Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
File: XL1s2RrWpyhrIfZQn92fUP7nXYc.mft (raw, json)
Hash identifier: OcnxMvRjSrvxPhDkWk3jdOxx9KmkKRewTGPEakP4vP0=
Subject key identifier: 09:5E:15:19:90:06:E6:E2:6E:D6:CB:77:7E:69:FC:E8:7F:1B:67:8F
Authority key identifier: 5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
Certificate issuer: /CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Certificate serial: 0198D65FDBBF5A754C1A6E8F892F0629CA89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
Manifest number: 1577
Signing time: Sat 23 Aug 2025 10:01:02 +0000
Manifest this update: Sat 23 Aug 2025 10:01:02 +0000
Manifest next update: Sun 24 Aug 2025 10:01:02 +0000
Files and hashes: 1: LfsV7f6LxRRDF8DgEB39eI0JGcY.roa (hash: 57HPzdZv/cmkcVMLJmynj7OnbXGj1b4sWVjtj2VnRws=)
2: XL1s2RrWpyhrIfZQn92fUP7nXYc.crl (hash: sRW6QP+S0g5T1MLG28V+gjQayXATgFwPZdCJR9+JCSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:db:bf:5a:75:4c:1a:6e:8f:89:2f:06:29:ca:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Validity
Not Before: Aug 23 10:01:02 2025 GMT
Not After : Aug 24 10:01:02 2025 GMT
Subject: CN=095e15199006e6e26ed6cb777e69fce87f1b678f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1f:74:b4:e6:a4:07:4d:81:e0:d4:7b:e7:12:
a7:bf:68:0e:33:18:d0:11:85:37:24:34:89:0e:2f:
cd:c6:24:1f:da:08:03:46:b4:e9:9b:b3:7f:fe:dc:
66:89:b4:64:82:99:c4:1e:dc:0c:1e:6d:ed:a1:34:
86:29:9a:9a:27:12:4c:4b:df:48:3f:7b:6c:e1:de:
71:f1:7b:2d:a7:b0:7b:f6:27:d7:a3:9c:76:3c:c9:
e6:c7:33:eb:90:90:7d:40:70:d1:8d:4f:27:fa:ae:
11:2f:80:6d:3e:0b:6f:5b:05:5c:58:1e:32:58:58:
a8:16:8a:9a:b1:c2:df:1a:4f:4b:21:48:88:76:91:
a8:62:46:e9:18:d0:0e:41:2a:d6:51:76:75:81:c7:
fd:23:e1:b7:07:9a:3a:ba:00:b1:62:0b:e1:ae:e6:
bd:0a:83:12:a1:d1:64:38:e1:dc:3f:21:0b:8e:05:
7f:d7:00:79:47:4e:e6:bc:cf:0a:3f:b7:a6:ba:00:
67:b1:d6:72:1e:dd:55:6e:b3:54:1d:7d:9f:e2:08:
8b:dc:64:7e:6b:e0:13:7e:fc:2e:50:04:f1:6f:e8:
54:14:00:17:e6:ad:51:75:e8:a7:fb:ec:96:24:54:
8d:96:56:b3:a1:13:45:4a:4c:fd:93:78:65:6f:8d:
ac:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:5E:15:19:90:06:E6:E2:6E:D6:CB:77:7E:69:FC:E8:7F:1B:67:8F
X509v3 Authority Key Identifier:
keyid:5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:30:b9:07:52:16:3f:d6:f8:71:54:f4:0a:2a:08:10:5b:d9:
91:12:a0:06:f2:73:6f:11:42:41:6f:79:3e:aa:cf:56:16:f7:
00:c4:4a:2a:cd:ef:53:b2:bf:96:8f:c5:90:fc:bb:cf:6b:a9:
94:1d:e0:86:f8:fd:a8:a9:f9:82:06:10:eb:1f:34:cf:3c:9a:
38:f1:43:86:a2:47:cf:75:7e:75:e1:32:dd:f7:e6:0a:08:95:
08:a3:08:10:93:65:fa:dd:41:6b:75:89:79:62:df:fb:39:ea:
24:ee:81:39:7a:06:7a:46:6e:34:56:d0:ac:77:75:7f:3c:c5:
9d:11:2a:59:07:c9:b6:65:17:76:b0:31:b4:51:9d:e5:89:8d:
fa:eb:49:26:4b:cd:e3:b6:2a:b3:e9:4d:5e:5e:8a:ca:d7:fc:
72:88:e2:b7:e8:26:ed:cc:78:e3:52:43:e4:70:c8:a3:d7:51:
28:b3:79:02:8c:fc:cc:9c:35:48:66:4e:34:fa:60:2a:2c:9f:
e8:ca:8d:83:21:ad:cd:d8:50:b0:fd:92:6e:01:7b:e7:63:8c:
32:92:2b:d6:7e:6e:ce:72:5d:9f:75:42:5d:f5:36:43:d4:a0:
b2:84:a2:4e:42:44:6b:13:f2:4e:ba:a2:79:f3:f5:3f:2a:ad:
26:ad:27:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:00:38 2025 by rpki-client