Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: X50w3PTl9++2KPaShsZMZtZq6iyYnu2JPv2+ykbPi3Q=
Subject key identifier: 7C:45:FC:C0:5E:8E:C7:69:1F:B9:18:5E:2D:0E:74:41:12:C3:84:1D
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 0199FCFD81ECBC682B13B52F847166D403B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 10DD
Signing time: Sun 19 Oct 2025 15:01:36 +0000
Manifest this update: Sun 19 Oct 2025 15:01:36 +0000
Manifest next update: Mon 20 Oct 2025 15:01:36 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: x2AKRgh9akFVxkgnWobYv2oaVtG46fKcvdPHmBo+UeU=)
2: yQMt2r0-C951BN6h68fRFJDbCC8.roa (hash: tYqh+1wBm4KwmsyhvHbFDKO/UGyJb2eTnTj9n8iYekw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:81:ec:bc:68:2b:13:b5:2f:84:71:66:d4:03:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Oct 19 15:01:36 2025 GMT
Not After : Oct 20 15:01:36 2025 GMT
Subject: CN=7c45fcc05e8ec7691fb9185e2d0e744112c3841d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:16:45:03:1e:13:65:2f:6b:1d:77:d2:8d:71:
3c:43:95:99:f5:61:a3:9c:a1:58:10:db:6e:29:76:
0c:f0:fb:da:bf:2e:c6:13:b5:81:23:2e:23:55:1a:
e4:73:09:26:49:13:10:ed:3a:a4:20:21:73:0b:fd:
73:67:43:ba:f1:c6:a7:5e:4c:1f:ec:0d:d2:ef:84:
fa:b4:de:19:90:b6:ad:cb:3b:f5:41:b2:2d:ef:71:
cf:34:ae:db:3a:ad:89:09:da:4e:43:17:c6:c3:24:
9c:6f:db:53:69:59:50:7c:9e:6e:80:e1:99:35:48:
98:d6:87:f1:0a:88:c7:97:5b:26:96:03:81:b6:ad:
0c:c6:d0:86:d6:4d:07:37:5e:8c:b6:1b:6e:79:2d:
dc:ec:bd:b1:14:a9:63:f2:41:f1:d9:f0:82:ec:4d:
9f:1b:9f:99:21:7b:1a:1e:27:c4:35:f7:8a:d1:4e:
06:40:bf:23:b3:ab:1c:6e:32:1c:49:fb:8c:98:b4:
56:bb:93:95:41:82:45:2d:07:c7:d9:7b:ac:aa:6a:
b2:d3:d2:fc:9a:97:02:9a:79:59:79:c5:99:50:5d:
e8:1a:7a:87:05:26:f3:47:03:c5:8e:14:88:c2:fa:
29:c2:5d:4f:ed:07:22:51:28:7d:dd:9b:5b:52:12:
ef:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:45:FC:C0:5E:8E:C7:69:1F:B9:18:5E:2D:0E:74:41:12:C3:84:1D
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:0d:29:0f:50:cd:84:09:11:50:51:a7:3f:20:fb:89:0a:f1:
3e:b2:c6:04:a7:21:4c:b1:84:9c:62:85:bd:8a:2e:4d:7a:4c:
fb:1a:7a:4c:f5:c2:f1:f4:c6:9e:40:4e:1d:88:39:c0:03:23:
d6:58:14:29:40:d0:c2:b1:7f:ad:31:5f:7d:8f:82:17:c1:5f:
0b:8d:d4:d2:b1:94:1e:9a:cc:53:9a:f9:48:d5:e8:7c:fa:1d:
04:75:fb:f4:e3:6a:03:02:55:e7:5c:8e:e8:08:67:e7:87:e1:
19:92:38:45:70:d5:ba:14:a0:9e:10:35:0b:ba:03:8b:05:66:
18:60:08:6c:8b:68:4e:f0:57:ff:33:d7:a9:93:c6:c3:7b:3f:
c6:c3:8f:02:74:5f:18:38:07:43:0d:6e:b9:c7:ff:b0:42:71:
85:7c:1a:cb:78:9d:84:12:10:b9:7d:eb:2a:61:a8:48:29:09:
9b:70:c7:7b:f9:af:47:cc:9b:5e:01:67:36:58:19:67:86:fc:
3c:d0:8e:5a:56:94:30:03:ed:96:f3:ae:8f:4d:2f:07:bc:94:
d2:4f:13:7d:f2:b4:5a:ba:e7:1b:9c:8a:7d:a9:77:4c:e6:73:
13:17:5d:54:fe:ec:96:c3:f0:62:48:51:e9:e3:30:31:4b:03:
1f:9e:8f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:12 2025 by rpki-client