Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
File: XX2xSVjPTXheWe9cbGefjvVMHYs.mft (raw, json)
Hash identifier: KuDJ/QbwFHrg35y9X6N+LcFbUUb7+5G0Cc+uIrNlbpY=
Subject key identifier: A9:F5:36:18:FC:42:54:FF:18:3E:DC:39:79:80:2C:A9:A1:06:61:A3
Authority key identifier: 5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
Certificate issuer: /CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Certificate serial: 0199FC58A8CDA2E64535CD722AF9E1026B2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
Manifest number: 06CA
Signing time: Sun 19 Oct 2025 12:01:32 +0000
Manifest this update: Sun 19 Oct 2025 12:01:32 +0000
Manifest next update: Mon 20 Oct 2025 12:01:32 +0000
Files and hashes: 1: XX2xSVjPTXheWe9cbGefjvVMHYs.crl (hash: NvuK+nf8/TTu4a9ELjjZL4JnxkWklY3EwMyHDBrBmjw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:a8:cd:a2:e6:45:35:cd:72:2a:f9:e1:02:6b:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Validity
Not Before: Oct 19 12:01:32 2025 GMT
Not After : Oct 20 12:01:32 2025 GMT
Subject: CN=a9f53618fc4254ff183edc3979802ca9a10661a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b2:95:35:0b:2f:93:18:38:ef:3b:34:e4:21:
79:14:28:c2:46:24:20:0f:e7:58:15:6a:4b:db:6f:
66:cf:cf:ef:6c:e1:86:c0:14:42:98:92:67:91:16:
f4:df:8a:38:26:43:f2:13:bc:95:cb:04:db:ac:5b:
7b:b3:b8:cb:ec:de:c6:66:d5:78:30:52:7d:54:12:
12:02:64:81:d8:8a:d3:3c:94:72:ab:27:d3:cf:56:
33:54:b6:f7:6a:8c:e7:9d:f3:6e:13:cf:47:5f:84:
f0:3b:e0:55:ee:46:64:ab:2a:60:51:a4:18:25:d4:
2a:3f:2e:54:57:a0:bc:88:25:b1:74:c3:5a:27:82:
8e:f1:5a:0f:52:3d:7f:e6:a4:f5:a9:a3:aa:6d:37:
7b:1c:4b:2c:75:51:bf:39:0d:f5:a4:73:ef:e6:72:
96:d1:9d:3c:1e:49:72:8a:c8:13:8b:f3:bc:c0:bb:
8a:02:b7:52:8c:ca:60:4c:ed:c2:46:27:1d:3b:d3:
b9:1b:27:f8:35:16:f6:a2:b5:8d:c6:0c:a8:91:4a:
a6:11:8a:3c:7b:9c:8a:c8:4d:0d:54:82:06:7b:a6:
32:b3:12:0d:74:b2:65:26:b3:f8:c6:60:88:29:39:
73:4d:38:a3:43:ab:04:1b:99:0c:e9:54:ad:d5:21:
7a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F5:36:18:FC:42:54:FF:18:3E:DC:39:79:80:2C:A9:A1:06:61:A3
X509v3 Authority Key Identifier:
keyid:5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:4d:e1:7e:6e:7c:18:4b:af:3e:d5:5e:d2:86:4c:02:7e:26:
91:60:a8:25:9b:c7:d2:10:69:be:b5:a2:cc:8c:f5:03:19:bf:
3d:ee:8e:cc:99:3f:21:cb:3f:7a:2c:c0:ec:4b:32:93:e1:a9:
b6:a2:b4:5f:26:60:d0:25:14:18:e9:d4:66:eb:44:d0:85:2e:
3b:3f:f3:7e:cd:e0:0b:39:7b:51:e1:cb:12:92:55:b5:f5:08:
6a:3b:07:00:7e:c4:1f:b5:e1:34:8a:e7:d6:76:ff:65:0e:e5:
9a:8b:cd:0d:09:e0:7b:58:06:8f:76:e8:11:07:be:15:86:a5:
70:63:65:07:12:d2:a6:0d:2d:0e:a3:0b:79:f7:b8:d1:5e:6c:
51:f5:07:2e:cc:bd:07:3d:75:9d:04:64:89:42:55:89:82:96:
b1:6c:9f:04:6e:fd:0d:37:ac:6d:79:52:b5:70:4d:8e:c4:9d:
d3:fa:9b:d1:ae:16:73:90:c5:95:0b:72:83:0c:7d:10:26:34:
be:55:0e:8a:36:a4:7b:55:0a:91:cd:09:31:8d:9d:db:8b:df:
7f:ea:f4:f2:88:a7:cc:f5:83:a6:26:5d:b1:30:3a:fe:af:91:
31:a9:56:98:11:91:e1:9e:89:dd:8e:05:b0:39:26:57:a2:4f:
fd:ed:a9:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:41 2025 by rpki-client