Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
File: XICE2xnxE9gbZEg5P60cEyxYT80.mft (raw, json)
Hash identifier: kGkTI1+Cw1TGOFjDN/AoXTWsEe1scacMCUQIaaCyo9A=
Subject key identifier: 20:55:E9:36:D1:AE:AC:5C:3C:03:22:85:CC:68:F8:A8:51:93:88:90
Authority key identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
Certificate issuer: /CN=5c8084db19f113d81b6448393fad1c132c584fcd
Certificate serial: 0199FAD82DAB129F10B4A6F35BB01099EBAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
Manifest number: 0FE4
Signing time: Sun 19 Oct 2025 05:01:35 +0000
Manifest this update: Sun 19 Oct 2025 05:01:35 +0000
Manifest next update: Mon 20 Oct 2025 05:01:35 +0000
Files and hashes: 1: RopsaNkgpHpRL2oKJRAlnWazjYk.roa (hash: hePdDKhYq7jZJBW0X9xyUlZ0MuRDMypI160xH9eb0s0=)
2: XICE2xnxE9gbZEg5P60cEyxYT80.crl (hash: 9JGKnEHDLexwrzcSkXWLjqGpM+oFo48qIvY8KxhBABk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:2d:ab:12:9f:10:b4:a6:f3:5b:b0:10:99:eb:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c8084db19f113d81b6448393fad1c132c584fcd
Validity
Not Before: Oct 19 05:01:35 2025 GMT
Not After : Oct 20 05:01:35 2025 GMT
Subject: CN=2055e936d1aeac5c3c032285cc68f8a851938890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:03:2d:05:d5:d2:0b:2b:5b:25:f8:9e:b0:29:
cf:18:87:8b:6c:fb:23:9c:6b:38:19:05:6d:87:3b:
a3:05:2a:e6:3d:8c:9c:9f:49:34:5a:25:5a:bd:ed:
74:d1:dc:1b:5d:a6:dc:40:fc:fe:91:0e:87:d9:f6:
b6:19:93:98:a2:14:fe:71:ef:cf:11:fc:6b:ea:84:
f2:dc:78:81:63:bd:d2:27:7e:3c:53:63:06:76:3f:
b0:a3:e2:48:7c:7e:34:0e:bb:a4:c5:dd:31:e3:36:
e6:45:8f:cd:78:0c:ec:54:ed:0c:17:2d:28:e1:3b:
9f:0e:08:d4:55:29:b6:64:1e:0c:5a:36:29:d0:d6:
63:72:1f:55:cb:27:1a:39:0d:28:f8:28:2b:10:59:
23:f7:78:c2:02:25:a9:ac:c7:e5:f0:20:24:9a:5e:
d2:56:04:ce:5c:a3:a6:bf:51:63:e3:b7:66:f2:62:
ee:a9:0c:a4:4d:55:81:a9:19:b0:44:bf:61:88:f0:
18:18:d3:35:1b:24:73:69:ba:32:97:78:bc:89:b0:
a1:88:60:f3:62:87:38:fa:df:f0:32:f8:7f:b9:ff:
ee:f2:37:02:2a:23:40:6f:55:52:e5:3e:2d:b5:0b:
ea:0f:17:31:29:6a:7d:39:b8:fe:33:0d:80:64:4f:
6a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:55:E9:36:D1:AE:AC:5C:3C:03:22:85:CC:68:F8:A8:51:93:88:90
X509v3 Authority Key Identifier:
keyid:5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:46:45:e8:c8:de:67:f8:a6:8c:d0:b2:60:bf:51:2b:0c:54:
b0:40:bf:1d:4d:b9:e0:4b:f2:6b:75:a8:bc:1d:74:0f:3d:5a:
e2:85:e8:53:4f:e6:8c:e5:84:60:7b:34:ee:48:c9:b4:7c:cb:
ef:77:6d:41:21:9e:03:4f:b4:5d:6e:51:86:c1:eb:6f:05:b7:
b1:ba:af:96:08:a9:10:47:8e:49:f1:a4:80:d8:19:4b:d7:e2:
7e:2d:be:a6:e7:90:2c:4d:45:01:59:56:c2:ff:82:35:c8:35:
83:92:19:fa:1a:22:b7:4a:1c:19:98:d1:34:c6:24:74:21:1c:
59:1d:b3:22:60:a6:4a:89:65:f4:8d:a3:62:68:3c:9d:79:ab:
47:eb:b0:95:98:9a:05:71:c5:43:30:d4:c4:b1:73:58:7a:6e:
a5:99:f6:c7:11:8c:d1:39:c6:55:c8:9a:06:e5:f9:ea:92:f5:
cf:67:9d:5d:fc:5e:b8:22:41:c3:05:3b:47:dd:89:d2:b0:38:
a8:d9:45:5f:21:ce:73:51:58:3a:e8:f8:10:06:36:8e:b2:06:
a0:8b:c4:c3:50:6e:b8:9b:fc:d6:3c:13:b7:9f:68:ee:ba:df:
2a:f0:43:d3:48:a3:ad:22:4e:53:5f:0d:3c:85:41:94:7e:2d:
00:f8:97:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:43 2025 by rpki-client