Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
File: XWlT20hASwxmoV8Npu-n-sCpNp4.mft (raw, json)
Hash identifier: lLMGNKGlAbODxZpSKhJCGuPo2Z8KEEue3ACx4z+lymU=
Subject key identifier: 87:C9:72:AE:43:67:D7:B6:60:87:4A:2F:4E:C4:08:E1:D8:5D:29:69
Authority key identifier: 5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E
Certificate issuer: /CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e
Certificate serial: 0198D5F17ABC1EC2AD440722AD104AB65AFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 08:00:29 +0000
Manifest this update: Sat 23 Aug 2025 08:00:29 +0000
Manifest next update: Sun 24 Aug 2025 08:00:29 +0000
Files and hashes: 1: XWlT20hASwxmoV8Npu-n-sCpNp4.crl (hash: XIlrXNxajEHRVmX/0h6wwh6FR9VCAHBfKU0SRSgjRQw=)
2: hC0t1cqhdoh6iyJ3cpDGc1N-nWg.roa (hash: PxIEeNMR+krZxWibCKKwK2CkVaApOYKXyBnr/5vAmac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:7a:bc:1e:c2:ad:44:07:22:ad:10:4a:b6:5a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e
Validity
Not Before: Aug 23 08:00:29 2025 GMT
Not After : Aug 24 08:00:29 2025 GMT
Subject: CN=87c972ae4367d7b660874a2f4ec408e1d85d2969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ed:fb:53:a3:11:40:fb:bf:0d:80:56:23:52:
d7:b6:81:af:64:e2:49:56:cb:14:f3:85:17:d9:59:
fc:62:3d:b6:b0:63:53:ba:98:c4:c1:3d:cc:b7:f2:
fa:65:0a:91:e8:45:70:cb:0c:3c:ca:99:1c:23:12:
ca:ce:bb:7e:48:8d:36:f4:84:8e:40:b2:e7:2e:21:
ff:91:1e:0d:40:90:a6:3e:a2:7d:df:3d:c9:6e:9a:
47:bb:f8:b7:c7:c7:00:45:db:16:be:89:94:15:a4:
36:43:d9:fb:03:55:22:0a:5a:d6:bb:af:42:30:35:
68:1d:b7:26:bc:98:c1:37:9c:d5:43:b7:c1:29:d3:
9b:5f:04:fb:dd:3a:53:3c:14:7f:6b:0f:f8:73:d0:
9f:74:4d:f0:e9:32:71:c7:e1:c9:70:50:ec:f2:05:
86:70:97:cf:21:90:03:91:c2:b2:89:1d:6a:43:e3:
66:86:3f:4e:57:d4:b1:bc:ca:b2:56:32:fa:5a:a8:
2b:07:84:7f:49:d2:4e:f9:0c:3c:13:8f:75:51:fb:
82:98:d7:34:de:61:b2:6c:87:07:13:dc:77:39:f1:
6f:a3:0d:61:1b:f1:5b:8e:14:4c:a2:7d:05:bd:75:
96:50:8b:a2:5b:bf:a6:11:a7:b4:1e:cf:02:84:ec:
9c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C9:72:AE:43:67:D7:B6:60:87:4A:2F:4E:C4:08:E1:D8:5D:29:69
X509v3 Authority Key Identifier:
keyid:5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:dc:2b:fc:a0:cf:6e:ee:06:49:fd:41:52:15:d4:9d:73:d0:
80:78:cd:65:a3:37:cd:96:50:70:a8:41:8c:94:05:7e:e8:60:
63:c0:59:89:e9:80:7b:fe:4f:8f:90:f7:96:c1:83:34:a6:43:
1d:94:6a:02:2c:99:2d:8b:12:41:3c:b3:03:8b:85:ff:19:98:
f3:51:d4:92:91:80:43:e2:ea:5c:55:56:be:98:d2:92:53:3e:
72:b2:8a:a7:d5:d1:d7:89:d1:73:e3:b4:53:99:fe:eb:ea:70:
db:3b:36:ed:e5:4d:66:44:8c:76:15:4c:0b:b8:20:f3:1a:bb:
3a:51:ec:1a:9d:c9:27:df:a7:22:96:36:9d:a9:25:23:9f:98:
43:19:61:ed:f2:f6:e1:ce:84:86:1f:ad:1f:7a:0c:b3:c1:67:
e4:cc:ff:2a:79:db:6f:4f:c6:e8:ed:b0:bf:e6:f8:3a:cc:53:
d6:0d:53:0d:d5:34:f8:32:d5:ec:3b:09:d5:be:b9:b8:0c:a3:
5c:a6:5e:ee:e7:da:d2:c1:1b:ad:69:ac:8f:98:72:fb:fc:72:
4a:9c:4d:91:f8:8b:17:cd:a6:58:c2:5c:47:f6:1d:13:4f:3e:
3e:44:bb:1b:8e:2e:a1:4f:e4:e1:42:36:13:c5:12:bb:6d:34:
b5:4c:c0:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:00 2025 by rpki-client