Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
File: xdXOafzPDGu44rJmfh44-5QPPSY.mft (raw, json)
Hash identifier: u+BEgi86/J+kjGse1CYBPlvbRjoHHWy6X4XcCkiWwm8=
Subject key identifier: 71:39:61:AB:68:B5:8B:F1:79:2D:FB:C5:94:5A:40:76:B6:AF:CA:51
Authority key identifier: C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
Certificate issuer: /CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Certificate serial: 0199FD6B06FD64C8791820BD191D3EE609DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
Manifest number: 0B4E
Signing time: Sun 19 Oct 2025 17:01:13 +0000
Manifest this update: Sun 19 Oct 2025 17:01:13 +0000
Manifest next update: Mon 20 Oct 2025 17:01:13 +0000
Files and hashes: 1: 6dkBUwL-mhaODMyRqo4g1V5Aqm0.roa (hash: Qmi5vwRBC8G/em6HsgOnkDIH/4egeMg5iAbwYtXG1+s=)
2: xdXOafzPDGu44rJmfh44-5QPPSY.crl (hash: dIaH6dpWncJ3dyKNhkqOfRNuCWaWVpQ718SNX130vsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:06:fd:64:c8:79:18:20:bd:19:1d:3e:e6:09:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Validity
Not Before: Oct 19 17:01:13 2025 GMT
Not After : Oct 20 17:01:13 2025 GMT
Subject: CN=713961ab68b58bf1792dfbc5945a4076b6afca51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:af:a6:4f:24:ac:e3:cc:f5:61:22:f5:7b:cb:
bb:1d:6c:06:e7:0f:4b:64:ce:fb:62:ac:51:4e:08:
b7:21:5e:81:25:36:ea:7c:5f:52:dd:90:db:d8:50:
f4:07:17:4e:21:72:eb:76:dc:80:6d:95:f1:6b:58:
98:e7:d7:2d:b5:15:b7:a3:e3:f7:4b:c0:ff:60:d9:
d9:2b:cb:d7:2d:05:7c:2f:ee:c4:fd:1e:7a:83:bb:
8e:95:b1:f7:eb:25:dc:0d:6c:af:8d:44:e8:6e:36:
84:60:15:bb:e0:f4:c9:4d:f6:65:07:36:34:ee:53:
f8:e8:ef:6d:de:2d:0f:22:8b:8e:7e:59:5e:65:c0:
29:f5:b9:f4:0f:14:79:2a:25:bb:24:10:62:11:05:
ba:0f:99:7c:9f:81:7d:25:bc:fd:b6:df:f0:94:fa:
8a:10:8c:03:e2:83:b7:28:58:f3:e0:4d:ab:60:74:
be:53:53:9a:7f:90:a1:0c:92:94:21:86:ab:06:25:
e8:91:96:11:a7:ed:34:c5:45:1a:5d:de:ec:11:8c:
56:99:5a:c6:c6:0b:1a:8f:98:cd:35:d0:20:ac:a6:
73:02:3d:64:40:40:44:a0:d8:af:4c:e2:6a:7d:e4:
4c:99:96:9f:e2:f5:01:d9:47:ac:7e:55:ac:e4:ee:
0a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:39:61:AB:68:B5:8B:F1:79:2D:FB:C5:94:5A:40:76:B6:AF:CA:51
X509v3 Authority Key Identifier:
keyid:C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:60:41:83:38:b2:18:a2:1f:2c:77:0c:4d:f2:de:46:d3:73:
fa:b9:43:0e:d1:82:cb:8f:a2:29:08:da:4c:83:b8:fb:cb:9c:
20:d5:c4:62:aa:6e:c8:c3:6c:2b:f6:7f:6f:c0:0a:28:5b:79:
77:59:b7:fd:90:a0:28:31:00:38:20:6a:d2:31:bb:7a:ea:42:
5a:8e:e8:05:f6:24:a6:e0:46:ae:d8:09:c8:d7:24:99:2f:1e:
26:b2:19:8b:2e:97:c2:31:de:f5:28:da:55:6d:f5:47:32:a6:
63:77:40:cc:ef:43:47:fb:47:b2:cf:45:5e:3c:79:0d:60:89:
79:77:94:09:0c:82:aa:e9:3b:23:a5:89:30:46:e3:79:84:03:
86:b9:83:53:c2:1f:68:10:1b:94:45:b6:fa:65:05:7d:9c:b8:
21:0b:47:3b:b2:47:87:f8:ed:32:b1:85:2d:4d:8c:61:b3:39:
58:a9:d0:64:ca:00:cf:cc:6b:07:9c:9d:7b:1e:20:42:3c:75:
34:f4:2e:a6:ea:a7:fd:9c:9e:c3:10:8d:88:1d:5b:6d:0b:c9:
ab:0e:42:32:1c:a4:69:f3:85:fe:7c:28:4c:3c:5e:a3:8c:36:
07:ac:44:fc:e4:61:5d:38:84:ab:20:9f:ba:af:81:c0:75:a4:
d7:b6:3e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:00:43 2025 by rpki-client