Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
File: mXpkd92XDJSyoXtSUCmC1Px1skQ.mft (raw, json)
Hash identifier: xLTvkg+6uNTwMA8Gws9uMoK6SNoCttTQPoV1odnrg+Y=
Subject key identifier: A7:98:5F:47:3B:0C:1E:BC:E3:09:AA:BE:69:55:30:53:E8:C6:E5:69
Authority key identifier: 99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44
Certificate issuer: /CN=997a6477dd970c94b2a17b52502982d4fc75b244
Certificate serial: 0199FC216F1C2A938F7E3A6E4CD1FD5D2628
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
Manifest number: 060E
Signing time: Sun 19 Oct 2025 11:01:13 +0000
Manifest this update: Sun 19 Oct 2025 11:01:13 +0000
Manifest next update: Mon 20 Oct 2025 11:01:13 +0000
Files and hashes: 1: N5euriRPkrPM5tpe3YMpJKwtnXs.roa (hash: Aif5H8pBLwxI+pfqg48v8EjEzgULti0iCYfChkXvfLI=)
2: mXpkd92XDJSyoXtSUCmC1Px1skQ.crl (hash: Nzxp1e8BTZCxywUadRwdAtR8t9GLC/n8f8XfrQ1HpQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:6f:1c:2a:93:8f:7e:3a:6e:4c:d1:fd:5d:26:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997a6477dd970c94b2a17b52502982d4fc75b244
Validity
Not Before: Oct 19 11:01:13 2025 GMT
Not After : Oct 20 11:01:13 2025 GMT
Subject: CN=a7985f473b0c1ebce309aabe69553053e8c6e569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1c:44:c0:a9:31:ad:48:12:dd:03:27:14:70:
0b:b5:16:11:e6:38:92:e8:14:2b:fa:fa:c1:d3:dc:
62:01:5f:38:a5:e9:54:fe:00:95:a2:8e:52:24:a1:
ea:29:22:70:5e:29:7c:0f:82:d4:64:89:57:45:64:
2f:a4:1f:67:d8:4c:74:68:af:34:d5:ef:af:70:76:
93:8c:3d:e7:48:f4:48:56:15:5e:bf:e0:7d:68:f7:
ae:84:e9:d5:88:31:b7:ed:56:d6:eb:d4:05:41:7c:
32:ee:f1:60:87:14:64:8f:2d:48:a1:26:07:61:d9:
b6:48:99:e3:19:f1:fb:ff:71:82:60:d8:06:d9:fe:
61:8b:0b:41:e0:89:35:49:e9:2a:45:80:86:fc:1e:
08:58:83:a1:b0:90:62:8f:12:4f:9c:39:53:06:ae:
38:b9:f3:ce:c4:53:6f:39:c6:11:1b:b7:00:0c:1a:
c6:a8:1e:78:58:be:e8:13:3d:ab:6e:99:34:3f:f8:
89:04:3a:ef:2b:a3:3f:dd:de:94:bc:99:f3:b4:cd:
b7:b4:89:82:17:6e:21:62:81:f1:49:59:9c:17:33:
4f:51:c6:4e:c3:6a:6e:ab:a1:1c:b3:34:9b:04:cc:
25:93:84:12:4a:8e:00:e4:b5:f4:6d:2c:78:41:58:
bc:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:98:5F:47:3B:0C:1E:BC:E3:09:AA:BE:69:55:30:53:E8:C6:E5:69
X509v3 Authority Key Identifier:
keyid:99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:0e:32:9f:d0:f1:e0:b5:60:fc:7c:50:16:82:99:72:67:29:
07:36:79:26:32:a8:30:46:e0:23:81:f5:8d:6e:4d:18:cf:60:
ee:36:8f:e9:9c:50:05:b9:81:fe:71:b6:55:60:24:04:a4:a5:
c9:56:96:03:4f:21:c6:53:e4:01:13:2f:17:83:0e:fc:dc:e1:
74:fe:17:ff:34:05:e0:9c:b3:f5:66:58:cc:a3:80:58:b3:e7:
48:cc:4c:b8:b7:2e:c5:77:91:5e:09:a6:b8:dd:00:1b:dd:53:
ad:7c:58:47:18:ff:3d:34:97:65:8e:c4:26:b8:ab:29:75:e6:
08:aa:58:41:05:df:38:a6:77:e6:78:2f:84:b4:fc:55:0d:3f:
dd:59:0d:ba:3d:41:0a:fb:49:5a:ab:51:b5:17:53:67:2b:75:
59:b4:43:ba:f6:36:47:9d:9a:40:6d:dd:30:4c:83:99:ad:fd:
62:bb:7e:c4:47:63:08:78:71:2d:b0:72:45:2c:e9:f2:d9:52:
b2:67:bc:90:51:fe:f0:09:34:97:ef:bb:8a:fa:16:b3:31:3c:
50:83:ee:3c:62:cf:28:bd:bc:a5:51:69:e8:ec:bd:2e:45:e3:
27:df:28:99:3a:50:8e:9b:09:57:d1:8d:7f:e9:99:40:e5:84:
e8:4f:04:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:00:22 2025 by rpki-client