Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
File: XeYTaCVSAQKY86aUoA18WQYGC5U.mft (raw, json)
Hash identifier: HBo/LhTtz3NfhCZ6jusNJLMEzmQ+2y5rm46+YrL61Oc=
Subject key identifier: C9:61:6A:34:63:E1:6E:50:7E:35:D5:40:98:36:C8:3F:20:80:D9:1F
Authority key identifier: 5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
Certificate issuer: /CN=5de613682552010298f3a694a00d7c5906060b95
Certificate serial: 0198D705A1A819194C6B493EB5668D8F4BC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 13:02:06 +0000
Manifest this update: Sat 23 Aug 2025 13:02:06 +0000
Manifest next update: Sun 24 Aug 2025 13:02:06 +0000
Files and hashes: 1: XeYTaCVSAQKY86aUoA18WQYGC5U.crl (hash: 6Ex8lf1CwO7j/EWetK8wrfLGQnQ66L+buLz817l2d5Q=)
2: auYlcZnEp-yqavQsok9_TPLHAq0.roa (hash: kbe3quRrlIxTjuDhfKrAisNkV8HOTBuxWR/raJshlU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:a1:a8:19:19:4c:6b:49:3e:b5:66:8d:8f:4b:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de613682552010298f3a694a00d7c5906060b95
Validity
Not Before: Aug 23 13:02:06 2025 GMT
Not After : Aug 24 13:02:06 2025 GMT
Subject: CN=c9616a3463e16e507e35d5409836c83f2080d91f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:da:19:95:d6:97:02:c6:da:f3:09:d5:20:40:
ec:b1:19:74:1f:bd:9d:e2:80:1a:a5:f5:81:39:4f:
a2:29:ac:99:76:20:c4:6a:29:69:d5:e6:36:83:dc:
43:7d:22:00:ea:93:c1:b2:97:5e:be:a3:17:8a:eb:
50:bc:fa:e6:cf:b1:0e:f5:00:cd:f4:1b:27:3e:3a:
25:bd:62:f8:86:7f:8e:f0:b4:25:91:c1:7e:d8:2f:
05:a5:5d:17:c8:8f:36:26:2a:6a:ca:49:94:e8:18:
cb:74:9f:25:1c:5b:10:fa:1a:24:f8:da:de:8a:c0:
39:49:f6:39:15:c5:55:98:c1:9d:38:33:e7:b3:7b:
3e:d7:27:7c:01:27:6e:30:2f:fa:b2:74:56:0f:22:
19:f3:68:7a:93:dd:f6:e1:c5:5d:8f:22:55:8c:c5:
69:58:af:e1:60:6d:90:7e:35:a3:f5:7a:54:51:49:
fe:f7:e1:8a:18:5a:1c:6d:27:b5:e6:b8:cf:3f:ae:
34:b3:b6:26:fa:17:61:8c:13:7f:e9:e2:9f:4e:33:
5d:2c:e2:b4:44:ce:2d:7d:37:f1:dd:50:dc:58:96:
78:37:7f:b2:5c:5b:d2:2d:77:d3:59:b5:42:13:86:
39:5e:2c:d2:a8:08:6b:48:11:a9:55:63:2e:34:3e:
cc:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:61:6A:34:63:E1:6E:50:7E:35:D5:40:98:36:C8:3F:20:80:D9:1F
X509v3 Authority Key Identifier:
keyid:5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:ae:83:1b:5a:5e:cb:1e:cd:c0:5c:5d:2d:30:ae:76:6a:69:
73:3c:a6:52:f2:ad:93:d2:cd:26:7f:ca:ad:6d:81:c9:c3:9d:
26:55:a2:83:9b:fc:d9:4d:28:cb:ee:6b:30:1f:d2:16:05:71:
0a:ce:11:e9:28:69:80:12:91:a3:08:35:d9:22:fb:6b:52:36:
06:e9:dd:d7:93:a8:f1:bf:fd:e8:55:38:3c:e6:67:9a:cb:93:
db:71:85:2e:0a:4e:fe:cf:79:02:98:9e:35:cf:20:18:02:25:
be:49:78:c2:e3:f4:52:e0:38:47:8d:e4:fb:7e:a5:0b:9f:e3:
47:91:69:3d:3a:10:82:a1:2a:7a:6a:62:e3:90:6e:ce:d9:5f:
17:e1:50:34:d9:56:56:48:9d:9d:b7:b3:05:75:83:9e:87:ac:
4f:14:16:aa:c8:78:6c:33:21:50:34:9f:08:06:4e:30:2a:00:
ec:15:85:02:2f:45:40:32:ff:bf:b9:49:6e:02:73:ca:a7:30:
2e:d6:13:47:87:d7:80:be:d0:c5:0e:68:96:f0:6a:b6:22:0c:
74:9c:5d:bc:bf:c1:9a:51:a6:0d:c1:71:dc:99:49:6c:49:6c:
8d:4f:76:ce:c3:17:6b:0e:2d:e0:3a:21:99:44:76:0d:25:48:
33:bc:45:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:07:50 2025 by rpki-client