Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.mft
File: X765nwZBwgALrAWjJrQYpMApS3o.mft (raw, json)
Hash identifier: A7NFsNssD90Qxm4LEnYg0x4iqu1LAqXklZlcJmT5CNU=
Subject key identifier: 7C:EE:CB:50:D1:A1:7A:F8:78:8B:B6:C9:47:01:03:EB:27:19:CF:AB
Authority key identifier: 5F:BE:B9:9F:06:41:C2:00:0B:AC:05:A3:26:B4:18:A4:C0:29:4B:7A
Certificate issuer: /CN=5fbeb99f0641c2000bac05a326b418a4c0294b7a
Certificate serial: 0199FBEAA620A0FDD0FAF2BAD1347F94710E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X765nwZBwgALrAWjJrQYpMApS3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.mft
Manifest number: 01D4
Signing time: Sun 19 Oct 2025 10:01:23 +0000
Manifest this update: Sun 19 Oct 2025 10:01:23 +0000
Manifest next update: Mon 20 Oct 2025 10:01:23 +0000
Files and hashes: 1: X765nwZBwgALrAWjJrQYpMApS3o.crl (hash: xyKjw6SpAQd/WvQHfvQTqzjO5oMSi1+HK2fgf/VZIBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/X765nwZBwgALrAWjJrQYpMApS3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:a6:20:a0:fd:d0:fa:f2:ba:d1:34:7f:94:71:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbeb99f0641c2000bac05a326b418a4c0294b7a
Validity
Not Before: Oct 19 10:01:23 2025 GMT
Not After : Oct 20 10:01:23 2025 GMT
Subject: CN=7ceecb50d1a17af8788bb6c9470103eb2719cfab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:42:18:e1:a4:d0:fe:50:3f:71:58:63:3e:7c:
39:1e:24:cb:92:be:31:b6:35:2c:ea:68:19:6f:ab:
00:7f:ff:51:bb:f2:76:a3:8a:f4:65:af:08:73:2e:
83:f0:37:cd:30:13:aa:1e:3d:3e:52:11:4f:6f:f9:
2f:82:08:fc:28:af:1f:f7:d7:58:93:01:2c:c5:2c:
07:c6:bc:ab:12:15:11:1b:5d:23:c7:55:bc:c3:a0:
af:1f:d7:01:79:0c:36:21:7e:91:e4:de:c3:9a:07:
fd:53:31:e9:70:5c:7f:72:72:14:f5:8b:d9:42:3b:
d9:07:fb:dd:a9:d7:93:fc:90:05:4a:2e:fc:4b:9c:
08:c5:4c:33:07:a9:bb:1b:7c:be:bf:72:3c:91:da:
53:06:6e:9e:b4:9b:ab:38:44:70:8d:7b:e1:85:03:
ef:c8:8c:54:0e:fb:18:27:2e:aa:15:df:2c:41:4c:
1e:be:82:a4:19:57:9e:e7:af:92:68:cf:fe:58:20:
1a:a5:b7:80:c2:0c:cd:b1:3f:9c:e3:51:31:5f:c5:
4e:45:54:2c:94:ee:9a:1c:be:9c:b3:5b:53:c2:5a:
40:ae:6c:ea:17:43:a9:38:9c:85:88:de:45:e3:53:
79:c8:74:f9:b0:40:cf:d5:ba:6f:96:28:91:16:c7:
a6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:EE:CB:50:D1:A1:7A:F8:78:8B:B6:C9:47:01:03:EB:27:19:CF:AB
X509v3 Authority Key Identifier:
keyid:5F:BE:B9:9F:06:41:C2:00:0B:AC:05:A3:26:B4:18:A4:C0:29:4B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X765nwZBwgALrAWjJrQYpMApS3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/653dac-a69c-48e5-b7c8-575a2080896a/1/X765nwZBwgALrAWjJrQYpMApS3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:50:19:78:af:24:79:53:22:e9:6e:46:aa:ec:fb:a6:43:dc:
42:f8:d4:7e:bb:d5:e8:af:8e:08:da:5c:a9:39:98:15:96:6a:
fe:30:89:76:e0:f1:e7:0c:13:5d:62:5a:07:fb:92:30:25:59:
3c:b1:08:57:5b:23:14:18:5c:2e:a9:4f:b2:fc:d4:b8:be:00:
7f:b0:df:d9:72:7c:79:61:23:97:3d:37:14:de:0d:c5:1c:a0:
e1:b1:8e:2e:8f:6e:ce:76:e9:00:fb:d1:2b:2f:42:35:e9:6a:
5f:15:5d:42:d9:e9:47:c8:f7:88:28:da:d7:7e:90:e3:91:ed:
be:89:8c:f2:15:a3:5d:95:30:36:de:0e:20:66:de:fe:29:b4:
36:b3:ee:5d:cc:7c:7c:42:69:e3:64:15:4a:0d:62:5a:3a:c8:
1d:81:f1:d3:0c:3d:2a:c0:c4:81:39:a5:91:16:17:f5:c8:e5:
17:94:9d:42:8d:02:da:0a:f7:39:af:cc:11:34:04:4e:54:b2:
e6:04:8b:5d:ba:3f:33:4d:20:67:2c:d5:9a:73:2c:f6:17:f6:
08:a4:cb:ef:19:95:a6:36:8d:0d:97:7a:d4:b8:58:c2:73:2e:
a9:4e:1e:77:fa:bf:4d:0e:b8:ed:20:9b:fd:d6:a7:c7:a7:5e:
06:19:9d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:27:11 2025 by rpki-client