Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
File: XICE2xnxE9gbZEg5P60cEyxYT80.mft (raw, json)
Hash identifier: DwuI2HSFWqIIfO/dkPi8G7Qf8Qow2StPPA1Pm+4ptdY=
Subject key identifier: AD:79:8B:62:BF:54:B1:D2:B0:5F:76:09:D6:80:15:C8:F1:8B:80:CA
Authority key identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
Certificate issuer: /CN=5c8084db19f113d81b6448393fad1c132c584fcd
Certificate serial: 0198D54E2AF271D791F73B82EA880C4E516F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
Manifest number: 0F4C
Signing time: Sat 23 Aug 2025 05:02:06 +0000
Manifest this update: Sat 23 Aug 2025 05:02:06 +0000
Manifest next update: Sun 24 Aug 2025 05:02:06 +0000
Files and hashes: 1: RopsaNkgpHpRL2oKJRAlnWazjYk.roa (hash: hePdDKhYq7jZJBW0X9xyUlZ0MuRDMypI160xH9eb0s0=)
2: XICE2xnxE9gbZEg5P60cEyxYT80.crl (hash: w2XaXnd7XrdbQdLnZjcMxalHMvJw63cbaa6AAhpyUwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:2a:f2:71:d7:91:f7:3b:82:ea:88:0c:4e:51:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c8084db19f113d81b6448393fad1c132c584fcd
Validity
Not Before: Aug 23 05:02:06 2025 GMT
Not After : Aug 24 05:02:06 2025 GMT
Subject: CN=ad798b62bf54b1d2b05f7609d68015c8f18b80ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:35:2c:d2:9d:9b:d0:7f:6d:cf:00:d4:48:27:
5a:9e:2f:4c:cf:4d:14:84:e3:74:42:e9:00:09:84:
f7:49:e0:61:19:3e:ac:6d:21:ef:de:08:e5:9f:36:
75:b5:6b:07:5b:58:85:05:6e:65:6b:10:c9:a3:39:
25:d2:ab:6a:4a:56:ec:78:bc:85:4a:b2:65:31:37:
29:5e:8a:66:0d:3f:d0:f0:80:d4:a8:2f:40:d9:7f:
3d:9e:13:85:bd:b8:a4:96:6e:82:84:7c:89:1b:42:
8e:05:a2:4f:a2:db:24:09:8f:0b:04:d7:d3:9b:2e:
ee:0d:eb:1d:10:de:45:70:92:ba:b6:dd:c9:ea:6c:
40:73:6c:6b:08:ba:bc:11:b0:4c:73:bf:a9:71:aa:
1e:fa:9a:db:5c:44:7c:d8:b9:40:ac:04:26:2c:c9:
92:f0:a1:97:78:92:04:56:45:73:6a:f6:a8:54:70:
e1:40:a8:e1:6c:61:e7:a7:26:9d:53:3f:af:77:1a:
77:41:01:bd:47:28:cf:66:12:f2:9b:c5:83:19:4f:
39:cc:19:3e:8b:5e:3d:0e:42:88:06:ae:0b:6f:21:
20:8f:38:13:11:ab:e0:b6:e9:4c:e8:7e:ee:78:bd:
58:ca:df:26:d8:4c:69:2e:21:15:77:e9:2d:f8:07:
4c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:79:8B:62:BF:54:B1:D2:B0:5F:76:09:D6:80:15:C8:F1:8B:80:CA
X509v3 Authority Key Identifier:
keyid:5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:14:fc:e8:48:ac:83:72:ff:f7:45:5a:fc:cf:72:32:48:da:
c7:0f:fe:f0:ae:84:b8:05:b7:97:5a:66:32:73:3a:cc:15:d5:
a2:b0:cd:55:5c:95:66:af:65:4e:a2:60:68:ef:4e:5d:08:ad:
bd:56:39:66:61:47:a2:49:60:2c:87:c7:13:26:aa:8e:42:9c:
e4:4b:1f:7d:99:fa:6e:25:89:b5:d4:e1:54:e7:bd:82:20:b0:
35:51:98:b7:f5:62:4f:05:22:33:2f:5b:30:a5:01:68:48:c6:
82:ef:99:56:d7:f6:6c:35:f3:64:da:86:9d:c2:97:51:81:77:
01:fa:17:68:ec:48:bb:70:33:96:a3:ed:e1:14:fb:be:c1:6c:
7a:2e:fe:8c:ed:db:c5:da:b6:f9:ed:c4:11:b1:80:48:4e:d2:
e0:8e:b4:6e:fb:d4:1c:51:28:6a:77:56:b0:f3:35:2a:1e:16:
73:04:fe:04:e1:28:79:78:f9:ea:8e:04:5a:38:a8:fe:f7:b9:
0d:a6:7b:37:93:42:d0:28:aa:19:6c:9f:3d:68:8a:16:bf:6d:
02:bf:7d:08:7f:84:b6:3d:df:be:30:1c:b9:f2:ee:7b:a7:16:
65:83:c9:48:9d:5e:77:bb:f3:ad:0e:77:4f:d0:c6:31:6a:64:
be:ea:ff:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:18:00 2025 by rpki-client