Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
File: XEzh8ZMxT2k5vxw_nawjafYpWFo.mft (raw, json)
Hash identifier: 0lRsqQ4toWWf+1mgOIqttyLXJiUu2viIuDceefE9M7k=
Subject key identifier: 12:A4:C5:FE:78:E5:A7:EE:7F:98:D3:3D:B7:D0:6A:1A:EB:4C:5C:A9
Authority key identifier: 5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A
Certificate issuer: /CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a
Certificate serial: 0199FF59B83A2CFC8399DD04E012F6BD39F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
Manifest number: 16E3
Signing time: Mon 20 Oct 2025 02:01:33 +0000
Manifest this update: Mon 20 Oct 2025 02:01:33 +0000
Manifest next update: Tue 21 Oct 2025 02:01:33 +0000
Files and hashes: 1: NeVlE-PzPHn5ppNlSgj87PhylgM.roa (hash: +i1WA9cuFFrQg1WFh0BGIYlKWMIvdmOqwrDe9C8B0aM=)
2: XEzh8ZMxT2k5vxw_nawjafYpWFo.crl (hash: oHCySNTWPJaflRfIJC3tM2LKAj/yNzIGcP/jcmVsvTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:b8:3a:2c:fc:83:99:dd:04:e0:12:f6:bd:39:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a
Validity
Not Before: Oct 20 02:01:33 2025 GMT
Not After : Oct 21 02:01:33 2025 GMT
Subject: CN=12a4c5fe78e5a7ee7f98d33db7d06a1aeb4c5ca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0e:cb:51:b0:99:f8:a3:53:c5:fa:c9:e9:40:
eb:a2:a7:e8:17:b9:34:6a:6f:8b:1c:f9:3c:7b:04:
6a:16:b1:22:a9:75:25:07:31:51:cc:01:a1:cd:ba:
df:a7:ab:3d:bd:25:7e:61:72:4d:9f:b5:c7:ab:90:
35:a1:5f:c0:de:70:21:2b:58:bb:87:cb:c0:fb:26:
a1:04:26:d0:be:00:c3:f5:5c:52:b9:ef:17:36:c1:
09:9d:ad:4e:bf:c5:37:78:ee:7d:37:6b:cd:66:9f:
cd:8f:91:49:a3:81:6f:bb:02:48:60:3a:09:56:2d:
09:db:1c:a8:49:3a:96:cc:f9:e5:dc:20:15:3a:b4:
a6:8a:43:c4:14:ab:71:0a:17:5b:28:31:aa:db:2d:
45:e1:4f:dc:7d:64:94:e2:91:61:f8:52:39:ab:54:
68:eb:b2:eb:17:74:32:ae:11:f3:e9:8a:be:5a:88:
2a:ec:50:aa:f0:fd:09:84:a6:79:2a:ea:63:fe:1e:
2f:ff:8b:ac:be:40:0c:6c:00:c9:19:1b:73:2b:ea:
8a:ce:90:3e:36:68:83:c9:c7:04:a1:ce:cf:2e:68:
d5:72:9d:e3:71:6d:e0:43:f8:16:b7:d5:47:98:02:
6c:1c:59:c8:39:8c:4a:90:0c:3b:3b:6b:17:fc:f9:
2f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A4:C5:FE:78:E5:A7:EE:7F:98:D3:3D:B7:D0:6A:1A:EB:4C:5C:A9
X509v3 Authority Key Identifier:
keyid:5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:76:5a:86:9e:a1:b7:fc:bd:7f:7c:c8:99:6b:e6:08:76:99:
59:cc:c7:03:59:57:9c:c0:53:de:fd:f8:48:49:fd:8b:bc:1a:
76:25:10:96:7e:82:e4:19:28:91:4c:f1:f3:22:0b:4f:0b:9a:
07:a9:a6:85:40:f7:54:99:cd:50:8f:d8:40:bf:75:40:d7:b7:
3b:ff:f1:60:64:51:5e:fe:11:2b:a1:10:56:13:6c:07:6a:aa:
07:37:ab:ae:6b:99:2c:21:ab:97:dc:76:01:96:81:8f:37:10:
7a:07:1a:04:91:a5:69:0b:ff:4b:fe:99:81:e6:05:11:47:c6:
c8:8a:dc:94:45:09:97:0c:f7:b0:c8:8e:c5:f1:74:0a:0d:85:
de:f6:d8:70:98:bb:73:5f:ab:0a:98:c3:ce:ec:e9:31:5f:75:
78:93:19:83:c9:12:ad:c3:66:ea:a0:e4:7c:97:51:91:d2:61:
30:5b:b0:ab:89:c9:bc:60:5b:45:e3:9b:82:13:cd:5f:e0:23:
c0:e5:05:8a:e5:22:fb:b0:82:75:cc:b8:ef:8f:2a:c2:ad:65:
fd:7d:2c:c6:84:41:9e:93:9b:d9:a2:33:cd:3e:79:bb:ae:83:
96:fd:cb:0c:aa:a4:be:9b:6c:41:bd:17:48:57:cb:9f:17:0f:
ba:c1:63:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:04:07 2025 by rpki-client