Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
File: XM814TYW15djDR4lQAwTxiEfUAw.mft (raw, json)
Hash identifier: QO9/SAAex8bEklt3cUViXvFfiAAA0UQId3t2g0xjGLs=
Subject key identifier: D5:2B:13:47:6E:D0:6A:D7:7C:63:BF:72:0C:F9:F0:AF:95:61:3D:57
Authority key identifier: 5C:CF:35:E1:36:16:D7:97:63:0D:1E:25:40:0C:13:C6:21:1F:50:0C
Certificate issuer: /CN=5ccf35e13616d797630d1e25400c13c6211f500c
Certificate serial: 0198D583FD8F176BCDD022D76DFCAD2C61D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
Manifest number: 04
Signing time: Sat 23 Aug 2025 06:00:53 +0000
Manifest this update: Sat 23 Aug 2025 06:00:53 +0000
Manifest next update: Sun 24 Aug 2025 06:00:53 +0000
Files and hashes: 1: XM814TYW15djDR4lQAwTxiEfUAw.crl (hash: UESy4gGBqL1Obk47uRzUFQHrpxugZ3g1rYhapIj4agk=)
2: xDdJemGsGlnwmpl5xZcYblz1F1E.roa (hash: XMJejRWNcdPi5zWMZF0Nrh6edEuHq3xZbSAPEeCgs1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:fd:8f:17:6b:cd:d0:22:d7:6d:fc:ad:2c:61:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf35e13616d797630d1e25400c13c6211f500c
Validity
Not Before: Aug 23 06:00:53 2025 GMT
Not After : Aug 24 06:00:53 2025 GMT
Subject: CN=d52b13476ed06ad77c63bf720cf9f0af95613d57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:71:10:0b:f3:03:39:c6:41:db:1c:38:03:fd:
99:f6:55:6f:36:63:6c:13:b8:4f:1c:5d:0c:6c:cf:
df:7f:04:21:ed:b4:21:1b:7b:b8:f5:44:72:37:27:
76:8e:31:32:71:b7:6d:7f:cb:ae:f7:f6:be:89:97:
5f:2b:6f:40:28:d3:54:1e:c2:f6:f0:73:dc:f4:eb:
f3:48:9a:6a:12:6a:c5:08:54:3a:f2:74:ef:f3:9e:
a7:ec:8b:34:d3:5a:d5:12:64:db:34:32:a2:3d:78:
95:c9:c3:cf:f6:cd:64:09:e4:87:b0:55:f9:d5:61:
ce:f8:b2:5a:9a:60:a4:d3:9e:ae:75:2a:07:1e:13:
2a:f1:55:1d:05:98:e5:20:7f:21:9c:94:f3:05:3e:
97:5e:a1:82:b7:35:3d:a2:82:67:ff:1f:f8:4c:43:
76:4e:00:d0:bb:d9:08:3f:b5:af:81:ae:8d:15:4a:
f7:f5:69:4f:aa:e3:0e:4c:3c:9c:bd:11:d6:a0:c0:
14:1b:00:1b:1f:0b:82:6d:e2:6d:e3:b5:2c:34:d6:
90:b8:d6:e5:cf:50:f5:c9:5f:22:47:b1:e7:85:9c:
d6:53:7b:6b:7b:68:19:cf:7e:d9:81:c5:53:10:2c:
2d:42:b0:e8:7b:f9:f5:55:5f:7c:9a:95:e2:33:60:
e1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2B:13:47:6E:D0:6A:D7:7C:63:BF:72:0C:F9:F0:AF:95:61:3D:57
X509v3 Authority Key Identifier:
keyid:5C:CF:35:E1:36:16:D7:97:63:0D:1E:25:40:0C:13:C6:21:1F:50:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:28:0b:75:53:ab:3a:3e:d1:11:8a:f1:ae:79:04:62:98:a1:
99:03:25:e9:b7:51:d9:df:97:9d:52:ac:80:93:21:29:02:73:
ef:52:98:8b:ae:8a:35:c2:0d:e7:76:12:b1:5d:86:4a:30:c5:
63:59:1e:86:b7:ca:4d:c6:cb:6f:18:d1:6b:da:5c:b4:72:9e:
0b:d0:14:e2:9d:74:23:61:ef:ff:7d:78:cf:ed:c4:af:d5:f0:
eb:1d:ed:a0:81:58:b4:91:49:fa:11:42:28:68:7a:05:ae:bb:
b7:41:9c:32:d0:12:41:a6:64:37:b6:3f:4a:13:76:f8:fe:18:
c0:11:7a:3e:e6:9f:ad:2f:e3:d8:f2:df:26:a2:62:f2:98:7c:
82:6c:f1:df:c8:ae:e2:7e:87:fd:85:c4:68:1e:40:10:06:9a:
50:3a:1b:0a:53:74:50:ab:f1:ee:e6:0f:bc:4b:0f:e8:21:86:
a1:12:6d:fd:b6:18:d2:7c:e0:f8:ab:2b:b8:79:f4:fe:ce:74:
39:c6:61:58:69:fb:ac:65:ff:99:27:16:da:94:a2:7a:4d:4b:
3a:79:59:d5:86:c2:39:41:74:27:c1:82:4f:ed:5d:58:56:42:
24:db:55:a4:36:81:2e:3c:1a:7a:e1:8e:f4:67:1d:de:27:69:
52:18:78:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:49:31 2025 by rpki-client