Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json)
Hash identifier: 7+kWQXvRZ/F+6KemjzJBfUQnLSVsIE5f0bjTGy6t9xQ=
Subject key identifier: 7C:25:CC:EE:3F:87:AF:D2:C0:C8:79:CB:46:4A:19:34:1F:1B:AF:13
Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d
Certificate serial: 0198D7063A5A27786C179DD1924D3F13A790
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
Manifest number: 126A
Signing time: Sat 23 Aug 2025 13:02:46 +0000
Manifest this update: Sat 23 Aug 2025 13:02:46 +0000
Manifest next update: Sun 24 Aug 2025 13:02:46 +0000
Files and hashes: 1: Bu2qohV5DT207In6bmDkzPkl22w.roa (hash: yQgjgxJo0jD6Zb5Cbl39m04H6+9TPpDsNpPjtFWzK98=)
2: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: wTizisQu1khwTtk1y3E0WIbPVTHX+BiDT38RynuR4ls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:06:3a:5a:27:78:6c:17:9d:d1:92:4d:3f:13:a7:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d
Validity
Not Before: Aug 23 13:02:46 2025 GMT
Not After : Aug 24 13:02:46 2025 GMT
Subject: CN=7c25ccee3f87afd2c0c879cb464a19341f1baf13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c6:a5:64:a8:f0:1e:98:f3:02:33:be:9a:44:
f6:a5:32:70:b4:5d:95:ab:ab:5a:59:59:d2:31:b2:
6e:93:f7:4d:d7:16:e7:84:c2:39:95:1c:ad:dc:2f:
14:5c:09:37:b8:f1:4d:00:c3:b1:03:5b:9f:51:b7:
16:40:b2:64:d7:60:98:c2:16:2b:54:bb:91:e4:29:
8e:7a:6e:0d:f6:6b:9b:bb:be:d0:6a:07:10:8c:98:
37:fa:93:0b:fd:72:71:f3:e4:1b:44:8a:9f:fb:9a:
92:9e:d1:ed:73:7e:66:d8:9f:96:b7:0f:6e:1d:a2:
8b:14:7e:92:b9:33:8c:9d:f5:85:93:6d:d5:69:04:
88:8d:bc:03:48:50:54:8c:82:be:a3:94:f7:02:69:
71:2d:cc:83:df:92:5a:51:07:3c:91:b0:8d:26:df:
27:31:b4:a9:82:2f:37:b4:64:e8:2e:ad:3f:e4:75:
06:ff:af:41:cd:41:c4:22:df:62:58:78:81:ec:4a:
93:39:98:2f:c3:38:77:60:a9:72:37:f8:c0:c7:65:
b2:f6:00:53:04:17:c6:84:de:f9:b9:84:6e:1a:b2:
32:19:47:f1:f7:cd:b8:16:cb:0e:de:64:ae:2d:9d:
e9:ab:48:4e:10:8e:b9:9e:e4:f9:50:4f:ae:1e:86:
0d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:25:CC:EE:3F:87:AF:D2:C0:C8:79:CB:46:4A:19:34:1F:1B:AF:13
X509v3 Authority Key Identifier:
keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:71:77:9f:77:69:e5:7e:84:0d:96:82:3c:30:95:3d:ee:fe:
1d:de:00:7e:42:a4:a0:3d:58:6b:b4:0d:e5:c2:3a:f2:2e:55:
46:b0:dc:5e:df:b0:cf:dc:ed:f5:b6:c8:4e:5d:46:8b:e2:21:
5b:59:94:6a:87:da:a0:31:0b:ce:ac:25:0a:64:0a:20:5d:1e:
8e:fc:20:3a:56:41:ba:9f:86:11:67:74:c8:4c:32:1e:13:38:
23:59:75:63:b2:63:5e:f0:c2:c2:16:0d:b2:d5:ac:d0:59:a1:
1e:7c:ae:92:70:f1:76:d6:41:88:6f:e4:f4:2c:74:04:df:bb:
c3:06:24:3e:d0:d7:0c:68:23:b3:fa:9a:27:c6:57:b7:3c:5e:
ef:29:d6:14:0d:19:40:c1:b3:a7:a9:0a:bf:a9:11:20:a0:76:
17:2f:2d:26:56:90:7c:9a:89:c2:87:32:94:4c:24:1c:5c:cc:
19:5f:9a:13:c7:df:00:e4:ee:5c:ae:af:cc:5f:ad:27:78:67:
88:1d:25:f5:3f:2e:6c:f0:aa:af:00:a9:55:15:ec:08:85:00:
4b:d3:f4:62:eb:a2:f3:89:e3:d1:62:28:a5:e7:9c:3d:14:a2:
0a:aa:97:79:61:73:6c:c5:0b:5a:24:90:b9:30:22:89:43:e9:
70:16:8e:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:29:57 2025 by rpki-client