Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: yuyIAz4gt6NmzOgv2jIMmWpK/2DkTn3AapBqeF6GhGo=
Subject key identifier: 8B:A5:43:6E:CB:F8:B0:9A:1F:56:9D:9B:90:26:94:86:00:F2:C8:76
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 0199FB0F37D0972A113CBB592780C8E96B06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 0BF1
Signing time: Sun 19 Oct 2025 06:01:42 +0000
Manifest this update: Sun 19 Oct 2025 06:01:42 +0000
Manifest next update: Mon 20 Oct 2025 06:01:42 +0000
Files and hashes: 1: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: ESx0/ds/R9E7gfgg/ZsroXW59PVKopVR1kudJMbpal4=)
2: vKqft3GpUgOOXSf2VjTKls-pWMw.roa (hash: 5Tvu15lYIVA9/K7Qk9i7l4tCbiMQ02zrBkIoUMRXadY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:37:d0:97:2a:11:3c:bb:59:27:80:c8:e9:6b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: Oct 19 06:01:42 2025 GMT
Not After : Oct 20 06:01:42 2025 GMT
Subject: CN=8ba5436ecbf8b09a1f569d9b9026948600f2c876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f7:4a:ec:99:f1:6c:03:a1:c4:ee:d7:e5:f5:
53:18:1e:2b:9e:42:ea:9e:fb:c4:db:a5:74:86:d4:
78:4b:d4:b9:6a:fa:31:de:26:61:fd:a7:5d:66:1a:
0b:f8:4a:82:e5:6e:53:36:e0:78:e2:14:d4:f8:59:
7b:e6:27:07:07:72:cc:3e:9c:4a:d3:54:a2:8d:23:
25:c9:4e:ad:73:37:50:f2:41:3e:5d:01:f9:bf:41:
b4:84:2b:69:4d:88:59:85:39:88:c8:a9:ae:f0:91:
ec:70:49:e3:45:10:d0:09:dd:b6:c5:64:bd:d5:88:
86:2b:4e:f8:e9:ef:2c:14:c8:43:d8:11:f3:89:3a:
43:75:de:ec:21:f7:97:c3:fa:f4:7d:d4:22:75:43:
ad:55:d0:4e:c8:70:6d:b2:f6:15:ba:ec:2a:52:2e:
d3:28:c3:4f:9f:4f:de:e1:49:b3:0f:56:c3:a7:0b:
05:5f:5e:3d:d4:21:a1:6a:bd:1e:60:f8:00:d0:00:
33:00:35:81:7e:9d:91:26:a6:b6:db:d6:a3:00:12:
08:9a:17:50:92:4a:ec:e3:6e:94:86:b6:04:e1:7b:
38:8f:b8:5c:68:91:c8:90:04:05:13:03:3a:1e:0f:
08:fa:6d:07:47:5f:6f:ac:b1:c9:02:17:85:16:ac:
b8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:A5:43:6E:CB:F8:B0:9A:1F:56:9D:9B:90:26:94:86:00:F2:C8:76
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:c1:bd:07:db:4c:d3:78:87:a9:e7:ac:11:a2:05:60:db:d7:
07:3d:9d:3f:bf:5c:96:77:22:95:ef:fc:ba:29:b5:49:bd:8e:
f9:5b:e2:a0:7e:9a:2a:75:21:9f:70:0a:6b:85:ba:e5:b1:cc:
a6:a0:50:e7:b5:6c:7c:02:94:33:b2:13:7e:94:70:3d:a9:c0:
d3:b7:9d:07:40:21:57:78:2d:1f:b7:41:5a:73:0f:e3:99:b1:
6b:ee:fd:f8:46:86:76:8f:4c:1c:28:12:c3:c2:d2:1d:bd:52:
bc:01:06:8e:10:0d:bd:b1:a4:09:e5:60:42:36:e8:3c:a8:58:
96:7a:06:ca:36:e8:c4:f3:99:a8:8a:42:0b:56:92:83:c6:ba:
82:0b:90:86:19:e2:e1:4f:ca:cc:08:c6:20:0c:92:5e:38:ee:
68:6e:69:64:99:d7:04:e2:0f:33:8a:ae:6b:cf:8c:11:95:c3:
c9:06:65:57:3e:6b:3a:62:d6:34:84:f4:c8:6b:21:60:43:e0:
a8:44:80:7f:32:be:37:80:ce:23:b8:ef:19:10:58:a6:34:36:
19:66:90:0b:41:e3:81:7c:6c:d2:2d:f6:77:1b:ae:03:f3:8e:
24:9d:64:65:91:20:bc:d3:9e:2d:8a:ce:fc:65:ae:ac:29:af:
0c:8e:a0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:29:31 2025 by rpki-client