Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json)
Hash identifier: FhJeaEsj292k1F3U/XUpNjqS9KeO5zCARYzizRM4lAM=
Subject key identifier: 15:3F:29:86:7F:98:52:70:57:A6:BF:2B:A8:FB:A8:1F:34:48:FC:B6
Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d
Certificate serial: 0199FC8F330264A802BD8B664A87E4B4C793
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
Manifest number: 1302
Signing time: Sun 19 Oct 2025 13:01:07 +0000
Manifest this update: Sun 19 Oct 2025 13:01:07 +0000
Manifest next update: Mon 20 Oct 2025 13:01:07 +0000
Files and hashes: 1: Bu2qohV5DT207In6bmDkzPkl22w.roa (hash: yQgjgxJo0jD6Zb5Cbl39m04H6+9TPpDsNpPjtFWzK98=)
2: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: 39KzGMkG6DDjMKc/xTK7HkMw5IAwSsIVrInrWViiHXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:33:02:64:a8:02:bd:8b:66:4a:87:e4:b4:c7:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d
Validity
Not Before: Oct 19 13:01:07 2025 GMT
Not After : Oct 20 13:01:07 2025 GMT
Subject: CN=153f29867f98527057a6bf2ba8fba81f3448fcb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2a:ed:44:b8:93:01:65:9b:7a:5c:eb:fb:e0:
fb:af:58:0c:a0:43:ef:66:d4:bd:f0:99:d3:12:ec:
07:0e:e1:48:8b:17:40:d3:20:90:2a:ab:0b:4c:76:
50:6a:9b:cd:5e:f3:5e:2c:c9:e2:b9:22:ad:b8:f4:
e9:15:04:ce:ca:fb:26:11:ea:97:d2:eb:96:63:ba:
81:0d:33:4b:16:c8:37:43:39:51:49:44:e3:44:21:
de:af:ef:af:a0:7c:02:1d:45:bb:99:8b:26:e7:25:
cd:94:36:7e:05:c0:b7:e0:0b:4f:82:dc:93:e3:d1:
68:0b:3c:c7:19:fd:2c:5b:6f:eb:3d:07:4b:a8:e2:
bb:d5:03:79:d2:ce:a6:b1:bb:8a:91:df:18:ef:89:
07:c0:d1:79:6f:3a:ea:03:f0:cb:17:77:3f:59:33:
e8:b6:fe:bd:82:4d:a4:27:45:39:b8:f1:79:70:04:
b6:d0:92:9e:9c:c0:bd:7e:09:af:c5:83:23:8b:71:
ec:23:e9:8c:ff:b2:57:c2:ee:54:97:07:19:8c:92:
03:17:77:8b:25:ab:a1:55:58:dc:07:b1:7e:d1:58:
be:c4:a5:12:5e:e5:07:12:22:9a:cc:4e:a8:26:5f:
bd:87:96:e2:2f:b0:ea:94:14:a2:2f:29:41:ef:a4:
28:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3F:29:86:7F:98:52:70:57:A6:BF:2B:A8:FB:A8:1F:34:48:FC:B6
X509v3 Authority Key Identifier:
keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:9f:db:34:3d:bf:ca:91:8f:6f:61:53:57:d3:11:f6:b3:78:
bd:f4:ba:24:c6:d4:39:87:3c:51:9f:23:35:4e:70:7c:4f:81:
1b:e1:8a:67:1f:87:9c:37:de:2c:77:29:2e:a0:e1:e9:be:34:
7f:e2:45:3c:ac:8f:32:79:7d:42:9e:5c:5e:e3:1d:9f:23:8f:
5f:13:83:e0:20:40:e3:c3:56:c5:fe:21:91:d8:97:2f:de:30:
14:17:54:6a:b6:1e:e1:eb:4d:26:48:d6:8d:9a:16:e8:e7:e8:
29:0e:7e:62:a9:35:be:a4:28:3c:e7:11:7d:0d:cf:5d:0a:21:
e0:8d:b0:64:12:8d:e4:e5:88:32:8a:44:09:0f:d4:df:b6:55:
4c:bd:00:a0:bf:d1:7d:8f:df:93:4f:88:cc:b7:85:f2:a8:ca:
83:84:83:7d:90:4f:75:b7:c4:f9:79:5a:53:90:a0:db:3b:61:
2b:68:91:57:be:39:e9:09:96:12:35:0d:cc:33:d5:d8:ed:c2:
85:0a:82:00:bb:e8:b3:3d:45:1a:ee:72:20:32:c2:4a:f1:cb:
5c:a2:0e:af:6f:f8:8a:e3:66:36:1f:2a:8d:27:d9:62:2c:26:
fe:6e:40:0f:55:fa:ed:5e:5f:09:6b:36:8f:ba:b1:b8:b4:9e:
06:b6:61:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:27:23 2025 by rpki-client