Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
File: XX9jQBQHwcx5excDToE9IlT5dz4.mft (raw, json)
Hash identifier: W0Vhq6gv11Mb34/bRckbxCt2Ke2V0eRf9uWkB3fpRos=
Subject key identifier: 0E:22:03:36:83:99:63:77:60:09:8E:93:CC:62:03:8B:95:EB:DE:43
Authority key identifier: 5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
Certificate issuer: /CN=5d7f63401407c1cc797b17034e813d2254f9773e
Certificate serial: 0198D4A7E5112C6676B185968313A4D7F3F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
Manifest number: 0CE0
Signing time: Sat 23 Aug 2025 02:00:29 +0000
Manifest this update: Sat 23 Aug 2025 02:00:29 +0000
Manifest next update: Sun 24 Aug 2025 02:00:29 +0000
Files and hashes: 1: XX9jQBQHwcx5excDToE9IlT5dz4.crl (hash: 9Tm65Hp+INACntSWAwo4q1/+q6Q0qb4zykt6m1R50h0=)
2: d_GxW2d1XGEYH2UR9fC88UUW3QY.roa (hash: uor8f2a3ITsSo8ZIn5M2P4KmPLaok++1jFjqHJFf6Ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:e5:11:2c:66:76:b1:85:96:83:13:a4:d7:f3:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7f63401407c1cc797b17034e813d2254f9773e
Validity
Not Before: Aug 23 02:00:29 2025 GMT
Not After : Aug 24 02:00:29 2025 GMT
Subject: CN=0e2203368399637760098e93cc62038b95ebde43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2c:ea:be:92:df:d0:8d:ca:e4:84:06:4c:e1:
1f:72:a5:c2:cc:2c:5e:f1:d9:1b:aa:e4:04:f7:dd:
05:16:dc:bc:d7:58:70:5f:13:c3:c5:d0:74:14:69:
69:af:80:f8:60:fe:d1:1c:e6:82:35:ac:81:ae:a3:
b5:3e:c0:f2:fc:f3:cd:a1:ce:62:dd:7b:80:5b:b3:
6c:c4:ac:d4:73:5d:4c:f5:34:fe:79:17:45:6e:eb:
85:5d:b0:8e:65:6c:a0:36:30:46:a0:cf:b0:96:2a:
8f:59:71:ed:c9:d6:b3:0a:59:ec:da:c2:56:0e:d6:
70:99:de:f8:db:29:29:98:de:7d:e8:b0:4c:86:24:
38:e7:73:ba:76:34:af:c2:a5:aa:c7:96:78:29:e8:
b8:1f:23:84:42:22:5f:4c:b7:e9:3a:c0:ec:dd:c6:
e8:e0:64:76:4b:a2:2e:83:07:9c:62:75:41:99:97:
ac:94:f0:86:10:ef:23:7d:c0:5d:7f:30:c6:a8:e5:
17:e2:6e:4e:5b:a7:1f:71:23:fa:ce:be:ac:86:54:
ae:43:b0:84:2d:29:e2:75:68:55:8a:e6:b5:74:2e:
eb:ce:60:53:7c:a3:41:15:26:b5:68:98:db:7f:aa:
00:55:7d:b6:cc:7c:62:f7:e5:eb:52:ce:41:f2:0c:
61:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:22:03:36:83:99:63:77:60:09:8E:93:CC:62:03:8B:95:EB:DE:43
X509v3 Authority Key Identifier:
keyid:5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:96:58:34:78:f9:51:48:cc:ff:eb:b1:41:43:8b:0e:83:fa:
4e:c1:aa:c3:87:b7:21:c6:e2:4c:35:14:d2:4f:7f:c8:7f:f9:
56:f6:7a:d2:d7:74:c9:19:1a:28:9b:1d:1c:fe:94:37:31:2d:
4a:de:73:ca:cd:bb:33:c1:f0:4e:04:e6:7f:8e:6c:ff:82:f8:
86:0f:9f:61:d0:31:fc:08:2a:e8:a3:68:75:ef:32:ec:04:c5:
c1:1c:84:07:ff:51:4f:13:be:c7:22:15:8c:2a:4a:4c:61:5d:
77:76:c6:75:b2:a1:f0:b8:8a:98:0d:de:4f:4b:f3:d3:f6:8a:
46:36:25:e8:89:ad:a4:87:65:c4:9b:f9:a1:d5:34:f6:54:64:
87:9f:b6:51:66:ba:f6:8e:bc:12:5a:ae:ad:b1:ff:e9:81:68:
30:4c:46:0c:36:77:de:8c:e7:0e:2d:27:7e:e5:b4:4c:40:8b:
3a:39:7f:9d:16:d0:ea:a8:15:14:a0:fc:29:fd:4e:ea:7c:dd:
5f:16:c8:de:71:5e:f9:61:6a:df:ef:73:2f:92:83:16:15:b9:
17:6b:ff:4c:15:f3:11:3d:00:95:47:ef:d5:3f:fd:2c:87:33:
de:4e:15:b2:58:7c:2b:ec:c0:9e:d0:6d:4e:4e:f5:a6:7d:af:
45:5a:96:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:41 2025 by rpki-client