Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
File: xdXOafzPDGu44rJmfh44-5QPPSY.mft (raw, json)
Hash identifier: l2QV4uYPhoy4wHtz/+yJ3jXfO7ME3O1ncvdAya46QaA=
Subject key identifier: 54:DE:40:CE:9F:FB:46:FD:E0:E8:4C:00:A0:6A:DF:52:5F:59:8C:EC
Authority key identifier: C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
Certificate issuer: /CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Certificate serial: 0198D5F1B92C529A928BF3EC23543EB82C56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
Manifest number: 0AB5
Signing time: Sat 23 Aug 2025 08:00:45 +0000
Manifest this update: Sat 23 Aug 2025 08:00:45 +0000
Manifest next update: Sun 24 Aug 2025 08:00:45 +0000
Files and hashes: 1: 6dkBUwL-mhaODMyRqo4g1V5Aqm0.roa (hash: Qmi5vwRBC8G/em6HsgOnkDIH/4egeMg5iAbwYtXG1+s=)
2: xdXOafzPDGu44rJmfh44-5QPPSY.crl (hash: EKVjD+MbH5TgrJcIMzdve+mtajcUQexgL28oa/lH0Y0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:b9:2c:52:9a:92:8b:f3:ec:23:54:3e:b8:2c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Validity
Not Before: Aug 23 08:00:45 2025 GMT
Not After : Aug 24 08:00:45 2025 GMT
Subject: CN=54de40ce9ffb46fde0e84c00a06adf525f598cec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c8:a2:80:49:04:bd:aa:f3:a1:8b:0f:db:f8:
1d:c6:15:60:d2:13:e5:e3:e8:b7:31:c9:ce:3e:31:
da:82:8b:5d:75:4c:9f:c4:31:72:eb:84:a6:82:8b:
78:d5:26:c6:ea:f0:74:35:47:a9:62:e5:58:c2:3b:
c0:20:93:8d:8b:1b:ea:12:66:cf:50:97:55:2a:d4:
a7:7e:0c:55:f7:5f:97:db:dc:43:19:57:c9:d8:b5:
49:29:3a:50:8b:53:8a:01:97:37:c7:a7:57:9f:98:
b9:ae:1c:f1:70:05:3c:82:b9:e2:b7:10:4c:35:b7:
01:65:d7:72:aa:f4:23:a2:85:e1:59:9c:78:e0:5b:
e0:56:51:6f:a6:ac:ab:60:39:12:3d:bb:94:15:f6:
06:cf:e9:5c:e8:bb:2c:42:98:72:9a:37:cf:e5:8b:
c7:ab:e6:cf:be:83:a3:04:e6:7f:87:5c:04:ce:ec:
d7:94:9a:b1:ae:5e:f3:2f:a3:9d:a0:b6:d8:06:44:
7c:dc:46:5a:92:9e:15:a1:ea:00:5d:da:0c:e4:10:
ae:03:cc:ac:37:eb:e5:b1:8b:c6:89:68:1c:e3:9b:
75:45:52:ae:21:5e:4a:d5:6f:82:6e:6a:00:78:42:
86:9b:7d:f1:61:ef:52:15:2e:54:17:51:97:80:08:
a4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:DE:40:CE:9F:FB:46:FD:E0:E8:4C:00:A0:6A:DF:52:5F:59:8C:EC
X509v3 Authority Key Identifier:
keyid:C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:91:3c:ce:a0:60:cc:9c:b9:83:cb:b5:2e:c6:d6:d8:b0:01:
28:49:2b:5a:44:dd:66:e6:1e:af:87:aa:02:ad:ec:cf:3b:c9:
e6:3c:f0:81:98:4f:57:37:48:4f:db:fa:d7:92:97:b1:72:cb:
62:fd:91:a5:83:0e:28:a1:7d:4e:db:7c:fe:b5:da:c1:18:d1:
f3:d4:4b:5f:c2:95:f5:99:d2:ff:c7:0e:10:f7:f6:93:3a:92:
1c:b3:af:6f:9e:b6:40:d4:84:f6:a3:94:e6:df:7c:a2:76:4f:
33:13:35:83:b9:c7:ab:12:49:77:cc:4d:c3:43:e6:07:31:35:
2c:4b:b4:31:93:56:59:50:27:d6:56:9b:c7:f8:60:6f:d3:45:
e7:46:d8:58:4d:0f:fe:be:aa:52:4d:84:f5:b7:10:79:40:d7:
00:11:91:00:10:39:61:ba:53:49:59:af:2f:ed:49:2c:57:da:
6e:60:8a:31:a2:47:32:fa:09:05:f2:c3:75:0f:69:8b:d0:80:
2b:6a:75:52:5d:27:2c:e7:07:c5:53:74:50:f7:90:56:3f:22:
e6:65:ce:99:e1:7c:6f:d9:6c:40:dc:ef:86:dd:b9:9b:6f:28:
8b:50:71:bb:1a:72:57:40:61:f1:c9:8d:29:fb:93:ce:ef:91:
1f:63:f0:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:14:11 2025 by rpki-client