Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
File: X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft (raw, json)
Hash identifier: pIb6Ad/7pS1fbBafvNx23Ql0TrQBGskjR4dlteBbzrQ=
Subject key identifier: 1C:94:5A:0D:70:2C:31:FE:90:CE:BC:C9:21:8A:2F:80:96:B2:09:B7
Authority key identifier: 5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
Certificate issuer: /CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Certificate serial: 019A01B66290EAFBC90E876DBADC47E8EDEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
Manifest number: 16E0
Signing time: Mon 20 Oct 2025 13:02:01 +0000
Manifest this update: Mon 20 Oct 2025 13:02:01 +0000
Manifest next update: Tue 21 Oct 2025 13:02:01 +0000
Files and hashes: 1: X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl (hash: r6KwDLTGjo8QYSluh70JGC9cWZTSsOEAhg6macGVwjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b6:62:90:ea:fb:c9:0e:87:6d:ba:dc:47:e8:ed:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Validity
Not Before: Oct 20 13:02:01 2025 GMT
Not After : Oct 21 13:02:01 2025 GMT
Subject: CN=1c945a0d702c31fe90cebcc9218a2f8096b209b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:94:ac:4f:fd:63:30:34:84:b7:45:c8:e3:92:
bb:92:b5:ae:ac:f7:d9:f0:df:50:25:9a:b1:de:2e:
05:16:69:1d:e6:d5:3a:92:82:8f:c3:f7:31:ae:70:
7b:1a:1a:6b:c8:55:f3:b2:e0:8c:45:8c:93:a9:0f:
0c:1d:fb:8d:47:3c:aa:87:f4:6b:76:68:04:31:b2:
25:e3:49:0d:c3:7b:1a:9b:a2:a5:51:5d:fc:64:54:
01:44:14:50:1b:b9:1a:05:be:01:9b:02:00:c3:dd:
5e:8b:26:a3:98:95:4d:34:78:af:6a:d4:58:fa:f4:
21:09:66:36:c4:db:d5:55:fe:d7:99:2f:3a:52:bb:
df:8c:33:11:ac:3c:bc:fe:33:20:eb:25:4a:65:18:
99:62:85:28:8a:37:7a:43:da:50:12:cc:73:88:85:
9d:67:bc:20:d0:a4:cf:f8:f0:b8:30:9e:7f:70:9e:
29:f5:75:16:9a:89:6c:d4:94:21:36:ce:e4:e3:70:
06:a9:3f:10:b3:02:2b:54:30:d4:13:2d:9b:64:d3:
03:48:d4:30:20:15:c3:89:9b:31:87:6a:74:a9:58:
11:f3:e2:c3:63:75:a4:a5:73:bf:85:73:ad:01:ed:
fd:4e:90:0c:ad:63:6e:c7:d4:48:f0:f2:6c:c2:77:
c5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:94:5A:0D:70:2C:31:FE:90:CE:BC:C9:21:8A:2F:80:96:B2:09:B7
X509v3 Authority Key Identifier:
keyid:5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:c0:de:9c:c8:fe:03:7a:13:26:88:51:3c:a9:b4:b2:4d:99:
06:e3:e0:65:db:da:ff:fb:a5:f1:89:3b:9a:32:4c:27:d3:a9:
59:92:46:93:24:1d:a0:27:75:65:80:97:53:bb:74:d5:71:dd:
0f:d5:64:f6:25:7d:cf:db:3f:f4:09:b7:a4:85:bb:b4:ad:c6:
2d:d3:5d:6c:2f:56:53:04:8b:1d:8a:87:aa:1d:1e:0a:42:44:
4d:1e:59:45:b5:b7:da:77:bc:6f:ea:dc:54:99:c5:ac:86:c3:
ed:59:93:81:11:a8:e1:c1:e5:13:95:ec:39:c9:0b:56:0b:37:
e8:28:5f:8e:83:09:93:a1:26:c8:e7:df:bd:22:d0:15:dc:7f:
f3:74:ec:21:e7:d1:62:b7:c9:8b:7f:bf:89:be:68:67:9f:84:
e1:4a:91:26:b9:b3:11:bd:c2:9d:41:77:dd:d3:e7:33:53:2a:
41:e2:c3:17:78:94:60:e6:47:10:62:5e:d1:e5:69:cb:41:de:
ad:d0:cb:52:d6:09:5d:da:2d:4b:a0:3d:be:88:91:d7:c9:34:
46:e1:95:c0:00:0f:81:82:f4:0b:2c:12:79:15:67:f9:e4:06:
fc:ed:7d:ba:d5:8f:48:49:d8:42:c4:6c:0c:8d:50:15:af:77:
2a:e3:bb:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:58:31 2025 by rpki-client