Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
File: XNhYOyEXQQSea7GalG2DGqvxGtM.mft (raw, json)
Hash identifier: CIT2D5KEPm/boypEEcyJnTlg23MwozXqVxinfBuquBA=
Subject key identifier: 52:F9:DE:71:29:50:F7:F8:B8:30:AC:66:82:C7:F5:82:AD:B1:A4:3E
Authority key identifier: 5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
Certificate issuer: /CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Certificate serial: 0198D54E9AC187CB0229936FC2025CDF15FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
Manifest number: 158B
Signing time: Sat 23 Aug 2025 05:02:35 +0000
Manifest this update: Sat 23 Aug 2025 05:02:35 +0000
Manifest next update: Sun 24 Aug 2025 05:02:35 +0000
Files and hashes: 1: XNhYOyEXQQSea7GalG2DGqvxGtM.crl (hash: HNNTu8hWGlCZyh0jXFPC/v03Afl/rudfh78EtKy+MPs=)
2: ir_nzSQYAsgPoPu8kRGYQzALm7U.roa (hash: TCpfNyg//XzFyrfc8SAsUbs4iWswcCSro2mnromAmQo=)
3: m3SzGaHBe-liV9k_hjkTUrNHXMg.roa (hash: 1IYirY3YGGwbakrzW31PvEOIIPUhpCQb3MNxcEFgdzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:9a:c1:87:cb:02:29:93:6f:c2:02:5c:df:15:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Validity
Not Before: Aug 23 05:02:35 2025 GMT
Not After : Aug 24 05:02:35 2025 GMT
Subject: CN=52f9de712950f7f8b830ac6682c7f582adb1a43e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:75:74:4f:5d:e0:e5:05:f9:1b:35:30:92:19:
3f:0c:f8:36:c4:e0:5c:0c:f1:ac:07:5b:64:d8:75:
e3:4d:38:73:05:7f:76:fc:c0:d4:f7:cb:38:ea:27:
a4:3f:f3:ca:60:76:f1:e9:a8:2d:25:15:46:3f:54:
d1:d2:e4:a1:f5:f5:17:fc:80:79:11:16:dd:d1:e0:
2d:9f:2e:cd:02:d4:95:01:bb:66:ad:17:8a:50:8e:
ff:1f:fc:05:74:a6:85:ac:d1:8f:b3:d2:71:53:df:
6c:dc:fe:3b:99:d0:5f:00:5f:5c:86:02:1c:63:d1:
04:0c:fb:04:94:fa:a3:d5:d9:aa:25:16:fb:81:8f:
ef:2f:5d:89:7a:e9:30:82:15:7b:86:6c:38:75:b5:
3e:45:b0:01:bd:ab:d0:12:dd:c7:5c:03:28:d5:63:
0b:e6:77:ae:53:cb:db:2a:d4:e9:ae:cc:f0:2b:e1:
06:ca:68:c8:10:54:6b:e9:da:61:4e:17:e8:8a:1e:
a5:05:c2:68:d6:76:25:02:74:4e:66:83:50:24:b1:
f7:16:45:5a:f9:cd:c3:9f:2d:9e:75:f4:2d:98:fb:
8b:5b:f1:aa:2f:4d:42:54:4f:95:91:f3:87:73:82:
22:71:6f:72:4b:8f:78:bf:96:e1:f9:74:0c:9c:fc:
b7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F9:DE:71:29:50:F7:F8:B8:30:AC:66:82:C7:F5:82:AD:B1:A4:3E
X509v3 Authority Key Identifier:
keyid:5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:20:a3:43:02:62:b4:9a:f1:00:76:3f:a8:8a:44:8f:b2:21:
