Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
File: XpNr6hsMOiCKuifYsQsnXkdN3iw.mft (raw, json)
Hash identifier: nkqW8YxkE3uWjlM0dxgMAademftCUYe5Ggn7dzYOPFE=
Subject key identifier: B1:25:73:5E:4F:4F:1E:D9:E5:5D:4F:C5:BF:3E:0D:E4:D2:C8:CA:A6
Authority key identifier: 5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
Certificate issuer: /CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Certificate serial: 0198D4A83DB12E0053A8260DC91BCA4DC267
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 02:00:52 +0000
Manifest this update: Sat 23 Aug 2025 02:00:52 +0000
Manifest next update: Sun 24 Aug 2025 02:00:52 +0000
Files and hashes: 1: Nw7X2LCFZpQsGc2GoXyrFKElkBk.roa (hash: y5oQHHhbifcLGWzUQAXcT2e3MvPfBEuWSolqQY+gsts=)
2: XpNr6hsMOiCKuifYsQsnXkdN3iw.crl (hash: 3+ZzXSaIqrhW1iStO3AqvBw2cf5xucIUIF3oi2ZLNkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:3d:b1:2e:00:53:a8:26:0d:c9:1b:ca:4d:c2:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Validity
Not Before: Aug 23 02:00:52 2025 GMT
Not After : Aug 24 02:00:52 2025 GMT
Subject: CN=b125735e4f4f1ed9e55d4fc5bf3e0de4d2c8caa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d3:a6:19:1d:3c:d9:89:9a:b3:69:d2:d6:97:
cc:e9:1c:0a:30:b5:89:83:e9:a2:52:b6:26:63:6f:
46:6c:ad:47:7e:88:0a:fb:af:ad:d7:e7:fe:73:65:
a4:79:63:29:38:79:cb:90:bc:01:97:3e:cf:bd:82:
1d:08:7d:e7:57:7e:29:6e:99:7a:81:c7:83:43:03:
a4:84:c7:c6:a5:e4:d2:76:02:9c:84:24:0c:eb:5e:
38:50:01:46:96:48:eb:29:31:94:cb:9d:d6:55:09:
4f:e0:1c:1a:e8:ae:9f:55:e2:4d:a7:f8:c9:3a:93:
22:65:c0:20:c1:72:c5:ab:f3:4e:43:01:43:2a:e9:
6f:1d:63:41:27:3e:4f:c5:7b:7e:13:22:c9:e5:af:
15:9e:ac:38:fb:61:9e:ef:3f:27:53:42:89:15:dc:
eb:59:5c:4d:a9:05:e6:be:d9:0d:de:1f:76:1e:7f:
5f:ea:02:07:c7:de:56:15:66:fd:b8:7d:e8:c3:4d:
23:e4:a3:85:56:2d:eb:b1:08:55:34:fc:0b:bf:2e:
67:e7:24:81:8d:8e:1e:b7:24:e7:8a:b3:53:43:5c:
f0:59:b4:5c:80:cf:4c:f2:1c:67:21:9e:c7:28:05:
6f:32:b1:6d:75:62:ff:d4:b4:41:ba:02:66:61:ae:
2a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:25:73:5E:4F:4F:1E:D9:E5:5D:4F:C5:BF:3E:0D:E4:D2:C8:CA:A6
X509v3 Authority Key Identifier:
keyid:5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:f3:31:84:25:b1:d8:74:48:fd:49:6d:e1:cf:8c:d4:1f:07:
38:d4:ed:d0:0b:5f:72:1d:2e:86:d0:10:6b:3d:06:9d:65:06:
74:9d:a0:e8:85:6a:50:c7:47:30:18:e0:1c:42:74:25:44:11:
ec:98:b0:ff:0f:99:9d:30:4f:db:8c:55:da:a4:dd:85:43:d8:
2f:38:1c:0b:1a:5c:70:62:80:ae:60:77:cd:12:ff:65:88:f8:
6e:75:02:38:f1:bf:0d:68:39:bb:72:25:b1:5f:ef:35:94:30:
bb:6f:e3:51:38:f1:37:34:fd:83:96:b3:4b:44:bd:15:d7:cb:
f9:4c:20:58:a7:ff:65:81:b2:f5:a7:75:5e:6a:5f:3d:fd:37:
13:95:54:fe:29:f4:1f:b2:05:28:c1:93:41:f8:24:ad:0e:7d:
76:c4:48:1f:7a:4a:17:01:4d:a7:92:21:ab:6e:c2:2d:1c:e5:
48:4e:8d:a5:61:90:cb:6b:f2:fa:77:c5:83:2f:a2:ab:61:01:
99:65:19:78:7c:95:44:23:91:15:47:11:0e:6e:51:a9:87:6f:
78:8e:51:55:b0:cb:d5:02:8a:15:a1:41:0c:b8:30:93:6d:9c:
3a:cc:9e:3b:ab:08:1f:68:24:43:c8:98:15:1f:4d:70:85:8e:
ac:a8:42:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:32:32 2025 by rpki-client