Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
File: xs_ZQjfv0gDdCxFuH2-be8plnKc.mft (raw, json)
Hash identifier: W0+jHSt/Y/T/OiCnnUTDw4fYExvSpQme1+G9ZCcm1Ww=
Subject key identifier: AA:C0:01:DA:BE:28:23:EA:0E:86:33:3E:B2:88:26:7E:AD:D9:1E:8D
Authority key identifier: C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
Certificate issuer: /CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Certificate serial: 0199FB0F3792947CAABD7FE7176CE6699F6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 06:01:42 +0000
Manifest this update: Sun 19 Oct 2025 06:01:42 +0000
Manifest next update: Mon 20 Oct 2025 06:01:42 +0000
Files and hashes: 1: K9i5BAZ6MzcgF9CzcPcItueT7VY.roa (hash: SAFMofRuJhJyuX+kxWxAf3VBKLBtrOMj73WD80i1Rgo=)
2: xs_ZQjfv0gDdCxFuH2-be8plnKc.crl (hash: GT1X5frRwjS1q4q7e6T53CQEHa884AZNbOwAeoUbCbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:37:92:94:7c:aa:bd:7f:e7:17:6c:e6:69:9f:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Validity
Not Before: Oct 19 06:01:42 2025 GMT
Not After : Oct 20 06:01:42 2025 GMT
Subject: CN=aac001dabe2823ea0e86333eb288267eadd91e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e5:0e:7d:ed:b8:11:c4:a8:52:3b:83:86:1d:
e1:ac:88:86:82:ef:5a:a7:09:c9:32:87:81:57:e9:
e3:65:58:0f:23:1f:9d:f1:dc:24:6e:a5:2f:0d:ca:
77:97:9b:9b:3e:28:ec:05:bb:bf:85:5f:f6:b3:d0:
40:26:fc:f7:90:66:22:82:73:5c:f8:c6:85:60:1a:
94:a5:d1:05:f6:81:d8:e8:66:8f:4a:c6:cc:27:3b:
af:19:cc:4d:41:5e:16:de:f8:eb:71:52:6c:ae:d6:
09:2c:64:01:2f:0f:e8:14:62:54:34:ed:6a:f1:95:
07:35:b1:cc:6e:d0:2e:4b:d1:d0:d9:97:02:a6:f5:
a2:46:d6:0f:16:cc:ff:57:98:e4:0a:38:2b:fb:ee:
1f:a7:42:d0:f7:e1:13:54:c6:40:ea:6c:86:fd:98:
3a:19:1e:24:8e:d6:67:68:6d:d3:c8:da:88:a7:3e:
7a:02:59:81:5e:77:1f:38:7a:16:d5:f5:a4:bb:6f:
7a:07:0b:9e:65:01:5d:63:e1:50:e1:b7:d1:2b:f9:
fc:ee:80:29:3f:77:18:28:9b:2e:11:72:68:9e:d3:
84:0f:32:b8:44:06:85:82:99:68:dc:77:8e:29:e8:
54:01:50:9d:d2:30:eb:7b:8f:eb:e4:39:cb:b4:b9:
b5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C0:01:DA:BE:28:23:EA:0E:86:33:3E:B2:88:26:7E:AD:D9:1E:8D
X509v3 Authority Key Identifier:
keyid:C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:ee:88:17:4b:25:fb:7b:e2:66:58:c5:2b:78:64:a8:d2:63:
aa:0c:72:1e:22:05:b2:8d:00:96:38:e0:4a:da:76:86:85:cb:
63:92:c7:4c:c0:a2:c3:53:39:91:d9:13:ea:a2:be:56:f8:3e:
28:d0:e8:fd:b4:9c:0f:c8:eb:59:58:ae:21:a8:b5:7c:9e:88:
b8:b3:5b:0f:cd:47:b6:51:a2:d5:5b:9d:e3:71:dc:01:4b:a6:
b9:72:84:9b:12:57:08:ed:94:ae:cf:51:db:69:6d:8b:08:67:
f5:d5:c5:13:a2:cc:33:8c:4f:ce:a1:66:b6:67:78:c5:87:61:
6b:18:31:ab:1f:26:b0:a9:96:fe:e7:af:ad:d2:47:ed:f5:a5:
f6:ec:0d:ab:26:eb:04:d2:aa:81:04:76:4a:f7:14:66:3e:3c:
82:21:da:40:72:f0:4e:3e:e6:f8:85:ac:85:de:df:28:6d:51:
8d:20:53:7c:12:23:d7:8c:ba:e0:cf:18:61:be:4a:05:05:c5:
69:5f:44:a3:9a:b5:c4:dd:c9:44:68:a5:5b:7d:59:cf:f2:7f:
73:a5:11:38:7c:4a:30:ee:94:be:24:b9:49:f4:59:f9:81:7a:
b4:b8:f2:f6:7e:93:6b:7d:3a:25:88:bc:fe:92:d1:0f:d9:7f:
8f:81:20:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:03 2025 by rpki-client