Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json)
Hash identifier: BOESlvopZx1c6i1Rd/JTz9DHx8R7sDZXp05pU7X+dD4=
Subject key identifier: 26:84:9F:5D:EA:03:06:B6:69:42:60:90:39:4E:7F:B3:90:29:2B:27
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 0198D4A833D5D083BD146087301EA2517C8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
Manifest number: 165C
Signing time: Sat 23 Aug 2025 02:00:49 +0000
Manifest this update: Sat 23 Aug 2025 02:00:49 +0000
Manifest next update: Sun 24 Aug 2025 02:00:49 +0000
Files and hashes: 1: 4SxEa8qHfL0SdS-yvynVjEWywI0.roa (hash: ed273NQ5dggxiwmHaUzsS7LYiMx/0KEG21fx026Qijc=)
2: 57zAUxjN80d98_hrUg6wNGuh-LQ.roa (hash: qIcET8+9I+XlvyugPkuqmk4yArAibC2n8LmahOzKwL0=)
3: D8TVIpbhKokDS9trBBqJHsFT1UQ.roa (hash: buVD8eTr7vS6C640rVcFTDAjpCVFYAxsjVTpolrqfNA=)
4: V-G5n9JBF2fuQBXkHR943IM1SJk.roa (hash: PktwOhATCRnu/fMCAW8Roob3cNUQ8DCkE9sG1tOGfQ0=)
5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: rjMvx2SMYSQNqK0Jvwjh5CKhNOmLygoAY0qETGDVTqo=)
6: rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa (hash: 65NB0UfxYYmSvSLb5gS9zELjlvrzXWC3McdcTIR7Hxk=)
7: tIc5dJ9row9Jpwnimlce4tYbp44.roa (hash: ouwAo45RW/R/dO1EFuBCaboweb6Z3RjFTDf5e9DgnQU=)
8: xv_S9Q_lixnhLdeB2FeY6-83q40.roa (hash: fpHqpuP8WhUb/qgqx71BT4D9l/LEKw+tKbvv5QvJ1WU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:33:d5:d0:83:bd:14:60:87:30:1e:a2:51:7c:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Aug 23 02:00:49 2025 GMT
Not After : Aug 24 02:00:49 2025 GMT
Subject: CN=26849f5dea0306b669426090394e7fb390292b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ed:0c:40:40:f3:b7:6d:c1:46:93:46:26:88:
e8:c8:2c:05:dc:fa:ca:ca:eb:ff:65:3e:fe:89:8c:
3c:7e:2f:0d:3a:e4:9b:f0:9d:84:7f:1f:6d:e6:5d:
0e:71:34:5f:c8:b5:ae:dd:87:21:ae:d1:4b:df:40:
72:5c:a4:32:5f:17:3e:2c:e2:0a:2f:28:4f:84:40:
fe:02:b3:53:26:00:07:03:75:9e:1f:1e:cc:1d:03:
b2:e2:b9:7e:6a:56:c5:f5:09:57:c6:41:b4:28:31:
ac:1d:92:f5:00:59:d5:7b:93:72:d8:be:d6:c1:ec:
3a:cd:9f:91:55:55:0a:fc:53:41:21:0d:3b:12:3a:
00:8b:5b:56:5e:b7:14:a7:7d:a8:90:88:66:b5:e7:
c4:69:c5:c6:9d:a4:18:64:0b:d4:40:82:94:cd:56:
9d:c4:b9:ac:8d:0d:01:82:d7:e6:9a:c0:56:d7:8c:
c7:85:97:de:1e:dd:ce:7a:9d:ae:12:26:20:27:dd:
b2:b6:2e:a4:01:1e:90:14:cb:55:1c:79:9f:4a:f9:
72:12:c2:59:e6:d4:21:ef:3a:7c:72:16:a4:2a:3c:
af:18:5a:31:88:d7:38:a7:2a:8a:7c:b1:6e:5b:7e:
85:30:40:01:08:15:c2:cb:b1:af:46:41:76:1d:1a:
6f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:84:9F:5D:EA:03:06:B6:69:42:60:90:39:4E:7F:B3:90:29:2B:27
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:39:90:ab:76:7e:b0:cc:f6:fa:6f:c3:71:54:b9:6b:40:82:
34:20:26:8e:55:5f:67:a9:df:b4:2b:39:98:40:6b:36:f0:22:
d5:fd:8c:ac:2c:a5:e2:a8:9d:ac:09:6e:89:e8:a0:b4:a9:7a:
47:7a:28:f7:9d:02:2c:5b:b4:22:9a:e1:90:1c:12:ff:59:af:
84:24:df:44:e2:4f:45:b4:a5:e2:1d:4e:b4:99:67:86:ff:00:
e1:a0:f2:de:86:54:ec:db:b6:45:c0:6b:32:16:0f:7e:a9:c0:
d3:0d:6a:f6:c9:1e:c3:e8:81:9e:e5:5a:89:6e:36:0f:94:21:
40:38:52:48:53:c0:54:a9:02:5e:76:cc:9f:43:ae:1d:22:77:
85:b4:7c:45:84:73:67:7a:aa:0a:9c:c6:9e:1d:6c:c4:0f:d3:
5c:3e:4d:57:88:f1:15:e2:00:54:8c:98:93:59:67:7b:4a:70:
0d:64:df:85:f2:d4:41:da:a7:f2:1b:d8:56:31:55:81:5a:0b:
d7:1d:be:aa:66:7c:49:22:55:cd:0e:46:c1:9a:88:7b:a1:81:
e8:65:b0:f3:39:6b:e7:74:45:b8:9a:00:93:8c:98:c2:77:3a:
e8:6c:f5:53:c0:e5:51:17:b8:43:db:13:ca:11:ea:df:5e:80:
3c:ac:b6:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:21:42 2025 by rpki-client