Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json)
Hash identifier: sSs+tsLCAs5X6mIdzETd37ekL/E70m/gpYn4GGtzN0Y=
Subject key identifier: 2C:16:8B:9D:2D:5C:FC:60:85:44:CC:C6:32:FE:38:93:53:E1:2E:27
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 0198D516428CEC867D55FBB6B50E33399B33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
Manifest number: 0DF9
Signing time: Sat 23 Aug 2025 04:01:02 +0000
Manifest this update: Sat 23 Aug 2025 04:01:02 +0000
Manifest next update: Sun 24 Aug 2025 04:01:02 +0000
Files and hashes: 1: 8rSm2TYmCggVgedhJYf2d5mO9bY.roa (hash: u5F6NWnwd9MOKoxteUtWCw1+tPwzMsMfG5qFtnCO6pk=)
2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: koo7zvIUN3BhYk7lq8qT/Ez1p3Yh1IlAxOtw4G+ZFVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:42:8c:ec:86:7d:55:fb:b6:b5:0e:33:39:9b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: Aug 23 04:01:02 2025 GMT
Not After : Aug 24 04:01:02 2025 GMT
Subject: CN=2c168b9d2d5cfc608544ccc632fe389353e12e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:98:46:38:e2:bb:5d:ac:59:96:0d:73:51:8d:
51:1e:56:f0:7b:ac:6d:5f:50:ae:85:69:ad:25:b5:
59:39:90:44:fe:1f:4e:b5:99:1e:3e:56:a9:de:4a:
7d:d0:0e:5a:de:62:bc:c9:f1:cd:e6:d7:ef:04:d6:
7f:d2:7e:eb:c8:28:e8:d2:4b:f2:eb:32:6a:79:c6:
09:d6:af:2d:a0:a1:06:c4:f4:11:24:98:70:f5:9e:
ba:36:9a:1c:9e:84:ac:81:b8:85:88:93:68:78:cc:
bc:d0:41:05:57:1f:ab:6e:5e:5b:35:a9:f7:de:62:
13:62:33:fc:50:82:01:be:ff:f5:c1:be:f2:00:03:
90:a7:78:6f:f6:b1:ee:99:78:08:c5:3a:4a:f7:c3:
8e:ae:52:65:a2:fe:5b:52:a4:56:1b:a6:6f:31:dc:
68:84:73:b2:00:90:53:22:d6:8e:cb:b1:9c:bb:53:
dc:7e:c9:d0:c5:14:3b:4f:9e:8a:03:29:b1:93:35:
ae:1c:be:ad:c2:76:8f:f7:73:b2:6f:bd:d9:19:11:
a9:95:1e:4a:03:af:11:fb:e7:c6:ad:fe:64:30:b0:
2d:9b:1e:4c:2a:40:cd:b2:ca:a3:6f:76:94:ae:fa:
dd:39:ab:f5:a7:ea:7a:3b:1d:6c:ba:0d:14:ec:58:
9b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:16:8B:9D:2D:5C:FC:60:85:44:CC:C6:32:FE:38:93:53:E1:2E:27
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:cc:55:af:50:51:9f:61:05:dd:37:e7:9a:89:dc:fe:f4:e6:
d7:6f:98:a1:de:17:e2:a1:4a:58:30:59:7a:5e:2b:59:59:61:
1d:a9:73:dc:59:f3:28:44:80:39:6f:87:a3:05:a4:9e:91:91:
9f:d8:b8:1b:ff:6c:1c:c7:75:02:e2:a1:05:97:ad:52:c6:80:
c9:07:63:5e:c9:2a:f6:f3:11:d4:60:26:42:04:d7:5d:6e:05:
8c:6d:63:bb:91:f6:c7:89:65:a9:5d:0a:61:ea:b3:56:ec:32:
4d:ce:d9:7c:43:9f:34:a0:47:11:8a:5f:d5:6c:97:86:a2:97:
5f:0b:d8:50:ab:6b:e4:ce:63:79:59:69:8f:6f:51:f8:81:56:
6b:6f:da:b2:4d:46:d0:25:34:33:32:ce:93:62:19:66:4f:90:
12:03:37:3b:f4:00:09:af:66:35:a2:c9:85:ef:88:7d:fc:eb:
b7:93:b3:03:f8:dd:01:c2:34:d3:57:28:d4:75:0b:c9:d1:29:
51:48:0a:b5:4e:7d:24:8f:41:8d:bf:70:33:9a:dd:f1:2f:e6:
06:34:0d:49:67:2f:37:29:dd:f6:37:d2:ea:bc:65:f8:66:09:
c8:60:1a:1f:03:05:83:fa:89:46:a1:52:4a:83:52:79:56:86:
2d:a4:41:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFkKM7IZ9Vfu2tQ4zOZszMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjYjNhMjE0NWY5YjRkNDY2MDU4MmFkYzZiNzM1NDk2OWUw
ODljYTkwHhcNMjUwODIzMDQwMTAyWhcNMjUwODI0MDQwMTAyWjAzMTEwLwYDVQQD
EygyYzE2OGI5ZDJkNWNmYzYwODU0NGNjYzYzMmZlMzg5MzUzZTEyZTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvphGOOK7XaxZlg1zUY1RHlbwe6xt
X1CuhWmtJbVZOZBE/h9OtZkePlap3kp90A5a3mK8yfHN5tfvBNZ/0n7ryCjo0kvy
6zJqecYJ1q8toKEGxPQRJJhw9Z66NpocnoSsgbiFiJNoeMy80EEFVx+rbl5bNan3
3mITYjP8UIIBvv/1wb7yAAOQp3hv9rHumXgIxTpK98OOrlJlov5bUqRWG6ZvMdxo
hHOyAJBTItaOy7Gcu1PcfsnQxRQ7T56KAymxkzWuHL6twnaP93Oyb73ZGRGplR5K
A68R++fGrf5kMLAtmx5MKkDNssqjb3aUrvrdOav1p+p6Ox1sug0U7FiblwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCwWi50tXPxghUTMxjL+OJNT4S4nMB8GA1UdIwQY
MBaAFFyzohRfm01GYFgq3GtzVJaeCJypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9kMDY2MWMtY2ViYi00ZTIyLWIxOTct
MTM5ODAwYThjNzVmLzEvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi9kMDY2MWMtY2ViYi00ZTIyLWIxOTctMTM5ODAwYThjNzVm
LzEvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJsxVr1BR
n2EF3Tfnmonc/vTm12+Yod4X4qFKWDBZel4rWVlhHalz3FnzKESAOW+HowWknpGR
n9i4G/9sHMd1AuKhBZetUsaAyQdjXskq9vMR1GAmQgTXXW4FjG1ju5H2x4llqV0K
YeqzVuwyTc7ZfEOfNKBHEYpf1WyXhqKXXwvYUKtr5M5jeVlpj29R+IFWa2/ask1G
0CU0MzLOk2IZZk+QEgM3O/QACa9mNaLJhe+Iffzrt5OzA/jdAcI001co1HULydEp
UUgKtU59JI9Bjb9wM5rd8S/mBjQNSWcvNynd9jfS6rxl+GYJyGAaHwMFg/qJRqFS
SoNSeVaGLaRByA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:17:03 2025 by rpki-client