Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
File: xU3YgoUsxFhrH-40wFAdXbfWDws.mft (raw, json)
Hash identifier: SXau7UL1i4griZK2mqqjrW5+DJcHnb8PsTz0fLF4I0I=
Subject key identifier: E5:14:56:29:FB:6C:5B:36:AE:1F:F0:DC:17:C2:54:A4:A9:6A:0F:08
Authority key identifier: C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B
Certificate issuer: /CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b
Certificate serial: 0198D7A91EB46E3089A3EE7AE18D0B5F7F27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
Manifest number: 080F
Signing time: Sat 23 Aug 2025 16:00:41 +0000
Manifest this update: Sat 23 Aug 2025 16:00:41 +0000
Manifest next update: Sun 24 Aug 2025 16:00:41 +0000
Files and hashes: 1: XArLVttX_wCBnKO2u8bWM8Vk3NU.roa (hash: BE5h5QGSzKEJoBRH8Cvw/x+Z7DD6UePHMldATT7VyV4=)
2: xU3YgoUsxFhrH-40wFAdXbfWDws.crl (hash: P90HNn+zNxXaggf1FiaEb546/vWlXouMYumJMjKn+44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:1e:b4:6e:30:89:a3:ee:7a:e1:8d:0b:5f:7f:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b
Validity
Not Before: Aug 23 16:00:41 2025 GMT
Not After : Aug 24 16:00:41 2025 GMT
Subject: CN=e5145629fb6c5b36ae1ff0dc17c254a4a96a0f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f9:4a:76:0a:fd:6a:4a:18:26:c8:b1:17:30:
67:62:c0:dd:20:c8:77:72:18:96:db:81:98:e4:85:
fd:f5:44:1a:fb:a6:92:ee:38:94:4c:fb:31:2c:c9:
c2:70:6a:0f:42:a9:cd:0e:46:a2:29:86:4b:20:31:
90:d8:f0:c1:ba:71:de:e6:07:06:e2:b6:59:9a:42:
3b:99:94:98:cc:cf:01:2e:19:79:22:1f:a8:a6:24:
30:61:97:7b:ae:f4:89:19:ae:b3:85:58:36:78:d1:
06:ad:8a:3b:33:52:99:84:e5:c9:d8:0f:91:1c:3c:
e6:96:89:1d:52:0f:45:31:2e:c9:b7:42:9e:84:07:
7a:f0:02:ef:68:cc:28:e0:d0:44:de:8a:71:c9:05:
f2:d7:65:3c:fd:46:4f:e6:ec:5b:2d:61:39:96:b4:
d0:15:d2:c2:4d:06:ad:d1:1b:86:73:b5:da:16:7e:
88:ff:ee:cb:f9:f4:14:23:0e:8d:56:79:5a:0f:d9:
d8:17:70:15:1b:1e:bf:d7:1c:77:e4:cb:e7:4c:8b:
4a:b9:05:a8:08:f9:f5:d0:03:8e:62:22:57:52:af:
c9:fd:b4:2d:60:c9:18:56:f2:b5:d0:2b:63:d9:19:
65:fb:dd:2f:14:46:1f:b0:b4:62:a5:ae:b6:c7:5d:
8e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:14:56:29:FB:6C:5B:36:AE:1F:F0:DC:17:C2:54:A4:A9:6A:0F:08
X509v3 Authority Key Identifier:
keyid:C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:5a:4d:ad:84:9b:74:37:85:b4:92:b7:9a:b0:ac:a4:09:25:
3f:88:e2:52:c2:70:b9:98:ea:a7:91:13:44:d7:4b:54:46:1c:
77:c2:18:bb:5f:e0:4b:ec:04:9d:0e:04:62:f9:35:4d:3a:88:
18:76:36:ad:60:6a:5e:86:62:2b:41:99:e0:34:09:83:f8:cf:
ed:ca:c3:31:fc:44:c5:42:f3:06:87:31:f9:bf:1a:9d:56:c8:
35:20:92:48:87:8b:c0:fd:70:1d:55:82:79:b4:fc:32:58:a9:
e4:33:c1:e8:3d:61:9c:50:06:0d:c3:b4:5a:f4:a1:36:1f:5b:
bf:84:6e:bf:86:fc:4d:e4:ce:a8:1b:ee:5f:ec:be:c2:24:bd:
b3:be:c2:08:3f:47:ff:f8:95:fc:b9:66:fd:42:24:55:ea:6a:
2f:e9:bb:1a:eb:91:61:7c:44:62:f5:9a:1c:4d:bb:d2:2f:56:
26:9a:ab:55:82:12:87:a8:e8:c2:b5:b5:d0:86:a0:29:4f:ec:
ca:41:ed:75:d3:af:80:92:90:a8:9b:a6:f7:33:5f:a5:28:5a:
3a:f4:83:90:30:47:94:8f:40:75:78:22:f3:0c:eb:3f:d8:c1:
67:a0:95:2e:0f:5e:4d:f3:ab:b6:2d:3e:1f:3f:69:ae:4f:cb:
4c:26:b8:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:42:33 2025 by rpki-client