Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: siOZ/FN7Kc2/g9G8dzOcdAqng+q0SQxR6oqgPzHjUgI=
Subject key identifier: B6:3E:59:5A:9E:42:1B:95:BE:86:17:62:4E:FD:74:47:B0:49:A5:99
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 0199FE469CD4345EBF582A28A1B220CA3869
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 0B6D
Signing time: Sun 19 Oct 2025 21:01:04 +0000
Manifest this update: Sun 19 Oct 2025 21:01:04 +0000
Manifest next update: Mon 20 Oct 2025 21:01:04 +0000
Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: Af58cmMootY8LBc+EsULJCyjEKeJK8Fm7k6Rq7glfnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:9c:d4:34:5e:bf:58:2a:28:a1:b2:20:ca:38:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: Oct 19 21:01:04 2025 GMT
Not After : Oct 20 21:01:04 2025 GMT
Subject: CN=b63e595a9e421b95be8617624efd7447b049a599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4e:53:b4:20:0a:0f:e6:24:a7:0b:3b:9e:7e:
8d:d2:96:90:61:51:fa:04:92:a1:14:74:c5:d2:85:
44:c8:81:2b:0f:8c:9f:d1:27:e8:99:88:62:94:d4:
d8:b3:bf:4a:4d:de:4f:be:5d:6b:73:37:15:54:27:
94:87:db:cb:f3:35:30:26:02:ca:e7:07:df:7a:ec:
70:a0:06:f8:00:27:56:b4:ac:35:db:b9:64:1e:14:
dd:5e:c6:07:e6:cb:bc:7e:f2:0b:9c:2e:71:d3:21:
cd:49:09:72:ab:6f:4e:c7:d5:5e:63:a1:8e:7d:fb:
c2:6e:93:5d:1d:cb:97:fa:5e:9d:13:5a:38:b6:7d:
02:a6:ae:8a:bf:f7:fb:4c:a5:17:ef:3c:33:c5:8e:
af:8e:14:09:c0:9e:a0:8f:f3:f0:8a:15:14:6c:34:
9a:15:2e:81:ce:65:8d:09:f9:dc:82:c4:8d:45:28:
56:f8:b5:3a:59:4a:cc:1b:67:bb:64:b5:0c:e2:10:
4a:02:11:73:4e:1f:1b:89:14:97:f7:0b:79:4f:a8:
85:0b:b2:21:19:d2:3a:a6:48:b0:8f:0c:d5:f8:c3:
24:c3:c5:5c:5b:50:e3:d1:e3:0d:76:2f:ad:c6:44:
52:4e:a5:cb:99:2b:d3:75:24:e5:9d:c8:12:04:49:
0d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:3E:59:5A:9E:42:1B:95:BE:86:17:62:4E:FD:74:47:B0:49:A5:99
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:7d:2a:bb:ed:0d:e8:31:b2:1f:a8:25:91:db:95:37:0b:b1:
cc:50:f6:07:c9:e5:5c:91:e4:e6:88:6b:54:c2:fc:e3:b2:34:
ae:d2:8e:47:24:ba:99:9c:81:a6:93:6e:27:7d:8d:08:80:01:
29:13:59:ca:6a:92:97:c7:0d:34:89:42:e6:0c:b9:d0:d0:54:
80:5a:42:1f:49:72:ba:e8:12:b5:a8:73:e9:38:4d:52:29:56:
92:52:79:27:47:2b:9f:9b:40:60:9c:f5:b1:30:e9:0d:d3:e8:
14:6f:d7:f5:14:e9:35:e8:05:6e:0c:0c:69:1a:62:92:d4:31:
ba:92:9e:79:5b:30:0d:f1:01:04:be:a7:57:78:2c:80:fa:76:
63:c3:87:8b:5d:26:b8:18:92:ee:b4:2b:6e:92:d1:e3:c5:f3:
ec:61:30:9b:31:28:42:d8:9a:34:28:44:d0:42:93:bb:42:55:
33:17:99:60:81:e6:0b:5e:bd:25:cd:5e:62:bf:54:fc:8e:c6:
95:b4:c1:38:18:83:50:ab:ff:aa:05:0f:0c:df:02:eb:d6:c1:
9a:e7:a6:50:a7:71:a2:d6:a4:80:65:06:2a:d7:af:2b:8e:c9:
35:a0:88:7d:7f:ff:1d:aa:b1:67:69:85:ba:9f:df:38:28:66:
27:d2:c3:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:04:17 2025 by rpki-client