Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
File: XchzCYds7EBPAHv22gQ0wL3GLYs.mft (raw, json)
Hash identifier: B3SKZU8wnFlkIwT/OJ/8UYQZFN8SVzBxnkx7hT/lycA=
Subject key identifier: 7D:FA:4F:26:0A:D1:B2:AD:B8:11:BC:0D:03:B4:10:16:36:51:14:1E
Authority key identifier: 5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
Certificate issuer: /CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Certificate serial: 0198D4744DE54D83466B7DAD40DD28E06B28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 01:04:08 +0000
Manifest this update: Sat 23 Aug 2025 01:04:08 +0000
Manifest next update: Sun 24 Aug 2025 01:04:08 +0000
Files and hashes: 1: XchzCYds7EBPAHv22gQ0wL3GLYs.crl (hash: 9a54VvnER+M65r9IoTrBkNbfVXoJ9E+I8ZcK6zRedVc=)
2: jcQt-MOzJfjybIamiUioFB-oBn4.roa (hash: vxzopxc1UXJfcspNz3GsRCac77+K0gwBOQSeqjgarpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:4d:e5:4d:83:46:6b:7d:ad:40:dd:28:e0:6b:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Validity
Not Before: Aug 23 01:04:08 2025 GMT
Not After : Aug 24 01:04:08 2025 GMT
Subject: CN=7dfa4f260ad1b2adb811bc0d03b410163651141e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2a:fc:fe:fe:54:66:40:c8:d5:ba:a7:14:6b:
25:2a:de:c0:06:40:52:57:b7:79:bd:67:77:1c:8d:
fc:1f:5a:3b:fc:8a:fc:6d:33:51:7d:4b:96:b0:04:
73:b7:21:9e:6a:61:4d:9f:f7:f6:91:40:94:17:c6:
9d:9d:c0:17:9c:dd:7f:e4:9b:fb:51:65:47:d2:66:
ef:f3:c3:4b:ad:cf:b6:65:38:b2:7c:84:0a:09:a1:
c4:24:c2:54:e5:8e:d5:d5:dc:ef:21:b6:c7:fc:5e:
66:fc:35:3a:af:a8:06:23:a6:ec:94:86:f0:5c:16:
63:8b:2d:b9:4d:c5:54:4a:f5:83:41:61:bd:3e:a1:
33:95:58:6a:a9:59:18:5f:7d:d2:a8:dd:fc:ab:1e:
c6:e9:9a:f0:ce:fc:70:7a:6d:d1:7d:7a:d1:ee:cc:
6b:92:b3:40:0d:e8:ec:fa:13:a7:63:90:3e:7c:5d:
af:dd:48:b6:62:61:c3:9f:70:a9:53:a1:f6:68:73:
3f:b7:df:30:88:fa:d9:68:c8:e5:04:30:97:92:23:
c8:5b:fa:0e:7c:32:9f:23:d9:1a:f9:a5:30:9a:cd:
e6:41:c0:cd:37:54:ff:33:d9:bb:bf:b4:1d:a9:33:
c0:a0:a6:f1:05:83:78:23:02:23:12:0d:ca:fe:70:
9d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:FA:4F:26:0A:D1:B2:AD:B8:11:BC:0D:03:B4:10:16:36:51:14:1E
X509v3 Authority Key Identifier:
keyid:5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:ad:4a:24:17:ed:b9:47:15:12:59:70:24:a4:f5:fd:da:0c:
ec:71:cd:ac:f1:0a:f7:51:7b:2e:6f:30:eb:da:0e:c7:58:66:
22:b2:a3:a6:56:f4:3d:ad:8c:dc:58:4e:ed:87:7f:52:a4:73:
80:b3:f3:f8:f8:f8:73:e2:a1:f5:59:8a:0d:38:c5:0a:19:8a:
2a:27:70:76:e8:f6:a6:e8:79:94:54:7b:99:25:9e:c5:62:38:
0b:e3:7b:3b:49:8c:b9:6a:14:25:83:58:3d:c5:f3:5e:f4:97:
1b:4f:6c:8b:14:d6:09:60:bb:14:0e:d4:39:c9:9f:1f:04:68:
e7:2e:09:d5:44:78:bc:c1:4c:c7:cc:e8:94:d2:3b:0a:a0:15:
ad:fa:d6:90:59:15:6e:85:3c:34:95:eb:ce:8e:42:22:fd:ab:
ae:91:f4:c8:a5:47:13:b7:53:27:9c:71:44:f6:73:f2:45:69:
ad:67:fc:41:2b:18:dc:5d:c4:42:2c:bd:d7:52:47:4f:6b:27:
a3:04:9b:b4:c4:ad:2e:82:b1:73:f3:15:59:76:89:0a:ad:63:
3f:54:fa:48:d4:3b:1f:3b:c2:b1:36:c1:48:e4:d3:2e:b1:71:
8d:ec:6a:e6:0d:bf:dc:ce:f0:c3:1d:2e:6f:ea:be:87:89:dc:
dc:d3:65:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:25 2025 by rpki-client