Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
File: Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft (raw, json)
Hash identifier: V74aXAlrzDai8IRbFZtX8Z9VT62ebS4F3lPJlBbobzU=
Subject key identifier: CD:B2:3B:07:61:8E:B4:C1:06:92:3C:F5:47:E1:DD:62:FA:41:6D:B7
Authority key identifier: 5E:4F:1A:32:A3:7E:08:39:00:AB:A5:61:70:8E:52:AB:23:4E:3A:38
Certificate issuer: /CN=5e4f1a32a37e083900aba561708e52ab234e3a38
Certificate serial: 0199FBEBDE02B5967CE7F289FFCEF01BC521
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
Manifest number: 06A0
Signing time: Sun 19 Oct 2025 10:02:42 +0000
Manifest this update: Sun 19 Oct 2025 10:02:42 +0000
Manifest next update: Mon 20 Oct 2025 10:02:42 +0000
Files and hashes: 1: MjurembtvVeEftl3x1ofb2bHb8o.roa (hash: LMEfB1EahjyEN1vkkgX4Rq92rZ+ObZyJ1Ue8yFCn1Pk=)
2: Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl (hash: +hkvjH1gpC9cCQh7T7aGhr0BUwyzOXeuBErpMcOHHmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:de:02:b5:96:7c:e7:f2:89:ff:ce:f0:1b:c5:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4f1a32a37e083900aba561708e52ab234e3a38
Validity
Not Before: Oct 19 10:02:42 2025 GMT
Not After : Oct 20 10:02:42 2025 GMT
Subject: CN=cdb23b07618eb4c106923cf547e1dd62fa416db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:17:a3:4c:f5:8d:6c:b8:7c:3c:19:12:23:90:
09:4b:26:94:99:cc:54:a0:38:70:0f:dd:68:ab:c7:
3a:84:f1:fa:0c:e7:3e:a0:86:3b:69:29:b9:14:37:
bb:d7:59:47:57:b8:45:56:d0:eb:b9:c5:c1:e4:78:
c2:a9:68:b9:42:6f:1f:9b:27:13:81:3d:4b:f6:b8:
73:90:bb:4d:ae:17:c7:f6:b8:22:b5:bb:f1:4b:35:
47:6b:74:07:d3:cf:96:47:53:a2:58:45:d8:bc:c3:
67:03:09:94:d5:f0:66:42:43:18:0c:4d:3d:e8:ef:
49:ac:1d:d5:8f:7c:af:ab:01:f7:ea:64:c1:d8:09:
0a:57:44:8b:a0:cf:1b:71:bf:d7:12:3d:5e:d7:50:
d2:32:a0:8d:ab:41:34:e1:88:bf:c5:4e:06:10:c7:
74:93:16:81:d8:e7:47:52:2c:8b:89:af:84:c8:83:
28:3e:bc:91:33:09:e0:e9:e4:11:a4:a2:a1:a9:f3:
ec:05:25:ce:2b:86:d5:77:63:bd:18:73:2d:9a:ba:
9a:90:c9:25:95:23:64:e4:c7:29:28:41:03:de:fb:
bc:c5:5b:81:b3:6a:b5:93:99:8f:73:2e:4a:df:5c:
05:8f:63:64:3c:75:ee:e8:78:5a:33:17:7e:fa:52:
e9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B2:3B:07:61:8E:B4:C1:06:92:3C:F5:47:E1:DD:62:FA:41:6D:B7
X509v3 Authority Key Identifier:
keyid:5E:4F:1A:32:A3:7E:08:39:00:AB:A5:61:70:8E:52:AB:23:4E:3A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3ef921-29ed-40cf-b454-4c2acb78309e/1/Xk8aMqN-CDkAq6VhcI5SqyNOOjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:cf:53:67:e4:f0:ce:06:aa:d8:a5:5c:26:bd:49:0a:00:93:
69:2e:62:38:f6:b9:d8:58:45:1b:46:39:f8:ef:2e:6d:6e:9c:
62:58:63:30:ea:55:25:bf:87:40:99:e9:b8:4e:35:5e:dc:64:
3d:1b:6e:50:7b:ab:a4:9e:47:ce:39:87:47:8f:ef:0d:9b:f1:
d6:4e:2a:e3:ac:37:08:76:65:a0:b6:a2:ed:37:e8:f3:04:8e:
87:68:9c:0d:78:fb:8b:60:6f:d8:df:ff:32:8f:ec:20:2e:70:
ea:be:33:f5:6f:4b:c3:89:47:68:bd:68:dd:d1:57:f5:58:61:
3e:68:77:10:e3:74:c7:99:9c:e7:ad:28:41:0b:cc:84:1e:5c:
02:53:8d:da:de:1c:3e:69:15:f7:76:2d:9d:74:df:f7:53:e1:
a2:0c:00:a4:b4:b7:4b:09:b8:f5:6c:a2:33:72:fb:e6:42:a9:
83:28:b4:65:4a:e8:6a:40:14:20:8b:5b:ca:d5:65:fd:a8:88:
28:f7:c4:2a:79:27:46:e6:09:86:ee:3d:b1:f2:79:52:e1:3b:
37:e6:d4:84:34:c8:02:01:e8:d8:ed:c2:3e:c9:87:7f:16:ee:
f5:a6:5c:e7:5a:af:ce:5d:70:4a:fd:74:ce:6e:33:d9:0b:bb:
40:7a:d0:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:37:47 2025 by rpki-client