Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
File: XQwn-FWB4ue94MmPvVS-HUlnBRc.mft (raw, json)
Hash identifier: J9OvPcX6QjVqbmpfVYBWznYWrZZatLrzDpjpNUsUQg8=
Subject key identifier: 3B:33:BA:E8:16:38:E2:42:01:4F:2F:69:BF:8C:FB:C9:3A:62:F5:85
Authority key identifier: 5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
Certificate issuer: /CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Certificate serial: 0198D583A432E282161A313ECAF5C1AE4B0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 06:00:30 +0000
Manifest this update: Sat 23 Aug 2025 06:00:30 +0000
Manifest next update: Sun 24 Aug 2025 06:00:30 +0000
Files and hashes: 1: 5lc5ZmxcIf_S-qtTdxwVFYdfw74.roa (hash: nWQ6LzHmMcNUWFVJjD8F6A2IBDinnQ/3GkZ+tOcMhcc=)
2: XQwn-FWB4ue94MmPvVS-HUlnBRc.crl (hash: O59CvICGDv4I3AerelrxP+Maead44MAHAy/GRQu/3cc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:a4:32:e2:82:16:1a:31:3e:ca:f5:c1:ae:4b:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Validity
Not Before: Aug 23 06:00:30 2025 GMT
Not After : Aug 24 06:00:30 2025 GMT
Subject: CN=3b33bae81638e242014f2f69bf8cfbc93a62f585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:50:d2:73:0e:7f:ec:25:93:68:d5:f1:67:81:
26:18:fb:36:57:c1:75:3f:84:6e:eb:7f:e6:f8:e5:
5e:ff:6c:47:9a:49:7b:62:a6:06:ed:a6:86:7b:00:
65:60:20:e8:21:65:7b:9d:cb:41:b6:53:53:f2:99:
35:9e:9e:cc:80:cc:df:12:f8:11:f2:fe:fb:fe:ec:
a9:bc:29:5f:3e:42:8c:6f:2c:fb:de:92:98:6d:b4:
a9:07:57:ef:b4:80:d5:85:f0:5a:17:17:a8:7c:08:
db:84:a8:aa:97:2f:79:41:1f:09:11:a5:86:b7:39:
db:6f:4a:5a:45:6b:cb:22:de:21:4f:b6:bb:ce:2d:
61:9a:73:4a:c6:d6:f0:df:56:93:76:1a:88:ba:1a:
24:f6:5e:5d:9b:d5:7f:47:d2:50:a9:52:95:7d:72:
3e:b3:8a:d5:c1:48:4a:1a:53:7e:78:28:d6:dd:74:
63:df:b9:8e:a6:5a:94:db:31:cf:d0:cf:25:a3:be:
fd:6f:d5:3c:2a:4c:30:03:20:4a:5f:43:ec:86:89:
fd:7c:80:57:c4:a3:1b:e9:19:df:36:2c:79:7d:6d:
9f:13:4d:7a:1b:6e:83:17:44:99:c6:48:43:e0:0e:
9c:6f:9f:7e:73:f3:a6:89:0c:3c:91:97:31:04:e3:
ea:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:33:BA:E8:16:38:E2:42:01:4F:2F:69:BF:8C:FB:C9:3A:62:F5:85
X509v3 Authority Key Identifier:
keyid:5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:ff:5d:49:7a:0f:93:d3:50:72:47:69:78:e0:e2:12:64:dc:
02:d8:0d:23:de:ad:1e:d8:db:5f:30:d4:a8:f4:4e:43:f8:d0:
ad:ef:a4:aa:58:34:7f:f7:27:05:fa:51:b0:95:01:60:1e:9e:
d9:74:c1:ff:05:fb:82:76:eb:bb:99:2a:a1:3c:f4:ab:18:92:
b5:79:a7:e7:27:a2:88:57:dd:36:76:1c:63:fa:27:d7:82:a0:
66:4f:2e:99:61:22:50:4d:d1:ee:64:05:8c:86:02:36:e8:b4:
13:e8:b5:e7:08:d8:e1:e4:71:cb:af:74:2b:16:f6:19:86:8e:
c6:d9:fe:d2:f7:fd:e0:25:9e:10:e9:72:4d:07:53:b9:94:f8:
c0:1a:14:43:4e:09:4f:4c:e1:53:58:67:5d:0a:05:09:23:03:
ea:9b:a8:42:56:d5:94:eb:15:14:96:cb:16:94:de:2f:9d:ba:
79:6d:ef:bf:48:d3:1d:be:da:20:2e:67:9b:55:6e:bf:2a:ef:
f4:48:ac:c8:7f:2b:b5:64:74:c6:da:6c:0e:e7:31:e5:44:a6:
d3:20:7d:74:10:be:31:4b:e6:03:a0:f0:6c:e5:37:ec:d0:da:
d5:a0:ac:81:3d:32:d3:6c:e8:b4:46:3d:4f:7f:dc:fc:85:0e:
85:de:e5:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:07:58 2025 by rpki-client