Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
File: XHbv8miEvwBiB9cis7AaRNK1YZk.mft (raw, json)
Hash identifier: 2Tp5Z7WaqJRWrAcTbNKtBlYAzhULM2t08y1V8gnDMog=
Subject key identifier: 0D:56:E7:D7:AB:F4:6F:D0:7B:8F:84:E4:76:05:40:01:1F:C1:FB:84
Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199
Certificate serial: 0198D660BD9517A593A197EC220F808E1E7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
Manifest number: 0E81
Signing time: Sat 23 Aug 2025 10:02:00 +0000
Manifest this update: Sat 23 Aug 2025 10:02:00 +0000
Manifest next update: Sun 24 Aug 2025 10:02:00 +0000
Files and hashes: 1: XHbv8miEvwBiB9cis7AaRNK1YZk.crl (hash: r8PhJPk2VcFIuhLNVdhiAc/37XmTkScKtaieiehZjKk=)
2: aeqC4EE0KUZ0Hdgey5muRSCYEvc.roa (hash: aH7XcxnHv3qEq7LQXqlBVrjotePFAy5nc/77ZI52Ock=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:bd:95:17:a5:93:a1:97:ec:22:0f:80:8e:1e:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199
Validity
Not Before: Aug 23 10:02:00 2025 GMT
Not After : Aug 24 10:02:00 2025 GMT
Subject: CN=0d56e7d7abf46fd07b8f84e4760540011fc1fb84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:51:77:ad:1d:e8:5e:da:87:a0:ac:11:4a:0e:
be:92:b9:07:f5:2c:14:79:d3:e4:0f:0d:03:a6:c5:
a3:00:d8:88:5f:e5:af:04:ef:ab:eb:76:b7:03:0c:
ef:a0:e1:ca:00:f3:ad:c9:e4:b7:ef:b6:ed:9a:aa:
72:06:43:af:9b:99:48:3f:7a:7f:a5:8c:27:28:fd:
9f:bb:74:91:4b:d1:1c:f4:05:14:68:92:57:7d:a7:
70:fe:4c:93:15:cf:5b:6a:4f:36:c3:fa:cb:d4:5c:
5e:23:c6:51:ca:73:ea:48:42:40:21:18:6d:08:58:
a4:84:e9:fa:6d:e5:51:75:a7:29:48:97:fe:78:57:
20:ae:b5:c2:be:39:21:b0:b5:16:00:6f:21:05:ee:
27:da:03:e7:9e:98:50:13:c3:df:1d:58:77:9e:ea:
4d:23:46:c7:02:7c:e3:8f:8a:44:a4:01:d3:aa:9c:
45:14:28:f7:42:d2:99:6a:2a:03:a9:54:0c:09:cd:
67:05:5f:08:ae:b0:52:f1:9d:41:d4:31:92:65:4d:
cb:5c:6f:e3:94:cb:52:df:b4:60:0b:3a:30:37:01:
4c:14:33:1b:7e:ec:36:40:97:8a:cb:c4:65:ec:ee:
05:36:07:ac:d3:92:07:24:db:62:e7:c0:2d:7d:37:
4d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:56:E7:D7:AB:F4:6F:D0:7B:8F:84:E4:76:05:40:01:1F:C1:FB:84
X509v3 Authority Key Identifier:
keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:18:14:20:08:d8:bc:e7:f7:3e:84:a8:f0:32:74:84:88:97:
6c:96:4e:8c:be:6a:ef:c7:9d:18:3c:8d:2c:d2:30:6f:67:ad:
12:ae:2d:de:2f:08:bc:03:b6:12:aa:28:78:9d:f7:8d:59:74:
74:66:06:9b:db:76:69:68:d5:df:5f:cf:45:2c:fc:66:b3:ea:
6c:d0:d0:ea:98:e3:9a:4b:83:b5:98:e8:5b:d9:6a:68:36:3b:
89:91:a6:ee:bc:ec:71:82:6a:74:49:43:d1:d8:99:88:cb:3d:
60:03:41:a1:bf:4d:f7:0f:c1:76:cd:d3:27:58:d0:e6:04:fe:
79:29:69:52:77:82:47:d6:29:ef:cd:93:59:4e:37:99:8c:45:
31:d6:84:82:c5:a7:5f:08:be:f4:73:d2:4d:f5:17:dd:21:8e:
65:53:33:16:ef:ec:1e:60:e3:80:8b:4d:4f:62:ac:eb:cd:1c:
5b:2e:64:cb:b6:2c:ce:99:2c:e4:2f:d2:77:e8:99:60:b1:8c:
3a:d8:8f:39:f7:d1:18:f8:91:74:67:68:31:ed:6b:f1:28:2c:
c5:15:af:b8:1c:a7:ee:f0:37:ff:cf:55:99:6c:ba:1a:dd:95:
96:cb:e8:41:c3:39:55:11:65:8e:72:e7:19:b0:ca:f5:82:c9:
94:78:cc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:01:15 2025 by rpki-client