Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
File: xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft (raw, json)
Hash identifier: OPU2xEo9BhG2pfsQ3pgmf9l/72KiZqBHy8ul07LdFOw=
Subject key identifier: 37:AE:9A:CD:9D:96:F0:66:4B:85:E0:50:DC:89:33:38:BE:4A:EB:A4
Authority key identifier: C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
Certificate issuer: /CN=c59c41daf0092b703bc059ba1353f071ed12199b
Certificate serial: 0198D54DEE2C6393C14AC32D0A1A0E335433
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
Manifest number: 15DC
Signing time: Sat 23 Aug 2025 05:01:50 +0000
Manifest this update: Sat 23 Aug 2025 05:01:50 +0000
Manifest next update: Sun 24 Aug 2025 05:01:50 +0000
Files and hashes: 1: cGueQe1h8duehogXBQfbjMf187c.roa (hash: SeygR9MEl7TBvHViQ7GiY7qErcMbLwgXcJ9lbMPWx3c=)
2: xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl (hash: dYBwjvujX0f+TwntfHF5C/F9AWIIC4kgRwg9ukLz7Ck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:ee:2c:63:93:c1:4a:c3:2d:0a:1a:0e:33:54:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59c41daf0092b703bc059ba1353f071ed12199b
Validity
Not Before: Aug 23 05:01:50 2025 GMT
Not After : Aug 24 05:01:50 2025 GMT
Subject: CN=37ae9acd9d96f0664b85e050dc893338be4aeba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:91:55:d7:bf:09:99:8b:9b:dd:94:05:e4:90:
75:d1:90:1c:99:eb:37:0a:1d:3b:03:44:f7:70:23:
3f:d8:ff:44:2a:80:68:48:b5:14:28:38:5c:f1:17:
60:da:7a:4f:61:e5:7c:e1:cc:00:dd:9a:55:61:63:
14:87:cf:94:32:bb:b0:6f:7f:9d:5c:d9:93:eb:a7:
b5:84:8c:3f:e0:f0:64:e3:dc:a2:33:f2:6e:12:f8:
9f:60:1d:e5:fa:5b:50:6a:3d:0e:0b:dc:39:63:6d:
fe:b3:6a:10:f5:78:e4:15:f0:c6:eb:86:ad:7a:22:
f5:70:dc:ca:cd:5f:be:96:af:80:0d:f6:4e:d3:86:
6a:2d:a6:8b:9e:d7:af:8b:da:2e:56:4e:6c:51:25:
8e:fc:f5:85:25:95:0f:4f:e2:21:8a:79:3a:b1:c9:
ec:47:d6:dd:06:f4:48:41:ec:96:b2:2d:95:78:b5:
ef:8c:86:43:30:63:16:05:0f:94:bb:6d:81:2a:0a:
72:4a:b5:b6:17:3c:f8:17:b0:40:3b:2e:53:9b:b9:
b3:39:3b:70:29:98:85:37:82:87:98:d4:30:80:01:
23:0b:5d:12:00:3f:cb:a3:19:58:7d:79:7d:c5:6d:
47:62:70:a2:20:b9:a4:39:8f:2d:11:8b:ab:3e:55:
10:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:AE:9A:CD:9D:96:F0:66:4B:85:E0:50:DC:89:33:38:BE:4A:EB:A4
X509v3 Authority Key Identifier:
keyid:C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:2b:a0:4c:a5:5b:39:17:d9:db:2d:a6:6f:14:8e:57:26:12:
33:b4:dc:ba:6c:b7:a5:11:1e:93:e0:9f:dc:4b:4e:60:58:0f:
a7:3f:b4:d6:46:12:bf:a9:57:a9:8d:c6:a4:4a:0b:26:02:50:
a0:34:4b:a1:85:db:37:40:bb:75:bc:86:60:fb:9a:3d:87:22:
e9:15:c3:1e:1e:8d:63:30:96:66:2f:47:f3:7b:b4:54:3e:36:
bd:c3:b2:f5:be:1e:40:ba:52:d1:de:f3:42:0d:94:98:57:55:
62:71:85:60:12:5e:21:d3:c5:33:e8:ff:9e:77:44:a1:b3:73:
dc:72:5e:4f:31:76:79:8f:2a:a2:5e:10:96:e6:39:ec:ee:98:
c8:7c:a7:c2:3d:92:b0:b5:b6:c1:7b:b3:e8:f4:77:14:88:85:
aa:02:60:20:53:1f:a0:b6:f3:1a:b7:30:23:fa:75:21:37:4b:
0e:bb:f1:4d:ab:7e:90:e0:61:2a:85:78:38:72:9f:e3:18:f5:
ed:1b:36:7d:ca:bb:fc:b1:e2:4d:1d:0e:26:01:8e:c7:f7:f0:
04:5f:59:1b:55:92:41:84:ff:38:4e:52:d2:b2:d9:0b:67:95:
ac:63:c7:c6:2f:f9:48:91:b9:32:50:d1:e1:72:5f:a2:9d:97:
80:36:0b:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:31:07 2025 by rpki-client