Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: uPw4Zejn1Gzas10BNlM37t01CEuOzC5YjkGN9NoIY1k=
Subject key identifier: 57:3A:D0:12:B7:AF:0C:FC:D2:F2:8E:18:63:73:7E:6B:EB:35:58:F3
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 0198D473BC23773131709EBF1AE9D5B17E21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 0547
Signing time: Sat 23 Aug 2025 01:03:31 +0000
Manifest this update: Sat 23 Aug 2025 01:03:31 +0000
Manifest next update: Sun 24 Aug 2025 01:03:31 +0000
Files and hashes: 1: S6aYdrXE8VeCcP5w8D7hhhcOGoc.roa (hash: csN/l/mC6C7LyFwDFQUEKU3wX0HgZWqjImlEztzBO3Q=)
2: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: V7qXqvq7twBUtFhwG+PVYl4ND1FxMIs5CM2AzlhihiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:bc:23:77:31:31:70:9e:bf:1a:e9:d5:b1:7e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Aug 23 01:03:31 2025 GMT
Not After : Aug 24 01:03:31 2025 GMT
Subject: CN=573ad012b7af0cfcd2f28e1863737e6beb3558f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e7:1c:dc:10:b8:0b:b7:69:ae:a2:1f:0c:2d:
64:c7:72:6e:43:38:9a:a2:a8:b0:19:df:5a:71:21:
c3:c1:7f:3b:35:ba:b4:92:f6:9c:9c:63:56:33:cf:
95:4b:13:5d:1c:4b:ff:25:42:da:34:07:f3:3e:3d:
ad:fc:eb:d9:39:b3:fb:dc:bd:8c:ac:b2:09:e1:93:
92:75:4c:26:05:a9:33:a3:a9:b5:21:34:4b:45:83:
fe:27:be:67:c7:49:28:77:19:af:5e:6d:09:8d:3a:
8a:4a:34:3d:64:44:d2:90:f1:e1:91:5f:c7:67:88:
9b:62:d4:6d:c8:37:ec:3b:ae:b6:83:bd:64:9a:a5:
f3:4c:63:ed:53:ee:1f:36:da:51:60:6d:ef:9b:26:
b6:2f:aa:c5:99:64:01:32:99:cb:66:1a:29:73:e2:
80:20:23:69:32:3a:5c:f0:c6:78:0c:a0:b1:9f:28:
6f:f1:a7:61:81:b7:c3:a2:93:3a:1e:f6:be:d3:e9:
f5:5b:ee:cf:76:d8:16:1e:86:f1:2d:ae:81:93:27:
d3:2a:7b:0d:cb:47:81:25:26:f3:52:ef:03:1f:20:
2b:00:db:43:78:ef:a9:8f:8e:b5:9e:7c:bb:7c:0d:
25:15:c5:5e:71:66:a9:69:c1:72:a1:17:01:64:d2:
7c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:3A:D0:12:B7:AF:0C:FC:D2:F2:8E:18:63:73:7E:6B:EB:35:58:F3
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:cb:9c:30:76:71:90:15:a7:e6:16:55:09:2e:7c:15:db:d3:
60:aa:d1:6f:c7:9d:aa:11:65:2d:fb:5e:87:d0:43:44:2e:80:
4b:d8:6f:4b:da:dd:a6:6e:f4:bd:6f:d7:5b:39:0a:18:27:dc:
d9:0c:b3:da:f8:8a:91:52:62:b7:5c:46:22:66:1f:34:fb:ec:
29:c8:45:96:90:2c:f1:41:37:bc:1a:c6:54:f7:6b:4d:31:a8:
bb:da:3a:3c:8c:0d:59:06:04:4d:f9:8b:b3:5c:80:42:c4:a7:
b6:e9:bd:51:01:62:28:55:e0:2a:10:5e:66:2c:fe:38:48:78:
75:cc:d5:8b:2d:68:9a:0a:e3:6c:03:e4:75:1e:3c:de:fa:86:
6c:10:13:0e:69:d6:e4:21:b7:21:9a:23:e5:f3:d1:e3:96:1b:
93:4c:c4:5a:fa:7c:c7:c1:ee:85:b4:77:73:47:36:ad:32:27:
a5:b1:81:b9:39:f3:f7:04:52:80:85:2f:4a:48:ec:00:b4:2a:
0e:f9:a8:5d:e8:a2:4d:4c:23:64:c1:a8:00:8d:15:bd:5d:92:
f2:3b:b5:3b:e3:9c:db:ea:81:11:e6:90:04:bc:db:31:93:98:
47:60:8b:f8:11:8c:0e:e2:d6:a1:c2:48:37:a6:e1:f2:a1:38:
3f:86:4d:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:42 2025 by rpki-client