Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
File: XX9jQBQHwcx5excDToE9IlT5dz4.mft (raw, json)
Hash identifier: 4PYYDm7o/9luewkdm0THDuPMoiWg5Xqx/vg9igc7jrM=
Subject key identifier: 77:C7:C3:B6:BC:86:68:B5:5A:FA:E3:F0:DF:B7:7A:3C:F0:7D:01:F3
Authority key identifier: 5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
Certificate issuer: /CN=5d7f63401407c1cc797b17034e813d2254f9773e
Certificate serial: 019A01EC229F2F9F6B56D80B4848277F7A15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
Manifest number: 0D7C
Signing time: Mon 20 Oct 2025 14:00:43 +0000
Manifest this update: Mon 20 Oct 2025 14:00:43 +0000
Manifest next update: Tue 21 Oct 2025 14:00:43 +0000
Files and hashes: 1: XX9jQBQHwcx5excDToE9IlT5dz4.crl (hash: C5/FXK/APqLynRcQE1vnTMr2tJVjuWxJq27S2r/Q5ko=)
2: d_GxW2d1XGEYH2UR9fC88UUW3QY.roa (hash: uor8f2a3ITsSo8ZIn5M2P4KmPLaok++1jFjqHJFf6Ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:ec:22:9f:2f:9f:6b:56:d8:0b:48:48:27:7f:7a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7f63401407c1cc797b17034e813d2254f9773e
Validity
Not Before: Oct 20 14:00:43 2025 GMT
Not After : Oct 21 14:00:43 2025 GMT
Subject: CN=77c7c3b6bc8668b55afae3f0dfb77a3cf07d01f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:39:bf:8b:a5:61:cf:30:c5:fe:40:2b:69:d8:
70:3e:44:9f:1d:1a:8b:a0:f9:b3:a4:75:63:88:a7:
4c:7f:a7:cd:98:e5:95:41:c7:9c:82:ae:0f:e2:c8:
19:c5:0d:2b:f3:8c:10:3d:33:a9:9b:2c:5d:50:21:
36:34:86:81:be:03:36:d6:3e:cc:2a:6c:32:bc:e2:
42:4b:36:d6:88:78:82:74:b5:5a:b9:3a:cb:e5:67:
47:86:82:82:d0:a8:00:bd:c4:d6:f5:66:de:4e:4c:
4c:46:b8:86:55:ee:92:c0:fa:23:4e:47:50:5b:b8:
0e:1e:f1:c8:38:11:5c:dd:2e:e5:54:b7:20:74:ae:
5e:09:8b:32:f6:5a:bf:29:7f:34:1b:46:43:04:ec:
59:f8:45:29:6b:78:a0:f4:ff:61:82:73:cf:b2:b5:
34:32:6c:fc:df:35:ac:f0:d7:3b:28:33:ef:70:51:
7d:50:9f:b8:51:3d:58:84:73:c2:de:d6:d2:44:04:
bc:e8:ec:d5:4b:27:bb:07:ed:bf:f0:d1:65:d3:59:
21:f3:7d:74:72:ac:e9:53:87:9f:82:73:9f:91:d3:
4b:c0:6c:b7:fe:ee:17:ea:6a:04:76:47:fa:ae:d7:
b2:86:ba:1f:8f:f9:6b:82:6f:1d:a2:84:13:23:5d:
ea:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C7:C3:B6:BC:86:68:B5:5A:FA:E3:F0:DF:B7:7A:3C:F0:7D:01:F3
X509v3 Authority Key Identifier:
keyid:5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:d6:bc:d1:37:3d:8c:51:35:f3:ba:f9:da:cb:e6:ef:04:ac:
0e:76:37:fd:73:f7:5a:2d:b5:9c:f1:9c:76:45:ca:27:8b:2b:
c1:78:00:ac:61:af:a2:5c:55:0f:8e:37:b0:f5:13:99:24:51:
57:73:bc:fc:5d:e3:1d:9f:34:5a:4c:13:85:3f:be:6d:91:ec:
19:dd:58:8e:40:76:3c:1f:77:f7:bf:9a:b6:8f:22:0a:37:b6:
59:cd:6c:61:49:fb:b7:5a:5b:3a:86:be:68:d9:4b:4c:8b:07:
23:b2:1f:fd:3b:e0:85:46:6c:8d:ef:93:1b:7e:78:a4:c4:20:
5f:5d:ac:37:f0:d7:f6:00:30:6b:78:1c:18:51:28:96:ce:33:
95:31:9c:d4:39:f0:08:52:b0:7e:65:20:01:06:69:44:27:ff:
a8:7d:df:10:86:6d:ad:2f:40:25:66:2c:b5:b0:49:db:0c:f7:
5e:0e:c1:c3:b4:fe:9b:72:d9:66:5e:9b:7f:e2:c5:ba:34:29:
6c:b7:90:59:2e:70:e2:e5:69:68:cb:13:f8:8c:56:59:f3:af:
bd:9d:69:59:30:94:e9:4f:44:24:55:5f:67:d1:e6:fb:9b:c6:
51:21:e2:40:d6:27:a1:c3:35:a3:27:e8:e0:a1:84:dc:16:25:
28:dd:9e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:06:24 2025 by rpki-client