Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
File: x0at2Nr-mfan14fUR5VFpkb23tg.mft (raw, json)
Hash identifier: CFzN2C0dPD036sU7W+DH1ABFu1vmU6IMqpdY2t6/eQA=
Subject key identifier: 8A:32:97:A1:55:FA:C9:FB:2B:25:F4:B8:33:79:BF:8D:BF:05:C8:42
Authority key identifier: C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8
Certificate issuer: /CN=c746add8dafe99f6a7d787d4479545a646f6ded8
Certificate serial: 0198D73B4E39F99A9CBA890215B98F88E2C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 14:00:44 +0000
Manifest this update: Sat 23 Aug 2025 14:00:44 +0000
Manifest next update: Sun 24 Aug 2025 14:00:44 +0000
Files and hashes: 1: 5ew0AHvlVZKk-XGMQ-7_VQCyPko.roa (hash: r01XfwbxbtnFEz4LgMmHMoPfMeBX2hjKhEb9/b2NI+4=)
2: x0at2Nr-mfan14fUR5VFpkb23tg.crl (hash: i3bjtsJXHzXro640jIkjcQCED4mXh5RTqg/LlToKfUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:4e:39:f9:9a:9c:ba:89:02:15:b9:8f:88:e2:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c746add8dafe99f6a7d787d4479545a646f6ded8
Validity
Not Before: Aug 23 14:00:44 2025 GMT
Not After : Aug 24 14:00:44 2025 GMT
Subject: CN=8a3297a155fac9fb2b25f4b83379bf8dbf05c842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9d:8c:c1:9c:69:57:9b:1c:55:f9:9e:d8:17:
93:74:a1:a5:ed:bf:7b:09:07:dd:6b:e5:0b:2e:36:
68:7c:d0:90:54:57:83:30:bf:2a:4f:11:22:9f:86:
d6:33:3d:f2:c4:b2:a0:35:e0:b2:31:50:6c:ea:ae:
20:dc:b2:a5:f6:ed:de:bb:71:45:31:3a:6a:53:d3:
4f:54:c3:27:f7:d7:2d:c0:96:8b:0a:72:85:d1:8b:
38:39:33:cc:2b:83:17:65:c3:9a:33:47:5f:87:85:
e7:5f:f6:9d:c6:6d:b3:aa:7c:eb:3b:d6:5e:57:3d:
5c:57:39:9d:fa:ad:22:9f:ef:b4:a1:bf:bc:c1:4b:
88:b0:04:63:30:52:99:1e:d5:e6:03:60:e4:89:f9:
dd:61:fc:82:ab:04:06:e0:ba:8c:e2:a8:6d:71:f0:
b9:56:ff:21:17:d3:26:b8:81:8c:ee:60:47:c7:99:
bc:b3:83:90:cd:e1:92:f3:34:e7:24:d3:39:5a:91:
11:9c:7c:f3:08:ef:1d:4e:85:24:3d:8c:1d:84:ae:
f2:4b:5f:4f:bb:50:8b:02:6a:fe:12:7b:49:92:14:
28:31:31:b5:88:84:df:7f:9c:59:8b:fc:ef:ff:5d:
15:90:a0:b5:23:18:26:14:95:27:e9:07:1f:71:0d:
ea:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:32:97:A1:55:FA:C9:FB:2B:25:F4:B8:33:79:BF:8D:BF:05:C8:42
X509v3 Authority Key Identifier:
keyid:C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:03:b1:bc:23:c8:43:7e:e6:e4:f1:50:25:64:e4:ad:c0:7f:
58:4e:37:7e:5f:32:c3:ca:79:a5:4f:66:d6:ab:f9:a3:d4:8b:
ce:26:fe:68:7b:24:fc:48:a1:c6:2b:22:d6:27:23:f6:1d:c7:
e8:b9:db:58:69:98:d3:34:b4:bd:49:ef:c0:27:ac:42:7f:c5:
60:93:f1:5a:00:e6:a1:e3:28:8f:ba:5e:df:84:21:3f:7b:af:
ed:eb:f4:b5:75:fa:48:48:ed:41:60:76:db:b4:e5:2a:1e:5a:
03:10:bb:8d:00:a3:99:29:16:e9:79:91:4f:1e:a9:ef:eb:81:
98:59:2f:fb:34:d0:fa:fd:30:a3:c6:04:cf:b7:b9:94:4e:89:
47:0a:71:d8:b9:43:c4:c4:cd:8c:f0:27:81:67:2c:a5:ee:66:
62:d0:03:b4:f7:34:e1:f1:21:4d:c3:bf:13:6b:2e:bf:30:c0:
fc:a0:9e:46:f5:4a:6f:19:b3:f7:8a:e9:7f:a1:bb:4d:16:3d:
c3:c1:40:b5:31:e9:c8:60:b6:e4:88:04:bb:94:dc:6d:23:64:
21:7c:23:f2:82:25:9a:d1:33:e0:f8:be:f0:89:1c:66:6d:ea:
e1:71:45:3e:77:71:73:58:92:9c:42:d7:44:6b:88:f3:f7:a8:
1b:b6:8e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:02:03 2025 by rpki-client