Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
File: XWU9B97R6Nf08uoEvTaELFsS8V4.mft (raw, json)
Hash identifier: cJ9F5QDVidzADp+7104KzPv2QCc7d8qBg4VFnS946B4=
Subject key identifier: 03:45:99:CA:9F:0B:5A:F7:B0:64:08:4B:99:B7:3A:BB:0C:FE:E8:60
Authority key identifier: 5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
Certificate issuer: /CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Certificate serial: 0199FC5883053BE9EE616AE1341D623A2C1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
Manifest number: 0F0A
Signing time: Sun 19 Oct 2025 12:01:22 +0000
Manifest this update: Sun 19 Oct 2025 12:01:22 +0000
Manifest next update: Mon 20 Oct 2025 12:01:22 +0000
Files and hashes: 1: LETlz166RFHGtOnMtZqu-hVYTtY.roa (hash: R/HDeBwYS+y6cI45NJn8rpNKDr4lgvNm8JPFpPhGnoo=)
2: XWU9B97R6Nf08uoEvTaELFsS8V4.crl (hash: CWhpT220qG2xrJLdUEE4g2P4sIdMveYyFG+KoSmwDgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:83:05:3b:e9:ee:61:6a:e1:34:1d:62:3a:2c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Validity
Not Before: Oct 19 12:01:22 2025 GMT
Not After : Oct 20 12:01:22 2025 GMT
Subject: CN=034599ca9f0b5af7b064084b99b73abb0cfee860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1d:2d:3d:c7:ac:a8:19:54:02:8e:f5:d0:2a:
95:8d:d0:81:5b:ee:05:28:14:3e:4c:f9:3f:ba:91:
1e:dc:3c:2c:7a:5e:62:31:14:50:b4:05:d0:34:85:
f5:e0:b1:cf:3e:02:b4:77:ba:83:b8:bb:a5:3a:40:
99:44:80:82:71:3a:69:37:2a:79:e4:e5:a8:ec:fc:
7f:40:d7:e1:41:e3:c3:4f:17:87:c2:92:ac:d5:78:
77:63:4c:b0:c5:f8:a1:cf:af:e8:cc:22:b5:23:b7:
a9:29:dd:1d:00:97:95:e8:15:b8:8e:3b:e4:c3:8f:
c7:3e:04:00:87:b3:35:d6:0d:2c:ad:ae:7f:d2:9f:
1e:65:b6:19:d4:6b:06:ed:31:ca:1e:84:c2:b6:8f:
97:59:62:3e:fd:4a:a1:25:3d:d9:e9:ea:66:59:d4:
fc:b7:cb:a2:1c:61:ac:d9:1a:ee:df:b8:04:f7:31:
c7:4b:84:88:24:52:27:44:a0:55:7a:48:d0:a1:d1:
7f:63:87:5c:c2:6a:c7:c6:21:c4:db:e0:86:57:c2:
f9:b0:1e:e0:98:b4:cd:6a:c3:71:f8:ad:2f:70:ee:
4f:2b:00:6c:0a:f1:c1:ad:7e:c4:21:04:5a:cf:c4:
17:c0:b6:da:d8:9e:df:69:29:9c:bc:31:92:57:4c:
39:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:45:99:CA:9F:0B:5A:F7:B0:64:08:4B:99:B7:3A:BB:0C:FE:E8:60
X509v3 Authority Key Identifier:
keyid:5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:b1:f5:41:7e:04:b9:d9:5a:28:a2:98:35:c3:55:ab:57:4a:
68:ca:da:59:e2:b9:15:01:af:69:0f:5d:7f:34:8d:53:2a:fd:
05:51:be:67:cf:41:14:fd:29:fc:41:a4:8d:d0:eb:84:44:d3:
84:3f:b6:b0:ac:d4:c9:69:ec:f0:0a:e8:a7:3d:36:7d:df:a4:
40:27:5f:20:28:71:19:ea:15:8b:88:e7:e1:62:90:87:82:1c:
67:11:80:0d:a7:67:7e:84:75:6f:9b:4d:4a:fd:21:7d:a6:dd:
fe:c2:5f:e7:a3:7c:32:13:58:47:3d:6b:41:ce:08:70:e1:76:
3c:da:55:67:70:04:75:23:ff:32:82:96:58:cb:53:e7:1f:0d:
0b:af:1d:6c:cf:90:de:9e:93:e7:db:c5:90:11:61:dd:e3:3c:
d7:18:94:3a:9c:f9:dd:f1:ed:2d:36:cb:29:88:16:07:c0:a0:
90:eb:d8:52:5e:d6:2e:dd:52:59:6e:be:de:12:ae:40:c3:c6:
bd:9d:14:03:bb:e6:8c:41:0d:52:f9:bc:87:5d:58:2b:7a:4e:
b4:23:75:51:27:72:80:bf:5f:4f:8f:5b:aa:35:1d:cd:01:02:
54:0b:8e:2f:fa:36:77:04:9c:b6:45:20:c2:67:e2:ef:8d:a1:
7a:46:9f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:22 2025 by rpki-client