Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
File: XM814TYW15djDR4lQAwTxiEfUAw.mft (raw, json)
Hash identifier: Rb7Id174yeJTvI2nb7VGBpl4QTO+d0Zie47s3XJxdfU=
Subject key identifier: AE:AC:56:91:C4:D8:32:21:C6:D2:63:39:F3:B2:BA:F0:6D:26:BB:F1
Authority key identifier: 5C:CF:35:E1:36:16:D7:97:63:0D:1E:25:40:0C:13:C6:21:1F:50:0C
Certificate issuer: /CN=5ccf35e13616d797630d1e25400c13c6211f500c
Certificate serial: 0199FEEBBE4D9065E776AE3FD99D74E39639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
Manifest number: 9E
Signing time: Mon 20 Oct 2025 00:01:26 +0000
Manifest this update: Mon 20 Oct 2025 00:01:26 +0000
Manifest next update: Tue 21 Oct 2025 00:01:26 +0000
Files and hashes: 1: XM814TYW15djDR4lQAwTxiEfUAw.crl (hash: ClhArZZptZirlnw7DI8pWQAHSSfrCJmukZKNUov30T0=)
2: xDdJemGsGlnwmpl5xZcYblz1F1E.roa (hash: XMJejRWNcdPi5zWMZF0Nrh6edEuHq3xZbSAPEeCgs1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:be:4d:90:65:e7:76:ae:3f:d9:9d:74:e3:96:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf35e13616d797630d1e25400c13c6211f500c
Validity
Not Before: Oct 20 00:01:26 2025 GMT
Not After : Oct 21 00:01:26 2025 GMT
Subject: CN=aeac5691c4d83221c6d26339f3b2baf06d26bbf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a0:5b:09:cc:60:e1:07:de:fe:ac:97:20:04:
42:e1:50:ef:f8:31:0a:78:fc:a0:0a:bd:60:96:6b:
b2:63:1b:d0:c7:d4:8b:78:23:84:f3:10:95:e2:b1:
57:65:a9:d7:48:53:31:d5:61:95:e6:90:87:9c:fb:
6e:98:e0:77:b5:b3:7c:e3:7b:84:2d:25:12:01:2f:
21:92:d7:58:81:e5:77:50:9c:0c:5b:22:64:42:1f:
dc:ca:d8:bd:ff:4f:83:84:75:f8:b2:21:1d:e1:55:
25:5f:c8:9e:c4:90:a0:83:4c:37:6a:fc:3e:51:8d:
09:87:ee:c1:07:4f:1d:83:c9:58:95:0d:56:bc:8e:
42:6d:2e:92:e7:34:0a:19:29:a0:9c:88:71:57:0c:
66:24:e3:03:7d:57:89:58:49:8f:3f:7b:33:52:73:
5c:08:cd:bf:61:12:0f:32:40:f7:7a:ee:18:ec:b2:
3a:4c:3b:5f:58:4e:e8:8e:dd:69:30:26:64:fc:c4:
ac:2a:6a:d8:7c:f2:27:ef:04:1c:af:3c:34:c7:7a:
ab:72:d2:3b:74:bb:39:3f:fd:45:26:67:03:ca:02:
d6:42:aa:fd:ed:07:0e:6d:6e:a0:34:4b:47:f3:77:
fb:b7:b0:e9:a6:64:a9:69:92:f2:39:61:c0:20:ba:
00:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:AC:56:91:C4:D8:32:21:C6:D2:63:39:F3:B2:BA:F0:6D:26:BB:F1
X509v3 Authority Key Identifier:
keyid:5C:CF:35:E1:36:16:D7:97:63:0D:1E:25:40:0C:13:C6:21:1F:50:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:f0:8c:63:c2:95:64:6d:88:3d:37:27:14:1e:1d:05:b5:7b:
dc:f5:b9:d8:40:03:2d:c9:f1:d3:fd:d5:af:76:34:a5:72:e9:
a6:00:ad:6e:88:75:f7:5a:f0:f5:51:ba:f3:c5:9e:d5:29:29:
de:95:17:6a:1d:11:dd:bc:41:9d:2c:9d:df:e8:7e:86:ba:3b:
84:fd:34:ef:06:1e:e7:8b:61:a2:4c:21:cc:a9:18:cb:92:dd:
a5:ce:8c:84:27:4e:c8:ab:90:0c:c2:f5:75:0a:5b:32:7f:77:
37:ee:df:50:59:69:c4:91:b3:ae:08:f7:3d:6d:38:62:03:60:
5c:8a:07:ac:df:9f:14:9b:d8:c2:86:85:50:95:e0:b3:b4:4a:
82:f6:a2:69:b2:99:69:b7:d9:d9:8a:d7:39:03:9c:c8:1c:eb:
5a:66:d3:fe:0d:da:cc:3e:b5:0a:1c:b3:b0:aa:59:3f:c2:e2:
c9:26:ea:c6:23:aa:45:27:11:69:29:10:42:03:4c:60:83:bb:
4a:de:ea:d8:2e:f6:54:f3:58:f6:b1:fd:f7:85:e2:e3:1f:0e:
38:58:a5:fe:3b:62:9f:c9:aa:ff:3f:83:27:49:ac:f5:03:e4:
36:01:dc:cf:c8:76:5a:39:d9:db:26:c6:97:de:3a:ea:ab:05:
a8:64:e5:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:20:10 2025 by rpki-client