Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
File: XeYTaCVSAQKY86aUoA18WQYGC5U.mft (raw, json)
Hash identifier: gqMAJVNErcfX6gIRBJZPR4PLw7xTT5QvlO4vi6qM9ek=
Subject key identifier: A7:B9:BF:B9:39:65:05:C7:CC:39:37:8E:DA:BC:F3:BC:E1:50:7F:29
Authority key identifier: 5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
Certificate issuer: /CN=5de613682552010298f3a694a00d7c5906060b95
Certificate serial: 0199FAA16D5494D1BA9DB25BAD7382F6453B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 04:01:47 +0000
Manifest this update: Sun 19 Oct 2025 04:01:47 +0000
Manifest next update: Mon 20 Oct 2025 04:01:47 +0000
Files and hashes: 1: XeYTaCVSAQKY86aUoA18WQYGC5U.crl (hash: 86LS5vjbKZZfQbRWWLtip+QtlLUHMDnGH8YD64Z9W0M=)
2: auYlcZnEp-yqavQsok9_TPLHAq0.roa (hash: kbe3quRrlIxTjuDhfKrAisNkV8HOTBuxWR/raJshlU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a1:6d:54:94:d1:ba:9d:b2:5b:ad:73:82:f6:45:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de613682552010298f3a694a00d7c5906060b95
Validity
Not Before: Oct 19 04:01:47 2025 GMT
Not After : Oct 20 04:01:47 2025 GMT
Subject: CN=a7b9bfb9396505c7cc39378edabcf3bce1507f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e1:ed:4a:38:dc:b5:b1:87:c7:3a:9f:e6:1c:
f8:ef:f6:01:1c:b8:89:a2:99:7d:ee:e3:5a:e8:e4:
37:cd:52:7c:8f:3d:10:74:1e:a3:8a:dd:3a:6f:a4:
60:13:18:07:22:18:29:13:f6:c2:a7:ea:56:4e:22:
8f:21:c0:72:31:c6:56:d5:02:c2:e1:0e:e0:0b:c1:
0a:1a:4b:11:55:09:cd:1f:f1:7b:7c:51:f9:66:97:
0a:45:5d:30:59:10:1b:c3:f8:ba:82:38:d9:a7:17:
d6:df:6d:b8:9a:78:84:23:7e:e2:71:2d:ed:fc:f1:
5d:dc:fd:ec:0c:b7:ff:70:3a:70:90:c9:47:6a:7c:
5d:f2:1b:8c:bb:dc:a5:15:ba:ed:a5:15:4c:7d:58:
33:90:dc:d3:ac:7d:87:61:0a:8f:9f:24:5f:d6:da:
5f:96:c4:43:be:6c:9b:90:b7:f9:2f:bf:8e:f5:0d:
57:0a:55:3d:cb:15:3d:ab:d8:e8:83:78:24:06:77:
2b:5f:bf:7b:bd:fc:ae:e5:7e:f5:8b:7b:60:e8:81:
84:24:24:f5:db:65:a0:30:68:5c:f8:e4:65:23:eb:
da:7b:3e:1f:e6:9c:b0:2d:8d:32:80:36:d5:45:2b:
70:1b:07:4f:06:8d:21:1b:e9:6e:1e:5b:41:05:0e:
2d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B9:BF:B9:39:65:05:C7:CC:39:37:8E:DA:BC:F3:BC:E1:50:7F:29
X509v3 Authority Key Identifier:
keyid:5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:9a:8c:3a:f1:2f:c0:ba:02:5f:39:4a:4e:3a:e2:46:7d:bc:
92:65:6e:b4:f0:cc:6d:19:bc:50:db:5c:49:4f:92:8c:9d:ff:
2e:3b:c5:7d:e6:46:8b:b2:a2:20:6d:50:94:16:79:80:38:59:
b9:31:1b:0e:b8:8d:a7:18:d1:bc:78:36:ba:1d:07:d6:3b:21:
a8:b1:bf:ae:f3:a9:3c:d0:15:fc:6b:25:ed:ca:e7:58:f9:d1:
66:0d:1b:cf:5c:fd:62:3a:bc:2b:c4:24:b1:8d:60:59:f9:a9:
40:e2:f0:44:06:bf:b5:8b:40:cb:b9:e4:5b:40:88:22:fb:13:
ec:73:a9:12:de:5d:be:46:b8:51:eb:13:04:22:8a:a0:96:65:
c6:86:5e:a4:7d:4e:be:dd:49:8a:7b:1e:da:1a:83:fe:86:a0:
79:d0:32:cb:1b:95:4a:a2:45:4c:f4:a5:c6:ab:c3:a6:e1:b5:
2b:2a:89:62:c7:e3:4d:79:3a:8a:f5:fe:9e:84:d1:2b:a3:6f:
b5:ba:9e:b4:2e:1f:28:5b:f0:83:91:44:15:55:f8:37:73:a6:
a7:10:af:72:21:bf:53:25:13:9c:e6:b6:52:af:9a:29:c5:83:
0f:18:83:f9:ce:99:88:99:75:3c:a0:38:2d:64:d8:20:ba:f9:
16:84:28:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:01:10 2025 by rpki-client