Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
File: XYHR_0WxVHwAqEtG75nsot-9Rbw.mft (raw, json)
Hash identifier: sSxjpmKMB553IcFeCqYH0doneuHZJGzaAaOau08mJEg=
Subject key identifier: 32:2D:95:C1:45:D9:C9:C0:71:8A:13:FC:9C:96:0B:39:18:63:CF:62
Authority key identifier: 5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
Certificate issuer: /CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Certificate serial: 0198D73BCBB0D68242B903EC1B8CCE0735BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 14:01:16 +0000
Manifest this update: Sat 23 Aug 2025 14:01:16 +0000
Manifest next update: Sun 24 Aug 2025 14:01:16 +0000
Files and hashes: 1: C-JYvDSVCc5Zd_4Sd7FiFR4ridU.roa (hash: Fud1edK7T1C6PqdOPqDnlVWq4JxXY+eiVXIDYHC1t50=)
2: XYHR_0WxVHwAqEtG75nsot-9Rbw.crl (hash: EZIXiUl/llS8Vv75ysfLHKS4jBMxaPeaGCHPMZCBwFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:cb:b0:d6:82:42:b9:03:ec:1b:8c:ce:07:35:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Validity
Not Before: Aug 23 14:01:16 2025 GMT
Not After : Aug 24 14:01:16 2025 GMT
Subject: CN=322d95c145d9c9c0718a13fc9c960b391863cf62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:19:5a:c0:a7:f7:d8:79:13:4d:3e:67:41:de:
ed:00:1d:0c:ba:c9:26:79:0b:85:de:85:7f:3d:6b:
61:84:b5:05:64:d4:90:1b:67:71:28:e4:e2:34:69:
35:2c:23:3c:fa:48:4c:14:ea:12:26:be:d6:a4:36:
43:59:88:94:48:90:ec:d2:0c:4f:33:82:72:7e:db:
39:3d:ba:50:60:1a:ef:0e:c4:fc:fe:11:17:24:cd:
e2:ca:c9:30:9b:74:8d:d1:35:da:8d:5a:4f:f0:03:
3f:37:fc:6c:eb:ff:3c:c2:dd:4e:f8:9b:88:7a:02:
13:18:69:4c:87:74:a1:89:69:01:87:d4:6b:9b:cc:
f1:38:f2:f1:93:a5:63:9d:b9:26:78:38:af:d2:6b:
09:e3:36:a7:ea:41:cb:3c:d4:cb:a8:4c:aa:f7:50:
de:71:f8:ce:0e:90:76:56:57:c4:30:93:ce:4a:ff:
eb:61:5b:c8:ac:a5:a4:d6:8b:ac:f7:c1:9e:fb:79:
eb:a5:7b:eb:24:f5:26:3b:20:42:46:7f:00:4e:85:
45:0b:74:63:0b:74:96:4d:6c:fd:a8:99:dd:b6:aa:
ce:2a:e7:a7:46:4e:b9:26:a4:de:02:b6:cd:8a:fb:
f0:1c:bf:53:34:b6:90:2a:8f:b4:3e:c5:6f:06:6c:
84:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:2D:95:C1:45:D9:C9:C0:71:8A:13:FC:9C:96:0B:39:18:63:CF:62
X509v3 Authority Key Identifier:
keyid:5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:ad:a5:17:ea:f0:2d:8b:2f:ca:a1:bf:ed:cd:77:f1:68:ed:
f1:b0:3d:bf:5e:e1:6d:70:39:ac:17:bc:07:e4:f0:e0:99:1a:
e8:57:03:2e:2a:95:d0:8f:e4:b3:1b:ed:cf:96:c1:b8:d0:9a:
e3:dc:2d:08:fa:45:9c:0a:78:a8:3a:b3:d5:9c:d3:4a:c2:da:
cd:20:d1:9c:d9:92:8a:df:0c:ec:ee:75:3e:7f:02:d9:6a:f9:
b4:1a:c1:11:20:4e:4f:9f:d5:1e:a4:8d:28:8a:a8:fb:c2:d2:
60:b5:0b:1a:8d:bc:de:17:ba:34:44:9d:c7:a8:f3:51:a1:c9:
70:d9:0a:35:c7:26:01:cd:2c:92:ba:fd:0f:64:b6:0d:6d:a9:
37:5b:92:14:56:ea:7a:3a:07:d1:ed:4c:f8:12:51:91:02:e9:
80:b7:84:4e:b3:f8:da:ea:fe:0d:bf:8d:a6:2b:97:10:59:bb:
c4:f3:b8:38:c8:9e:82:71:0a:95:73:dd:8b:0a:36:d4:89:e4:
92:d5:09:53:79:41:ba:0f:5d:b4:98:60:e8:07:22:0c:17:66:
c4:de:7e:5b:01:73:8a:33:29:46:30:a5:e4:90:94:02:37:ce:
37:bf:40:66:8c:9d:90:47:f2:5c:62:c6:f6:d7:3b:d1:53:9d:
b9:fa:d9:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:34:30 2025 by rpki-client