 +0000
Files and hashes: 1: Xojs8KFK0YVzWdLOW9BCuflsfN0.crl (hash: MkibvIU2PpPgb0TMOwkQkFokqvaZDtgLVuQtUtQsNlU=)
2: oNaxj3U73YsxY2SMYd62wSvMB4E.roa (hash: +NOpZAlgmwl+h9fy4R1kVxAQ1d7pxMvgMiKewHh1e4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:8c:47:13:41:c5:9a:27:1f:72:e3:dc:3a:77:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e88ecf0a14ad1857359d2ce5bd042b9f96c7cdd
Validity
Not Before: Aug 23 06:00:24 2025 GMT
Not After : Aug 24 06:00:24 2025 GMT
Subject: CN=f9f65e6bfaa762f055d4f9e517b8e40ecfce10c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:10:fc:ef:87:10:e6:90:5c:67:dd:be:cc:e7:
10:8c:e5:c7:bd:70:11:4d:9a:cf:96:dd:d3:9a:41:
1d:0c:2d:18:e0:0d:f5:88:4a:05:4c:cf:7a:f9:f0:
f0:f3:40:db:5d:af:f6:23:88:96:4f:c4:b0:b6:3b:
17:4d:ad:e3:fa:e8:74:f8:aa:19:78:9b:a7:a9:5f:
2b:fa:e3:aa:ce:25:f4:e3:84:63:1c:3e:f7:61:11:
0d:cc:d1:da:06:7a:76:76:4c:05:48:c7:bd:19:b2:
72:66:84:59:46:fe:f2:2e:cd:90:34:b0:f0:56:70:
8d:59:46:a6:09:df:34:48:4e:97:91:9d:7d:06:79:
be:08:f1:fc:1f:54:bd:1d:bb:50:a0:c1:ce:50:62:
59:c4:15:a2:76:03:4e:7d:9a:39:fb:63:b3:2d:d0:
20:df:97:23:5b:65:69:03:9b:86:65:7b:c6:75:30:
00:08:2e:be:ba:eb:e2:55:48:90:d8:bc:c2:ad:95:
24:b0:4a:d3:08:f7:2d:77:c7:3c:39:43:50:65:13:
d4:bb:79:ce:f3:7f:78:b9:c6:e0:87:be:4b:e7:bc:
40:4b:e2:ca:79:df:a7:b3:4b:04:de:ee:b4:28:88:
ea:44:c8:a3:24:17:58:8d:c5:85:49:3c:08:d9:de:
03:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:F6:5E:6B:FA:A7:62:F0:55:D4:F9:E5:17:B8:E4:0E:CF:CE:10:C7
X509v3 Authority Key Identifier:
keyid:5E:88:EC:F0:A1:4A:D1:85:73:59:D2:CE:5B:D0:42:B9:F9:6C:7C:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:f6:14:aa:b8:9e:70:87:f9:81:21:70:58:09:fd:4d:bb:46:
12:63:30:5e:b6:f0:d1:10:bb:cd:15:cb:0a:44:d9:24:ec:f8:
e5:b4:73:bb:59:ed:9e:e9:f2:ba:8c:08:34:9b:e1:9b:ec:ef:
4d:2d:02:90:6e:30:9a:7e:82:d4:fb:52:1f:15:40:4e:47:0d:
11:50:69:76:3c:fc:b3:c4:a5:fb:e5:c8:e3:5f:70:8a:01:d8:
97:c8:28:8f:03:a7:07:1c:30:43:c3:4e:82:07:44:ce:78:bd:
1e:15:66:5c:e4:fd:f3:fd:43:99:30:07:28:0a:29:1d:19:e1:
c5:89:a1:4b:78:8d:69:cf:37:e9:9d:fd:3c:be:4d:b9:ce:92:
d2:38:9e:1a:bb:cf:b8:12:1b:4a:03:f7:da:b6:29:2e:2e:8b:
84:75:e2:47:17:73:39:a4:34:97:77:e0:69:fa:66:64:f5:67:
1c:d5:1a:0d:6a:ee:27:2a:73:19:9f:7d:4d:a6:a2:77:b4:f2:
50:e7:e8:aa:bd:36:d4:85:e2:fe:32:c2:ea:a6:bf:3d:b0:d2:
17:41:44:4b:4b:3d:93:29:ce:3f:ba:ba:8e:4f:78:95:4d:f4:
a5:06:cb:97:8b:61:64:dd:c7:32:5d:05:3e:4a:af:1b:f9:96:
30:4c:35:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:05:01 2025 by rpki-client