Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
File: XEzh8ZMxT2k5vxw_nawjafYpWFo.mft (raw, json)
Hash identifier: ns8W00YAVnbMurK6tPk/61yHYWNZB07W/Y1RzT/OXO4=
Subject key identifier: 9E:BD:F6:7B:EC:B8:6F:45:1B:B2:15:FB:BF:BC:B9:06:66:1B:04:BB
Authority key identifier: 5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A
Certificate issuer: /CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a
Certificate serial: 0198D7E111845AF3D72B93DDD8113A57261C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 17:01:48 +0000
Manifest this update: Sat 23 Aug 2025 17:01:48 +0000
Manifest next update: Sun 24 Aug 2025 17:01:48 +0000
Files and hashes: 1: NeVlE-PzPHn5ppNlSgj87PhylgM.roa (hash: +i1WA9cuFFrQg1WFh0BGIYlKWMIvdmOqwrDe9C8B0aM=)
2: XEzh8ZMxT2k5vxw_nawjafYpWFo.crl (hash: 1SKVRsDOw16DNHZfepJb6uFu9HZ0H88SLrgdqkBB0nM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:11:84:5a:f3:d7:2b:93:dd:d8:11:3a:57:26:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a
Validity
Not Before: Aug 23 17:01:48 2025 GMT
Not After : Aug 24 17:01:48 2025 GMT
Subject: CN=9ebdf67becb86f451bb215fbbfbcb906661b04bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2a:2e:5c:0f:92:6e:44:22:5f:ff:e7:ea:c8:
95:d9:c8:c3:f9:81:d8:bf:44:8a:af:31:bf:a3:d5:
b8:c6:bd:46:5b:79:db:ba:ee:3b:3c:6b:2d:ac:6f:
02:ad:99:49:9f:48:f9:a8:4d:07:0b:6e:3f:27:9a:
8e:84:08:02:e9:ad:8a:1b:0f:8d:82:fb:53:38:20:
9f:9d:08:5e:8d:88:83:0e:03:32:3b:be:78:5f:30:
ee:06:38:8c:cd:af:88:bb:d8:49:0c:00:74:be:17:
b7:7d:0c:b7:25:1b:5b:5d:f1:86:08:5e:fe:f1:75:
2d:3e:6a:f6:6a:ec:a5:77:84:83:81:68:5c:16:1e:
28:c7:cd:9c:70:d4:3a:b4:c0:6a:f3:1d:6c:64:e0:
a1:2a:3a:18:57:62:da:d2:0a:47:d9:59:f7:2f:35:
3b:f6:1f:78:ef:26:8c:08:b1:e0:12:db:d2:22:97:
86:2b:da:77:4f:e5:27:bf:14:70:4d:ec:9b:d7:4c:
0f:2a:8c:20:15:02:b4:84:5d:29:b3:d3:1a:df:dd:
20:74:9f:f9:86:31:d8:0b:f8:72:0d:5d:9b:78:40:
4c:f7:85:dd:34:41:06:69:bf:7f:6e:a6:af:70:86:
59:ba:d0:60:a6:6b:92:75:e8:02:40:f2:32:04:69:
be:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:BD:F6:7B:EC:B8:6F:45:1B:B2:15:FB:BF:BC:B9:06:66:1B:04:BB
X509v3 Authority Key Identifier:
keyid:5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:ed:27:a1:f3:23:07:b0:3e:9f:38:6d:07:a2:2f:ae:8e:06:
83:fe:cd:f0:15:cc:26:5a:a8:14:98:93:04:84:36:80:d8:1b:
a0:b3:f1:d7:d3:85:c0:16:22:54:48:65:da:dc:3f:3d:fc:55:
22:83:a1:c9:0b:6c:8b:71:6a:7e:1c:b8:14:87:73:10:e4:bb:
fb:a4:63:85:5b:15:8b:9e:a1:fe:ff:2c:d8:b3:cd:56:b5:67:
d6:03:be:d4:82:a6:be:ac:52:a2:9e:5a:3d:25:16:42:31:a0:
02:a7:80:3d:29:c9:4d:3d:4d:24:73:ea:0e:ef:d1:74:01:41:
5e:c7:ed:da:c0:51:5f:d4:b5:eb:df:8c:8d:01:32:98:6d:70:
aa:3b:3c:04:16:f5:bb:ba:cd:9e:4e:d7:cb:8a:0b:e4:c7:cb:
80:23:18:5e:d5:55:15:41:86:08:8a:e5:0d:31:db:31:17:73:
53:f8:8b:69:fb:3c:7a:0a:c9:6c:20:c1:ad:69:d5:71:ea:5d:
45:06:92:1f:d7:7c:ec:6a:38:05:79:ac:ce:ce:dd:a1:fe:a9:
e1:17:60:bb:12:5d:11:00:e7:41:76:db:e6:1a:6b:bc:21:60:
76:a5:bd:b3:81:28:ed:24:d4:74:a2:89:11:27:26:a2:91:cb:
3b:0f:b3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:25:04 2025 by rpki-client