Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json)
Hash identifier: AO+SaH+MSbhz362NnP55/Fym9hz7x71KWKusHROlvv0=
Subject key identifier: 9B:5B:DA:F8:35:01:C4:F9:92:AF:B0:38:D0:12:47:BE:E8:A0:79:12
Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Certificate serial: 0198D4045AC2A3E86F17B4B3BCFF12D53A8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
Manifest number: 0B85
Signing time: Fri 22 Aug 2025 23:01:51 +0000
Manifest this update: Fri 22 Aug 2025 23:01:51 +0000
Manifest next update: Sat 23 Aug 2025 23:01:51 +0000
Files and hashes: 1: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: amnDdrVzbAtYiotbzxw9bHx9xIWHvIOrQKDBktt1U54=)
2: _GYD1AJUDNposAkJpRDfG9xq6dk.roa (hash: afY5Qh0XccEeUiEofkFyRBQd+JnAG3mTgUzmW0se7YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:5a:c2:a3:e8:6f:17:b4:b3:bc:ff:12:d5:3a:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Validity
Not Before: Aug 22 23:01:51 2025 GMT
Not After : Aug 23 23:01:51 2025 GMT
Subject: CN=9b5bdaf83501c4f992afb038d01247bee8a07912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:50:1a:f9:f2:29:c9:b6:e6:d4:19:12:6e:03:
3f:be:22:86:19:85:7e:24:f3:f6:82:f6:cb:82:87:
ae:48:ec:ac:92:ef:1d:db:5f:84:1f:b6:6e:37:96:
23:60:d2:66:cb:79:cf:80:c7:9e:85:aa:1a:e0:db:
ff:4b:51:e9:98:f6:62:7d:80:b4:96:d4:a6:54:bb:
77:b4:4d:ac:40:a9:79:a3:07:18:00:22:12:d6:16:
97:b7:af:e6:d6:86:2d:4b:5b:3c:1c:ff:88:1b:a1:
d9:5e:2f:0c:7a:b4:80:19:84:32:58:46:a0:78:40:
b4:9e:36:e7:5c:30:09:6f:3d:0b:bc:88:9e:2e:bd:
02:1e:31:26:38:60:44:3d:75:72:eb:6e:2b:02:b6:
48:56:f8:45:4c:05:58:cc:e4:88:2b:44:fb:81:a6:
5f:3f:4d:30:39:a4:9d:ae:53:02:ab:96:f5:e3:cf:
42:7e:6e:46:a3:0b:9e:69:74:83:f2:6b:87:44:b3:
4f:b1:50:b1:94:ac:be:bc:fa:f1:6f:f9:9d:49:ae:
f5:5c:e3:39:b7:3d:d4:31:96:4c:8c:be:30:1e:33:
4b:16:13:df:42:82:30:51:23:84:7d:fb:70:87:a8:
ff:e0:ea:21:5a:63:5f:b7:1c:fc:75:f4:b4:76:c8:
b4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:5B:DA:F8:35:01:C4:F9:92:AF:B0:38:D0:12:47:BE:E8:A0:79:12
X509v3 Authority Key Identifier:
keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:98:34:7e:c0:a7:c8:57:4d:e4:e0:a8:f9:89:2d:f6:a2:98:
31:84:f7:1d:f6:5e:0c:7d:81:1f:f5:7e:ad:2f:64:36:3a:55:
63:a5:72:cf:55:6e:c6:b1:b5:a7:16:7e:15:86:75:04:4f:69:
c0:a5:e0:4f:d2:fa:e6:51:0f:38:26:16:bd:6a:b4:1b:3f:fe:
d8:ac:fd:63:4b:60:b4:ec:0d:d1:20:f7:47:8a:30:05:5a:b6:
03:3b:24:48:f4:87:1c:2d:49:3c:cb:43:65:7f:c9:45:7a:f6:
a1:03:85:04:89:62:0a:8e:46:59:0b:7c:2f:4d:64:c6:ea:ec:
45:98:69:bf:55:54:be:ba:90:15:c3:bd:09:14:58:b4:04:e3:
d5:4d:7a:bb:80:15:9b:a9:08:c6:07:87:5b:36:e7:46:0b:98:
e5:80:7b:48:b7:40:d7:d4:8e:e2:c4:45:ca:f4:34:a1:41:e8:
56:a5:40:e5:89:bb:22:4b:9f:6b:00:ca:82:a1:fa:47:93:fc:
ee:b4:1a:07:ef:85:4c:20:6b:c6:61:0f:38:1b:5e:d6:b1:1f:
33:9a:57:b3:39:ac:aa:56:d5:77:b5:50:dd:79:ab:81:46:2e:
61:b5:6d:95:5c:68:b4:c0:20:30:60:d8:0f:c4:2d:be:b2:1d:
bc:e3:e2:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUBFrCo+hvF7SzvP8S1TqPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNzkxYTFiYTA5YjlkNGQzNThlZjA1YWFkZWQ3ZjBlODVl
ODgxYjYwHhcNMjUwODIyMjMwMTUxWhcNMjUwODIzMjMwMTUxWjAzMTEwLwYDVQQD
Eyg5YjViZGFmODM1MDFjNGY5OTJhZmIwMzhkMDEyNDdiZWU4YTA3OTEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVAa+fIpybbm1BkSbgM/viKGGYV+
JPP2gvbLgoeuSOysku8d21+EH7ZuN5YjYNJmy3nPgMeehaoa4Nv/S1HpmPZifYC0
ltSmVLt3tE2sQKl5owcYACIS1haXt6/m1oYtS1s8HP+IG6HZXi8MerSAGYQyWEag
eEC0njbnXDAJbz0LvIieLr0CHjEmOGBEPXVy624rArZIVvhFTAVYzOSIK0T7gaZf
P00wOaSdrlMCq5b1489Cfm5GowueaXSD8muHRLNPsVCxlKy+vPrxb/mdSa71XOM5
tz3UMZZMjL4wHjNLFhPfQoIwUSOEfftwh6j/4OohWmNftxz8dfS0dsi0+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJtb2vg1AcT5kq+wONASR77ooHkSMB8GA1UdIwQY
MBaAFFx5Ghugm51NNY7wWq3tfw6F6IG2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9hMjdhMDMtZjY0NS00NjJiLTk0ZTct
NjZjNWFlOGEzNmI0LzEvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC9hMjdhMDMtZjY0NS00NjJiLTk0ZTctNjZjNWFlOGEzNmI0
LzEvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkpg0fsCn
yFdN5OCo+Ykt9qKYMYT3HfZeDH2BH/V+rS9kNjpVY6Vyz1VuxrG1pxZ+FYZ1BE9p
wKXgT9L65lEPOCYWvWq0Gz/+2Kz9Y0tgtOwN0SD3R4owBVq2AzskSPSHHC1JPMtD
ZX/JRXr2oQOFBIliCo5GWQt8L01kxursRZhpv1VUvrqQFcO9CRRYtATj1U16u4AV
m6kIxgeHWzbnRguY5YB7SLdA19SO4sRFyvQ0oUHoVqVA5Ym7IkufawDKgqH6R5P8
7rQaB++FTCBrxmEPOBte1rEfM5pXszmsqlbVd7VQ3XmrgUYuYbVtlVxotMAgMGDY
D8QtvrIdvOPiKg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:12:22 2025 by rpki-client