Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: PNGNhgFzqj0hc7ahmh+twsSJNdF3yEbhDMQ2Die9pdY=
Subject key identifier: 6D:0D:33:4C:4E:92:3A:4A:3D:8E:20:61:E9:09:85:66:11:29:6C:0A
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 0199FB0F11CBAFC19C540AEBB9A5B1EC9E2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 16DD
Signing time: Sun 19 Oct 2025 06:01:32 +0000
Manifest this update: Sun 19 Oct 2025 06:01:32 +0000
Manifest next update: Mon 20 Oct 2025 06:01:32 +0000
Files and hashes: 1: kMIoPYj99g2K5sWXNcD0fsxHkHM.roa (hash: FopABAV6PSptIp6OTBNiTRgtYU723NWq9ChEZhzR3FM=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: nOYkFsmomqDw487Ct5uS33V4Fo0Q9cTiFWRL41daVo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:11:cb:af:c1:9c:54:0a:eb:b9:a5:b1:ec:9e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Oct 19 06:01:32 2025 GMT
Not After : Oct 20 06:01:32 2025 GMT
Subject: CN=6d0d334c4e923a4a3d8e2061e909856611296c0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:50:1f:dd:84:a7:cc:f6:07:78:e8:99:f3:24:
cd:3b:dd:fe:a3:c7:69:4a:28:85:d1:40:aa:3f:3e:
29:2e:ca:89:95:2d:d0:0a:21:26:e1:09:8c:a1:c8:
14:3e:ec:42:d5:d2:a9:7a:b0:b8:2c:30:0c:27:99:
d3:51:cf:57:e9:77:74:e8:b8:99:fa:66:7e:68:b9:
fe:7d:67:3f:ad:8c:60:db:48:e0:7a:57:96:dd:a4:
c8:39:53:dc:90:fb:4d:62:70:76:b3:df:b8:f4:b7:
7a:b6:3d:b2:41:96:16:24:16:2c:7b:6f:02:86:c6:
94:e6:81:8b:ca:0a:aa:d6:d3:bb:93:c2:3d:a7:cc:
ab:52:f4:3e:ad:82:c0:2d:57:2b:7e:e9:94:e1:ed:
ba:e3:74:47:6a:83:fa:2f:4a:4f:0a:63:48:52:5d:
68:09:12:4b:dd:f1:f3:5c:6b:82:9a:42:3a:c7:83:
c1:fb:f8:90:0a:06:5a:da:7e:94:30:3f:ce:d1:3f:
72:de:0e:4f:dd:cb:12:f8:09:95:82:c3:5a:95:ab:
b0:95:79:c8:71:21:de:bc:73:f3:14:90:df:b7:1c:
57:ba:4e:22:1a:10:6b:6f:6f:aa:69:94:fa:91:06:
a9:d0:d4:9c:38:c3:e3:a9:92:56:9d:a4:0a:e6:2e:
a4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:0D:33:4C:4E:92:3A:4A:3D:8E:20:61:E9:09:85:66:11:29:6C:0A
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:b3:63:9f:87:fb:ef:77:75:8e:24:20:bc:07:8f:0e:90:08:
ad:e0:6b:a4:58:f9:27:b5:65:63:b3:1d:a6:80:06:2d:4c:98:
e9:67:d0:cf:c8:96:ea:d1:fa:81:c8:23:f7:9c:97:65:16:34:
90:32:04:a6:eb:21:4d:35:b2:0a:31:e7:fa:f5:b5:18:90:d4:
64:29:75:81:f9:b5:8b:5f:cc:dd:a5:7e:9e:90:63:c3:4c:52:
bf:dc:e1:54:83:74:c8:78:f5:ef:e4:d3:a8:b7:d6:51:06:0d:
ce:8a:59:b8:70:67:0a:7f:f3:3f:97:a2:7d:db:03:c5:a7:11:
7f:12:71:6c:95:64:5a:2f:00:cd:42:7a:fe:ed:4f:76:02:b3:
89:a6:b8:a3:4a:45:74:3d:46:72:72:65:81:78:f0:2d:32:71:
0d:24:08:eb:99:c1:70:4a:e5:fb:11:13:ea:fd:68:20:af:56:
49:89:66:02:5c:50:61:9c:ae:39:09:e7:fa:e2:49:2c:98:a4:
3b:a7:a7:d8:e6:72:65:52:f4:e8:22:c0:2e:1c:6c:c1:4b:65:
9e:4f:d5:14:f3:1c:34:71:54:1a:03:11:6f:2f:30:5e:11:49:
cf:62:a6:21:93:83:80:43:72:23:b8:0a:9e:90:bd:8a:64:4b:
50:d6:d0:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:28:55 2025 by rpki-client