Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json)
Hash identifier: /Uj6BdvwosciKAztlMU/5weeS6wqWXic93jvgKHHUvw=
Subject key identifier: 9B:19:0F:ED:0C:BC:CA:B4:79:A0:34:51:EE:70:A6:C9:A8:6C:98:09
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 0199FC8F9C157B9E5A75A51B8813DBB1E64A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
Manifest number: 0E92
Signing time: Sun 19 Oct 2025 13:01:33 +0000
Manifest this update: Sun 19 Oct 2025 13:01:33 +0000
Manifest next update: Mon 20 Oct 2025 13:01:33 +0000
Files and hashes: 1: 8rSm2TYmCggVgedhJYf2d5mO9bY.roa (hash: u5F6NWnwd9MOKoxteUtWCw1+tPwzMsMfG5qFtnCO6pk=)
2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: /hxWPQCyIL5q7YhnTj8lQvE7d6dn7gmHB93Ho44GU1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:9c:15:7b:9e:5a:75:a5:1b:88:13:db:b1:e6:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: Oct 19 13:01:33 2025 GMT
Not After : Oct 20 13:01:33 2025 GMT
Subject: CN=9b190fed0cbccab479a03451ee70a6c9a86c9809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:da:bc:8d:bf:7e:f8:c0:07:5d:e0:1a:87:d0:
4a:47:d5:82:10:ba:d3:70:09:bb:0f:dd:ec:4b:0a:
07:67:7c:4e:f9:77:cc:d4:1b:06:47:0e:b8:e9:b7:
81:72:b8:fb:2b:d5:6d:86:d2:b5:57:b1:dd:19:61:
2b:48:ea:0e:cb:3c:b6:8f:83:52:62:5b:8b:3c:7d:
de:ee:32:0b:14:f5:5f:16:73:f6:6d:c7:8a:1d:14:
73:ad:5c:01:33:6c:16:41:64:1d:1e:64:81:08:7a:
03:fa:5a:68:76:2f:21:dd:ba:09:97:49:ef:c5:bb:
7d:e4:61:75:8b:a1:ec:c8:11:65:f4:94:ae:ee:35:
30:e6:53:98:d6:1d:9a:3f:e4:7b:08:f8:05:3f:69:
9b:5e:c3:08:93:8f:16:bd:de:a3:ff:d6:67:44:88:
0c:79:89:dc:e4:8a:79:4d:90:6e:05:44:05:bc:a5:
04:39:d3:62:01:8b:34:b4:95:94:86:f9:ac:40:ef:
9f:7f:62:90:77:15:90:d0:13:89:e8:61:e1:ca:d2:
cf:75:9c:46:38:98:2b:e4:de:7e:3b:0e:56:1f:fb:
cb:13:10:58:fc:f1:ac:7f:37:fe:c7:f2:24:c6:01:
eb:09:50:56:cc:4c:b3:50:70:ad:64:86:fc:e8:0c:
f5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:19:0F:ED:0C:BC:CA:B4:79:A0:34:51:EE:70:A6:C9:A8:6C:98:09
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:18:bc:d7:f3:72:8d:80:3a:a0:d9:c6:00:de:fa:73:af:73:
41:94:90:e1:f5:3c:02:20:34:ca:bd:41:18:a2:0d:b0:42:12:
97:3c:c9:94:69:db:54:80:21:e3:47:44:c9:32:b8:10:9e:97:
ed:3e:1c:18:cb:b9:e5:a8:08:81:64:b3:98:de:37:b8:48:28:
a5:ff:88:eb:84:6f:c9:37:c6:7e:b0:29:0f:44:fc:70:12:4d:
37:0f:09:57:08:0c:c1:61:cb:d9:59:e0:87:55:cc:15:f5:10:
66:c9:cb:9f:2e:e5:86:80:4c:5e:40:87:88:2f:8c:ec:28:f2:
6c:ad:d8:2a:c1:b2:2f:e1:a1:d5:5d:03:d8:83:ff:b5:56:3b:
ca:3b:b8:6c:02:c2:ed:e7:db:52:1c:4e:7a:50:3e:68:5e:5d:
0a:61:d2:dd:fb:cf:d1:6d:f1:f1:0e:80:f8:a7:02:fe:93:d3:
7a:33:80:e7:8c:9d:81:39:bd:89:21:1d:f1:9f:78:8f:81:12:
ea:21:1e:47:4c:e5:14:3f:a8:41:80:06:3f:da:43:06:89:66:
72:09:d6:e7:81:68:6b:5d:95:d9:c1:20:22:17:70:38:1d:9c:
b4:d2:19:b8:f6:38:f3:30:04:e2:c2:ef:66:5c:59:0e:8f:6b:
3d:f0:ae:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:07:06 2025 by rpki-client