Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: AAV1qOCllg58//mpCb5OndMJIwBgwJYPTOiWy6wjqjg=
Subject key identifier: 59:3C:DB:1C:22:86:49:B6:27:39:8D:5E:48:6C:A2:6A:A8:91:64:22
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 0199FBEBAB5A66F4A098FA699E967CF62171
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 11F1
Signing time: Sun 19 Oct 2025 10:02:29 +0000
Manifest this update: Sun 19 Oct 2025 10:02:29 +0000
Manifest next update: Mon 20 Oct 2025 10:02:29 +0000
Files and hashes: 1: QGKSiFavp9LMElSoLZBhqzLqFMM.roa (hash: ip/2uYmlI+BKnaF8k1mqNHwsPmNtHEQrk8aTeSCdMUA=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: GAiumUaeES3ZMpoHEB6Cxa3+jAL6SI1lZxG7GVg13tI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:ab:5a:66:f4:a0:98:fa:69:9e:96:7c:f6:21:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Oct 19 10:02:29 2025 GMT
Not After : Oct 20 10:02:29 2025 GMT
Subject: CN=593cdb1c228649b627398d5e486ca26aa8916422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:95:8e:2d:56:f9:07:3b:39:95:11:26:b8:6f:
c6:10:bb:7c:2e:7b:0c:78:89:01:68:6a:40:be:b2:
40:4d:db:30:60:33:e0:b5:8f:c4:0c:84:14:71:47:
f0:23:8a:f4:a0:ad:e0:15:ef:46:3c:97:69:7e:4b:
fc:d7:90:a3:e4:03:60:0d:ce:1d:11:73:6c:a1:ce:
fd:ba:8b:da:b1:6c:a5:45:8d:ef:2c:4b:86:25:38:
3c:8a:96:0d:f4:5b:cb:e6:14:ae:9a:42:7f:74:5e:
96:81:ee:9e:3d:ec:af:33:b0:9b:46:2c:d6:3c:5f:
72:59:3b:65:7b:a7:ff:dd:64:a9:df:7f:98:3c:5f:
8b:bf:27:6d:66:ae:db:d6:06:1c:3d:2f:70:b3:a5:
fd:f6:5c:e8:c3:08:f0:86:68:c8:c2:3f:8b:fc:23:
59:c2:88:e3:92:db:a8:6a:b1:b7:8f:aa:d0:69:5c:
34:ae:4e:68:c6:50:03:2e:d3:33:46:c6:74:7f:86:
8d:d8:6e:00:74:e2:fc:a0:03:f3:a7:be:60:e9:5d:
e5:7f:1f:9d:cc:c9:05:ab:61:35:bb:b8:d5:05:5c:
17:cc:a9:32:31:d1:26:1f:81:0a:22:60:4a:52:4a:
16:ee:a1:11:57:41:2f:42:5f:99:2a:c2:6d:62:0f:
46:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:3C:DB:1C:22:86:49:B6:27:39:8D:5E:48:6C:A2:6A:A8:91:64:22
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:c5:ae:f5:d1:f5:0d:22:90:9e:65:5a:bd:03:39:0d:5d:88:
ad:cd:97:13:f9:21:97:57:6b:86:c6:14:16:96:bf:a5:b8:8c:
5f:84:40:5e:3a:8e:ad:76:4b:1b:65:14:8e:57:c3:f8:c7:16:
74:ef:b0:54:16:55:de:67:7c:fb:39:e1:46:9f:59:79:a2:e8:
46:ba:2b:49:02:52:15:cd:0a:8c:1e:96:b8:d6:6d:6d:8c:46:
89:4e:ab:a7:53:7d:46:8d:3e:3a:3a:f2:6a:4a:f3:38:ad:c3:
1c:b2:19:e5:f5:d0:89:64:2a:bf:37:dc:65:90:ef:64:20:ef:
69:77:8f:62:5a:06:0d:fb:ff:6f:a9:bc:6c:75:b6:20:48:14:
46:0a:a1:b6:dc:a2:cc:0b:74:93:4d:8f:b9:01:75:8e:12:e7:
62:41:93:48:aa:8a:4d:17:3e:ed:c3:24:af:06:6c:cb:2c:f4:
f8:85:f3:cb:ce:c3:48:22:5d:f6:2d:9f:dc:a7:53:b4:b3:87:
5d:85:da:13:6a:4b:23:6a:32:3a:70:95:62:e8:67:14:26:98:
bf:71:13:0c:94:d6:80:81:76:47:95:51:42:bb:ce:b3:df:90:
16:5d:be:b1:95:fa:87:c6:08:d3:2f:94:58:da:17:9e:61:51:
86:49:6b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:51 2025 by rpki-client