Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
File: XTJb79i36F40cQQgbYwKuKbg-04.mft (raw, json)
Hash identifier: 4/2zKc8fuuxb62oYfau5EBCD9OW2TTlKiNQrxOv56+8=
Subject key identifier: CD:4B:64:DF:B4:37:0D:50:E8:9A:21:C1:26:D0:2C:52:A2:85:6D:7C
Authority key identifier: 5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
Certificate issuer: /CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Certificate serial: 0198D51632E6DEB43CC8A6DD0841C6CCA9A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
Manifest number: 1423
Signing time: Sat 23 Aug 2025 04:00:58 +0000
Manifest this update: Sat 23 Aug 2025 04:00:58 +0000
Manifest next update: Sun 24 Aug 2025 04:00:58 +0000
Files and hashes: 1: 1-odAb-HXEiGLPx5y_PADnZMBf0g.roa (hash: 4z0B6lGqXvXr1EDmabK3iy+SlaX1WPh7Y1Hx0zBd0iM=)
2: XTJb79i36F40cQQgbYwKuKbg-04.crl (hash: bAhPbu90F30KNifJBtpz4lmL8lHAgFUY6nHjBsuylfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:32:e6:de:b4:3c:c8:a6:dd:08:41:c6:cc:a9:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Validity
Not Before: Aug 23 04:00:58 2025 GMT
Not After : Aug 24 04:00:58 2025 GMT
Subject: CN=cd4b64dfb4370d50e89a21c126d02c52a2856d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5a:b1:77:b0:20:3c:94:01:1a:a0:2f:0a:cc:
3f:a0:36:96:54:10:11:61:69:d8:03:24:e7:16:d2:
ef:9c:b3:a9:d2:34:79:e1:ca:29:79:e5:e4:a7:6d:
fd:04:f4:99:6c:82:76:4f:ec:4b:d1:a6:6c:20:db:
70:49:63:da:e9:cc:6d:5d:4f:82:d9:ef:0a:1a:63:
00:11:76:be:80:e9:15:70:81:6d:15:be:08:99:6d:
e3:5e:8d:b6:b5:5c:97:d5:11:b8:3c:6b:0a:39:e0:
90:1e:9a:49:96:1b:1e:ea:6e:04:4e:03:64:f8:bc:
68:a4:8b:42:7b:4c:cf:5d:a2:fb:9c:c4:6e:47:38:
da:c6:29:da:43:3a:79:6f:c1:b6:49:3e:fa:fc:a4:
f8:9f:1b:44:7f:ac:e1:98:93:6e:18:a7:d6:8f:48:
a4:04:a6:4e:61:98:07:7e:cb:91:c1:0f:5b:0f:b7:
20:f2:4f:98:5f:f5:a8:b9:a5:b1:d5:99:43:1e:c2:
1f:f9:3b:4b:15:59:53:cb:b4:ae:39:0b:18:53:03:
bb:93:e7:5a:3e:99:c7:be:6f:42:7a:4c:55:67:d0:
49:cf:3c:f4:cf:0b:66:7c:06:78:40:69:d9:d6:63:
4d:56:e7:14:23:81:2a:36:84:43:cc:a4:66:59:ea:
50:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4B:64:DF:B4:37:0D:50:E8:9A:21:C1:26:D0:2C:52:A2:85:6D:7C
X509v3 Authority Key Identifier:
keyid:5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:92:b7:71:78:82:45:08:1e:c1:89:82:70:ef:ad:3d:f1:72:
f8:fa:f4:f0:f7:bb:31:12:00:d1:73:2a:fd:bd:aa:bc:61:c6:
46:9b:8d:23:3f:4b:9c:fb:69:0a:e8:8b:a2:20:e4:0d:45:d6:
fb:40:47:76:e3:3c:a8:01:07:11:31:55:5a:a6:26:60:08:9c:
10:92:2f:2e:fd:99:a7:57:49:df:4e:38:d3:bc:82:d0:c1:26:
60:e5:b3:78:07:67:a5:9b:bb:48:45:d7:41:57:fa:5b:68:66:
e0:0d:08:c6:53:35:d7:f3:36:13:06:a8:97:50:b2:7b:e8:e5:
6b:4b:5e:56:84:25:e3:72:e4:3a:17:9e:eb:e5:a5:39:4d:bf:
0e:e9:8f:e0:23:2c:d9:30:d8:b6:cd:af:59:98:20:06:e5:08:
5c:31:1f:cb:f9:1a:93:e0:a1:fb:2e:84:d1:fc:82:a1:8e:eb:
c8:06:cb:0e:eb:62:b7:6d:42:33:7d:a9:d9:65:11:b4:43:41:
dd:e4:7a:2d:ce:a4:b7:e5:e7:dd:03:8b:8d:44:6f:11:53:64:
d4:81:3e:39:e8:75:13:49:14:7e:92:f5:80:58:6a:f8:28:b7:
6f:70:ac:bd:a0:e5:1d:7d:60:07:61:cf:a2:a6:33:ef:3a:7b:
9c:9f:6a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:03:15 2025 by rpki-client