Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
File: XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft (raw, json)
Hash identifier: 8ebCCbHysdPcVJywmoB/L0n2Tn0/x3SP2+HhhxlhEDY=
Subject key identifier: C2:2B:CC:F6:3E:5F:89:20:BA:93:16:D7:CD:32:55:6D:49:DD:5F:F2
Authority key identifier: 5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36
Certificate issuer: /CN=5de458f21d406466bdf68240f505eefd197ba936
Certificate serial: 0198D5BC47FCD3DE6EECA6043328445A14C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 07:02:22 +0000
Manifest this update: Sat 23 Aug 2025 07:02:22 +0000
Manifest next update: Sun 24 Aug 2025 07:02:22 +0000
Files and hashes: 1: 8x6SWTgZKaQldoz2iRV_QSdqbtg.roa (hash: LzTLrE8ZLdriPR/s+lretToH9KQur6QiGymJnQCIGiw=)
2: XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl (hash: J9msMVJ5MsWYmGQNOxGzH7zktLLFhMYcOkrPJXyozWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:47:fc:d3:de:6e:ec:a6:04:33:28:44:5a:14:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de458f21d406466bdf68240f505eefd197ba936
Validity
Not Before: Aug 23 07:02:22 2025 GMT
Not After : Aug 24 07:02:22 2025 GMT
Subject: CN=c22bccf63e5f8920ba9316d7cd32556d49dd5ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cc:5e:00:c5:7f:0c:c7:d5:a3:77:3c:09:15:
72:0a:80:e2:b2:85:4d:af:9b:95:f6:15:64:da:1c:
90:8c:f0:de:67:7e:e9:ff:47:27:d1:f2:d2:ee:c8:
db:2c:f2:78:40:89:06:b1:f3:f6:49:35:fb:2c:98:
79:da:0d:04:ba:7d:78:c7:0f:ff:ec:9a:25:6e:9f:
c6:8a:f4:42:6b:d8:da:d7:db:65:6a:db:34:26:4e:
5a:7f:7c:fd:b4:4b:84:4f:18:bb:6f:35:84:55:47:
e1:30:3d:29:1f:57:ea:d5:f7:04:8c:db:a2:df:dc:
7e:8f:d1:82:a1:86:e8:dc:4f:34:6e:79:15:60:c8:
7c:de:b4:ce:2a:89:c0:82:49:7b:bc:76:5f:39:40:
6a:dc:b1:20:a2:3a:59:ea:c1:0b:ea:e7:02:4f:13:
36:d8:fd:c9:50:01:12:d2:1a:fd:66:9f:2a:b9:e2:
72:42:fa:ef:2e:95:63:2f:0c:54:f7:b2:e6:49:dc:
3f:2c:bc:1e:7d:32:ef:41:90:2c:24:ba:48:03:28:
8f:43:dd:73:b8:68:78:4d:8a:fe:1e:cb:12:c5:a0:
70:f2:47:00:86:af:59:b4:db:32:29:e9:5e:36:49:
40:bd:bd:27:24:17:67:30:00:8c:c0:6b:79:5d:f5:
9d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2B:CC:F6:3E:5F:89:20:BA:93:16:D7:CD:32:55:6D:49:DD:5F:F2
X509v3 Authority Key Identifier:
keyid:5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:49:24:7c:61:0d:1e:39:3f:ae:3e:6e:b8:f7:de:0d:c0:58:
c0:c8:6a:47:10:02:d6:e9:60:de:95:ce:f7:6c:b6:75:ae:fb:
92:7e:c8:e8:ce:70:42:bb:16:48:0a:35:94:ef:b5:75:0f:23:
5b:4e:e6:8b:16:62:9f:38:6d:53:8d:fc:cd:5a:5d:08:f5:84:
c5:79:f7:04:d3:bd:0a:35:12:84:df:52:0f:41:c5:3e:0c:18:
52:05:37:52:4a:27:6e:67:ae:54:bc:af:2b:9b:9f:c0:21:c3:
7c:36:f8:fe:1e:78:81:4e:8c:0b:5f:c2:26:53:f3:42:fb:77:
85:69:30:03:76:6b:b7:d3:a5:3b:35:e2:1f:31:1d:ad:71:01:
db:89:f3:a9:1c:84:f8:25:41:2f:cd:fa:47:4c:bf:5e:9d:85:
50:cb:55:a4:b4:b2:48:49:cb:8a:48:23:9d:b1:ef:27:c6:11:
59:bf:de:ae:b5:f8:cc:97:61:8b:e7:22:32:8b:97:f7:e7:3b:
83:d9:7a:ac:a6:6d:29:f8:96:29:6a:85:0a:87:d7:67:00:a0:
4f:59:b2:93:7c:7b:52:cb:59:5f:a4:cd:58:c6:79:d2:9e:55:
8d:7f:2a:8e:26:3e:9f:0c:a2:e0:06:bc:ed:1c:a3:f5:2f:45:
a0:a4:ad:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:31:22 2025 by rpki-client