Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
File: Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft (raw, json)
Hash identifier: IiZIroJyBk6lqSNRnDSQEhhhrsXomg7kB6WXfBdZ8Ok=
Subject key identifier: 49:7A:79:BF:F4:62:55:4F:5A:D2:45:72:82:FA:7D:EF:2B:4E:13:E5
Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Certificate serial: 0199FBEAED155AF269A425C8EF545F056BEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
Manifest number: 0BD3
Signing time: Sun 19 Oct 2025 10:01:41 +0000
Manifest this update: Sun 19 Oct 2025 10:01:41 +0000
Manifest next update: Mon 20 Oct 2025 10:01:41 +0000
Files and hashes: 1: Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl (hash: DHrNX9pm8DcAf7W1H7uTFhH8Maiv7W4YZv0J3zOu82o=)
2: fcJb-6V4S8Ggt4XkeQ4z4NeOvBg.roa (hash: Ok0E8qecmwKHIVZlR2uj+ZosbjuqbuM99KMf84z3ECc=)
3: p4_ii_5CQnYwGbo3_8Nwum53Fnk.roa (hash: yPjrncDLc3pAW7ob7SlQAI0rDTeDl6C5CrdsoONunQ0=)
4: uR0GCgMzcLoo7kMNpml9uCS8CMM.roa (hash: QU71NgSIyG52g0tQUOMPeRAsoX9aQ7+oGv7C6ynHtWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:ed:15:5a:f2:69:a4:25:c8:ef:54:5f:05:6b:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Validity
Not Before: Oct 19 10:01:41 2025 GMT
Not After : Oct 20 10:01:41 2025 GMT
Subject: CN=497a79bff462554f5ad2457282fa7def2b4e13e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:28:b3:a3:95:cb:43:b4:7d:7d:74:42:7c:60:
cc:e6:a6:f3:e3:4a:af:6a:51:a5:8d:0f:26:10:e7:
b8:db:a2:07:f6:7e:ba:c5:61:5b:d2:aa:0a:45:15:
83:23:77:8c:0b:b3:e9:6f:eb:84:e6:31:1a:a0:ea:
0b:76:46:5a:34:1d:a5:4b:ad:16:e9:c2:e8:f2:60:
f5:6e:6e:a0:98:04:aa:4a:50:22:57:2e:66:cb:3e:
a8:1e:27:40:e0:0e:6a:38:f9:5f:80:9a:26:6d:68:
4d:5f:05:94:aa:95:f5:08:9f:d6:08:43:3d:58:70:
3d:73:76:95:2b:1e:d6:87:34:04:a1:01:e7:6f:81:
cf:03:0f:1a:64:37:cc:74:3d:21:6d:b1:b7:ca:80:
38:53:71:4b:c6:c6:04:ab:60:83:ea:60:30:69:fb:
ab:a0:f2:18:99:f5:28:83:7f:1b:46:90:9c:67:a5:
3b:2c:8b:0a:30:3b:de:01:6e:bd:e3:70:b4:af:6e:
50:1c:06:7e:c2:cb:e8:04:12:c6:bf:1c:b9:78:35:
e5:bb:27:b6:86:df:b5:ce:ed:f7:3d:f7:f9:06:12:
b4:8d:da:3b:9c:9b:2c:ee:b1:a6:f9:cd:05:33:ce:
44:d1:70:75:48:ee:30:39:5a:75:5f:49:05:d3:d0:
d0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7A:79:BF:F4:62:55:4F:5A:D2:45:72:82:FA:7D:EF:2B:4E:13:E5
X509v3 Authority Key Identifier:
keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:1e:0c:2e:31:34:20:8b:17:36:76:9f:e0:df:b0:22:a4:22:
fd:66:d1:3d:23:10:7a:1f:9e:29:0c:16:04:bb:ad:69:c9:24:
c7:bd:34:57:88:02:78:3e:96:45:69:47:c6:1a:ff:15:66:2c:
b2:81:b4:e2:93:cf:f6:fd:84:57:45:f2:86:b7:21:2d:8a:58:
97:9e:6b:16:fd:a7:75:6d:80:0b:7b:e4:a7:0a:1c:a4:1a:0a:
9a:be:4f:77:08:8c:5d:8d:3a:92:b9:9e:be:05:2c:54:54:0c:
16:71:4b:51:97:b4:35:a9:15:9f:2f:e0:ea:a3:8a:14:fc:02:
05:7b:bb:65:17:3a:a9:d8:61:86:ef:56:65:01:0c:36:5a:c4:
25:d7:c2:df:9d:a8:0e:28:62:3a:8e:b1:7a:14:c0:a5:e6:93:
3e:c6:18:44:f0:f0:af:1a:c9:8e:b3:a3:cd:bc:b0:75:b7:84:
e7:48:e5:09:55:67:22:9f:d0:28:c4:a3:34:65:19:8c:ea:36:
49:60:8a:67:e9:d3:e9:44:05:5d:a1:72:58:de:7e:b7:a1:e2:
43:88:46:ef:d7:8d:2c:8a:ca:42:13:44:c6:4e:a7:45:27:84:
e2:4d:80:9a:d8:0c:de:b5:52:13:d9:6b:e1:24:b6:f1:ff:4c:
e5:2b:e5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:55 2025 by rpki-client