Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
File: XbomMhShFwVRmA7pFxn42Ixia14.mft (raw, json)
Hash identifier: Z71UfZs3pidR6M2pdlJxSS5rEJIRCEZNSmzt5UWo2X8=
Subject key identifier: C4:5D:A0:CE:C1:2E:FB:23:50:93:13:B4:E4:EF:54:21:85:84:FF:AC
Authority key identifier: 5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
Certificate issuer: /CN=5dba263214a1170551980ee91719f8d88c626b5e
Certificate serial: 0199FCC620F17D7788BA25281EB7EAB78D26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
Manifest number: 124D
Signing time: Sun 19 Oct 2025 14:01:06 +0000
Manifest this update: Sun 19 Oct 2025 14:01:06 +0000
Manifest next update: Mon 20 Oct 2025 14:01:06 +0000
Files and hashes: 1: XbomMhShFwVRmA7pFxn42Ixia14.crl (hash: D+IsVI0JyFLONb1Mtc2SNNyPdOcesMDEZHSaHWLYGBA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:20:f1:7d:77:88:ba:25:28:1e:b7:ea:b7:8d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dba263214a1170551980ee91719f8d88c626b5e
Validity
Not Before: Oct 19 14:01:06 2025 GMT
Not After : Oct 20 14:01:06 2025 GMT
Subject: CN=c45da0cec12efb23509313b4e4ef54218584ffac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:76:6e:cb:f4:0e:da:ff:bb:36:2f:04:50:a9:
8e:e0:61:d6:b8:b4:72:92:7d:dd:4e:bf:b5:e9:07:
6a:b9:12:87:4b:6b:29:51:c0:f2:f1:b5:61:21:da:
55:e9:6c:f4:93:1f:de:f9:b4:06:b7:07:c9:21:52:
76:06:3d:47:a9:06:a6:18:8e:8b:63:58:60:ec:c2:
9a:62:60:6c:6c:70:21:85:aa:aa:8d:98:b6:d8:df:
5c:89:ae:09:1f:5e:30:d3:46:5e:03:b9:a6:9b:32:
9a:50:06:4a:3d:64:42:69:5e:5d:a8:54:6a:de:f2:
46:49:91:f5:23:5b:a6:2c:a8:f5:09:3b:18:ef:d2:
0a:b4:b0:e8:78:a8:08:0c:e4:ff:8c:0a:47:f3:cb:
2e:66:06:21:8a:e0:af:63:2a:1f:0f:d6:ae:2b:72:
c4:a7:8a:11:68:4a:64:e6:99:99:4f:a0:78:08:54:
b8:ae:3d:ec:a7:3e:90:d6:63:91:8e:2d:d6:c5:e4:
9e:39:78:02:16:78:e6:5c:09:f4:47:68:0b:42:bc:
1b:2e:79:af:64:36:15:f0:db:e1:4d:9f:25:a6:ef:
bd:a2:6c:2f:ce:72:eb:7c:13:a1:fb:14:b6:0f:72:
fb:60:27:7e:73:d0:16:2d:69:73:84:54:b7:90:2b:
49:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:5D:A0:CE:C1:2E:FB:23:50:93:13:B4:E4:EF:54:21:85:84:FF:AC
X509v3 Authority Key Identifier:
keyid:5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:4c:6d:3f:df:b3:2e:1c:af:7b:c9:42:59:b9:3f:78:22:99:
58:43:bb:86:15:88:bd:0c:33:6a:d5:fc:cb:59:21:28:8e:8e:
b3:a8:84:e5:08:65:21:d2:17:08:f4:98:a3:88:de:0f:cb:95:
85:2e:7b:e6:0c:a8:6c:fb:1c:3f:b2:89:bc:98:5b:93:02:98:
14:d0:a7:ac:3d:a6:59:f6:ba:22:c3:7b:dd:ba:15:c9:e7:ab:
cd:28:21:6a:f7:8e:dc:44:a0:7d:fe:79:0a:3f:94:e4:70:71:
ec:41:4c:f1:de:61:21:d4:ed:6d:16:22:42:ff:a9:47:a4:30:
12:bf:3d:ba:00:69:f2:e8:b3:e0:65:cd:12:1c:08:e6:a7:ed:
8f:95:4a:f5:92:03:46:b7:97:f6:ca:f7:57:45:e6:33:a4:a6:
ff:b5:72:dc:df:30:01:88:bf:b6:b2:46:9d:48:47:46:d8:af:
9c:ec:3f:c4:3b:69:86:a3:54:54:81:91:ea:14:43:31:dd:fc:
6e:4b:00:52:81:28:9b:88:e6:89:76:03:fd:f5:7c:7b:69:ef:
f6:cf:c9:d5:f7:cf:09:13:f4:68:a9:fe:79:43:87:84:03:b0:
c8:f5:07:2f:0c:75:73:76:9a:06:f1:15:0f:e5:df:de:5c:5c:
e8:5b:f9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:52:10 2025 by rpki-client