Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
File: Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft (raw, json)
Hash identifier: OcPi3r7FyspUuYBDxgca3THV3wtHm/0sNfpMS1hovZE=
Subject key identifier: EE:E5:8B:D0:41:87:46:CB:05:45:FF:68:CA:E6:36:9B:65:68:E1:97
Authority key identifier: 5E:4F:1A:32:A3:7E:08:39:00:AB:A5:61:70:8E:52:AB:23:4E:3A:38
Certificate issuer: /CN=5e4f1a32a37e083900aba561708e52ab234e3a38
Certificate serial: 0198D474175A1BA4A7247F015C18EC46E3A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
Manifest number: 0607
Signing time: Sat 23 Aug 2025 01:03:54 +0000
Manifest this update: Sat 23 Aug 2025 01:03:54 +0000
Manifest next update: Sun 24 Aug 2025 01:03:54 +0000
Files and hashes: 1: MjurembtvVeEftl3x1ofb2bHb8o.roa (hash: LMEfB1EahjyEN1vkkgX4Rq92rZ+ObZyJ1Ue8yFCn1Pk=)
2: Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl (hash: pEa2m+YaaUSmw1xHzZO2yGsK/Dukl9W9/ssLzOgnWkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:17:5a:1b:a4:a7:24:7f:01:5c:18:ec:46:e3:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4f1a32a37e083900aba561708e52ab234e3a38
Validity
Not Before: Aug 23 01:03:54 2025 GMT
Not After : Aug 24 01:03:54 2025 GMT
Subject: CN=eee58bd0418746cb0545ff68cae6369b6568e197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d0:5a:02:b6:47:e5:4c:2b:ee:4e:ae:ef:97:
e4:74:1e:3f:31:dd:c9:67:df:86:f1:d2:1e:66:7e:
a8:86:7e:23:b2:fe:d0:33:0a:4c:71:17:c2:f9:63:
fa:57:74:20:af:70:94:43:22:61:83:41:d7:9d:2e:
4f:58:b4:7e:47:a1:4e:00:0f:a0:1d:72:b6:0a:f1:
da:c1:e2:e5:03:d3:83:ab:5d:66:06:b2:e2:4c:4f:
e9:db:3d:69:a6:b7:94:39:c5:51:3d:1f:3d:ba:8c:
9d:a3:f6:bf:f7:dc:7b:4d:7b:6a:39:ed:ea:e6:cb:
2d:f8:8f:77:46:15:1e:2f:37:9f:b4:f5:71:8a:41:
a6:26:5d:3b:f7:f8:8b:84:b5:00:85:46:a2:8e:32:
fb:71:c1:d0:28:f3:72:2f:2d:1d:fe:e4:27:da:d4:
76:f6:9d:6e:b6:e1:96:d1:d0:0f:ca:b7:64:85:ef:
f1:60:4b:cb:47:f9:2c:52:d6:3d:ef:23:25:21:12:
54:cb:0d:6e:1b:cd:4d:34:c2:13:92:47:99:45:77:
cc:bb:c0:e7:aa:02:77:9e:59:e9:a3:22:18:65:95:
d7:34:af:25:3c:31:74:7e:56:50:d1:b7:8c:d6:73:
0b:b3:97:2b:37:21:b3:ea:ef:8e:78:fc:df:72:17:
49:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E5:8B:D0:41:87:46:CB:05:45:FF:68:CA:E6:36:9B:65:68:E1:97
X509v3 Authority Key Identifier:
keyid:5E:4F:1A:32:A3:7E:08:39:00:AB:A5:61:70:8E:52:AB:23:4E:3A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:d0:23:fb:c3:61:b0:7c:47:b2:c9:6c:30:5b:a9:81:14:1c:
14:33:30:ba:aa:9a:28:81:03:44:73:b5:50:35:32:7c:85:c1:
f9:16:84:f3:37:65:7d:0a:6a:8d:c1:42:d6:9d:ff:06:2f:07:
ff:d5:6a:b3:79:92:fd:34:1a:ea:66:35:85:f6:50:4a:39:67:
77:64:19:39:d4:aa:e1:fc:88:5d:60:e7:30:a4:9d:23:2c:32:
9e:16:a6:71:b5:c1:e9:11:96:d2:a3:6a:ee:cc:72:0e:c5:b5:
65:61:a7:31:7b:95:41:83:e5:55:eb:1f:b9:f2:b1:ae:d2:19:
15:ae:71:fb:3f:d4:ef:01:b9:4e:1d:c9:ab:58:bc:1b:ba:0a:
cc:ff:86:d8:58:fc:1e:07:75:df:af:49:54:9d:53:de:0e:12:
3c:73:e4:4d:56:2a:bf:09:76:05:b1:0b:bc:45:8c:bd:b1:25:
ea:0b:86:78:1b:5d:f8:91:01:7d:25:eb:34:d9:a2:06:4e:45:
77:50:e6:a6:1a:ba:37:55:4b:05:86:1a:76:5c:f2:5c:ad:de:
1e:e7:37:20:ba:43:f8:2c:39:26:89:10:71:2d:7e:64:5d:6c:
56:ae:71:72:02:a8:50:d6:7d:f5:c5:74:8f:f7:df:7f:18:f2:
f7:79:f3:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:26 2025 by rpki-client