Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
File: XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft (raw, json)
Hash identifier: Bas8SUjjdRHeT81tBn5pHlvneidF3U66Ook55A0bMFE=
Subject key identifier: 23:39:80:D4:03:31:02:72:AB:44:7C:3E:BD:3D:7F:9D:27:43:E6:DF
Authority key identifier: 5C:02:F9:81:BE:E7:95:21:A3:04:B6:8F:66:7F:EA:ED:81:EA:3F:F6
Certificate issuer: /CN=5c02f981bee79521a304b68f667feaed81ea3ff6
Certificate serial: 0198D4E0A50A2DCB0BBC43BC9B4CE0952158
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
Manifest number: 10A2
Signing time: Sat 23 Aug 2025 03:02:28 +0000
Manifest this update: Sat 23 Aug 2025 03:02:28 +0000
Manifest next update: Sun 24 Aug 2025 03:02:28 +0000
Files and hashes: 1: XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl (hash: kq0rf4vD8SaJ5dcC7dGgon65fkArciNEEY/4fpdGCHg=)
2: o5qKOTRfTPnYThdIYO9xUeKi2sc.roa (hash: EOStnDBrp4FRFcFGDjBhhWwMtuAGb36N8+2XArtelwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:a5:0a:2d:cb:0b:bc:43:bc:9b:4c:e0:95:21:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c02f981bee79521a304b68f667feaed81ea3ff6
Validity
Not Before: Aug 23 03:02:28 2025 GMT
Not After : Aug 24 03:02:28 2025 GMT
Subject: CN=233980d403310272ab447c3ebd3d7f9d2743e6df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:33:c8:dc:e2:22:77:59:bc:02:ab:28:db:14:
aa:f3:9e:ae:58:8a:12:cf:7a:15:04:98:58:19:ba:
ab:d6:20:8e:b4:16:8b:4b:2f:71:4c:b5:09:3f:6b:
c7:82:02:fd:bb:61:53:e0:dd:ce:e3:94:a3:21:96:
97:cf:2c:32:7a:20:d0:d4:f4:d7:3a:d0:6a:ff:62:
ba:11:ba:c2:92:2b:f9:2c:0c:49:b9:fd:de:85:55:
da:bc:7e:74:b6:b6:50:b8:7b:d2:22:81:e8:2c:ea:
cf:4d:c8:88:1d:88:b0:94:de:b0:8b:cf:8a:b9:24:
97:cb:23:2d:21:a5:9c:ae:45:40:f9:4a:a5:8e:6d:
65:9b:ea:e1:8c:a4:03:53:3f:54:58:99:2b:5d:be:
f4:ba:88:aa:73:ec:38:47:4b:f5:80:71:42:c8:f4:
fa:a6:ec:af:a7:80:f5:0d:7f:49:d6:b5:97:1a:c1:
0a:58:0f:a4:80:5f:08:b3:4d:a7:90:0c:cd:0f:76:
6b:6c:05:1b:d8:49:5b:cd:49:51:14:f9:a2:22:cd:
51:11:eb:13:62:c5:e5:8d:00:45:b2:78:56:ba:b9:
7a:53:5a:49:06:17:b0:a7:0e:88:7e:6f:c5:0d:9e:
22:27:5b:86:d7:31:6b:dd:8d:e3:4c:58:19:bc:cd:
51:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:39:80:D4:03:31:02:72:AB:44:7C:3E:BD:3D:7F:9D:27:43:E6:DF
X509v3 Authority Key Identifier:
keyid:5C:02:F9:81:BE:E7:95:21:A3:04:B6:8F:66:7F:EA:ED:81:EA:3F:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:d4:8f:23:ba:25:be:77:7b:1b:5a:27:74:17:b2:e3:22:c2:
f8:c4:a0:47:96:6c:ce:87:b9:2e:6d:22:a1:b6:7a:fa:fb:c4:
25:f1:ca:b1:06:45:97:e9:ba:a3:99:bb:95:50:90:27:84:35:
32:46:63:2f:7f:03:57:a0:a2:6c:8f:dd:d5:5d:3b:f9:35:36:
75:c1:0a:1a:aa:32:9f:8d:96:02:be:42:a7:40:61:82:f6:af:
3b:52:d3:c4:f5:2a:cf:82:e0:bc:59:34:3b:7c:12:a2:bf:2e:
de:6a:fc:d1:b6:68:2c:57:f5:e2:fa:91:a0:5c:ac:88:e5:cd:
4b:16:78:31:96:4a:cd:a5:ef:47:d8:be:fa:c0:af:39:fd:3c:
63:75:02:16:dd:83:f3:0d:5a:f2:b3:45:be:99:91:f4:60:41:
e2:4f:5e:b8:d8:92:b5:79:ed:86:dd:94:58:4e:18:17:34:f5:
a8:e2:e5:81:04:1a:dd:eb:d8:e9:9e:e2:b7:9d:45:9a:ff:f1:
cb:ce:c1:d3:a3:18:87:68:f2:73:31:fa:f3:85:06:12:ce:39:
c3:3c:77:24:71:b4:79:f2:10:33:f9:37:a2:8b:09:0a:49:9d:
88:b1:ae:4f:76:ed:6c:a4:80:ca:91:ba:39:a5:29:9f:b1:0a:
fe:57:d6:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:21:08 2025 by rpki-client