bb:60:76:1c:72:a2:97:41:5e:a1:9b:63:d9:db:bd:6d:63:26:
ce:1f:cf:01:aa:97:f0:40:f3:26:93:cf:89:08:e5:cc:41:b7:
21:ea:50:6e:2f:32:80:53:ff:dc:9b:81:86:98:b1:06:0b:06:
00:43:5d:18:49:e3:e7:bd:a4:a7:57:39:ea:09:53:83:a2:87:
0d:bf:b2:e7:81:3c:78:6e:4b:2f:f7:44:e8:06:61:06:46:06:
30:8e:e7:46:e1:f3:c0:29:0b:37:5a:b7:39:0f:7b:d4:23:02:
d7:20:24:3e:59:7e:9f:fd:3a:82:40:14:cb:e3:32:8c:f7:0e:
5a:7f:a3:c1:01:cb:99:cd:4c:f4:0e:ac:a7:31:8f:54:cb:b0:
eb:ea:af:92:3c:94:f6:cd:b0:2a:47:61:b3:dd:5a:f1:20:89:
28:32:80:7d:b4:1b:77:73:66:f8:60:5f:94:35:c0:40:58:af:
92:b4:36:79:3e:db:35:bb:0b:ef:7b:f0:68:bd:9d:cc:7a:d0:
e1:a3:e0:b0:cd:fe:c2:f2:b3:f4:02:bb:5d:8c:6b:8e:c5:ad:
09:2f:85:c2:00:fb:f3:2e:29:32:b8:68:64:7b:49:7f:94:a6:
be:4e:8a:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTprBh8sCKZNvwgJc3xX6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZDg1ODNiMjExNzQxMDQ5ZTZiYjE5YTk0NmQ4MzFhYWJm
MTFhZDMwHhcNMjUwODIzMDUwMjM1WhcNMjUwODI0MDUwMjM1WjAzMTEwLwYDVQQD
Eyg1MmY5ZGU3MTI5NTBmN2Y4YjgzMGFjNjY4MmM3ZjU4MmFkYjFhNDNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3V0T13g5QX5GzUwkhk/DPg2xOBc
DPGsB1tk2HXjTThzBX92/MDU98s46iekP/PKYHbx6agtJRVGP1TR0uSh9fUX/IB5
ERbd0eAtny7NAtSVAbtmrReKUI7/H/wFdKaFrNGPs9JxU99s3P47mdBfAF9chgIc
Y9EEDPsElPqj1dmqJRb7gY/vL12JeukwghV7hmw4dbU+RbABvavQEt3HXAMo1WML
5neuU8vbKtTprszwK+EGymjIEFRr6dphThfoih6lBcJo1nYlAnROZoNQJLH3FkVa
+c3Dny2edfQtmPuLW/GqL01CVE+VkfOHc4IicW9yS494v5bh+XQMnPy3xQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFL53nEpUPf4uDCsZoLH9YKtsaQ+MB8GA1UdIwQY
MBaAFFzYWDshF0EEnmuxmpRtgxqr8RrTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE5oWU95RVhRUVNlYTdHYWxHMkRHcXZ4R3RNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC83Mjk4YWItN2I5Yy00N2FkLTkwODUt
NTA5NzRiY2RjMjQ4LzEvWE5oWU95RVhRUVNlYTdHYWxHMkRHcXZ4R3RNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC83Mjk4YWItN2I5Yy00N2FkLTkwODUtNTA5NzRiY2RjMjQ4
LzEvWE5oWU95RVhRUVNlYTdHYWxHMkRHcXZ4R3RNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQyCjQwJi
tJrxAHY/qIpEj7Ihu2B2HHKil0FeoZtj2du9bWMmzh/PAaqX8EDzJpPPiQjlzEG3
IepQbi8ygFP/3JuBhpixBgsGAENdGEnj572kp1c56glTg6KHDb+y54E8eG5LL/dE
6AZhBkYGMI7nRuHzwCkLN1q3OQ971CMC1yAkPll+n/06gkAUy+MyjPcOWn+jwQHL
mc1M9A6spzGPVMuw6+qvkjyU9s2wKkdhs91a8SCJKDKAfbQbd3Nm+GBflDXAQFiv
krQ2eT7bNbsL73vwaL2dzHrQ4aPgsM3+wvKz9AK7XYxrjsWtCS+FwgD78y4pMrho
ZHtJf5Smvk6Khg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:55:49 2025 by rpki-client