Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
File: XEKIRvhNgYNh9rnApGOy5XQqFJs.mft (raw, json)
Hash identifier: 7knZBMW0giyxdwPVJw2VNkq7Au63m+jYBGHGYoksXKE=
Subject key identifier: 19:F9:34:7A:03:A4:17:3A:01:16:59:69:BC:1F:54:1C:F9:41:87:C5
Authority key identifier: 5C:42:88:46:F8:4D:81:83:61:F6:B9:C0:A4:63:B2:E5:74:2A:14:9B
Certificate issuer: /CN=5c428846f84d818361f6b9c0a463b2e5742a149b
Certificate serial: 0199FB7D0781E569795916A3F55C6F9AEAFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
Manifest number: 36
Signing time: Sun 19 Oct 2025 08:01:39 +0000
Manifest this update: Sun 19 Oct 2025 08:01:39 +0000
Manifest next update: Mon 20 Oct 2025 08:01:39 +0000
Files and hashes: 1: NGqc3PXNR68XW7YXcEn1g2VSKl8.roa (hash: +/PHsnyXGebFnTuzYemBsGLnJ0LY3kDT60X4/tWYA0k=)
2: XEKIRvhNgYNh9rnApGOy5XQqFJs.crl (hash: zG7+rVRvHEARS88H0x7HpZIQm2xTyd5ixYQYPnz5M3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7d:07:81:e5:69:79:59:16:a3:f5:5c:6f:9a:ea:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c428846f84d818361f6b9c0a463b2e5742a149b
Validity
Not Before: Oct 19 08:01:39 2025 GMT
Not After : Oct 20 08:01:39 2025 GMT
Subject: CN=19f9347a03a4173a01165969bc1f541cf94187c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:64:72:87:e5:e2:1e:e3:14:bc:f4:f9:a5:60:
00:34:2a:83:50:01:e8:fe:b0:3d:28:18:06:87:df:
3e:0b:d5:94:0b:89:74:14:ea:7a:29:a0:c5:12:38:
a3:e2:40:35:fc:5d:73:1f:39:5f:6a:d2:ab:1a:a0:
8b:bd:c2:eb:a9:bc:e3:0f:b4:ce:f5:71:e0:d7:ac:
45:6e:73:3c:a5:fa:0a:bb:7d:cc:70:78:59:c7:99:
6d:3f:89:e2:ae:c9:91:0d:28:c0:d2:32:fe:34:c8:
fe:8a:d2:ac:44:a0:fd:3c:8d:da:33:fd:ee:3c:57:
01:a8:f4:23:40:7c:cb:7d:d6:07:38:52:77:ce:e2:
1c:92:05:e3:cd:8f:4d:5d:7f:18:ee:d9:42:d4:5c:
ba:7c:40:da:f6:ef:7d:a6:aa:27:7f:fa:6b:08:64:
b6:17:3b:05:6d:2a:3b:11:7f:cd:9d:96:a6:2b:ef:
8f:68:05:eb:3e:dd:11:ca:35:e8:df:98:b4:02:de:
5f:c9:5d:92:b7:2a:c9:67:fd:02:38:25:29:d7:55:
df:38:65:9c:2e:fa:3f:7e:15:72:90:3d:74:a0:ef:
65:ab:29:e0:14:42:23:9c:5f:da:c8:87:03:c8:33:
4f:ff:c0:18:bf:07:5b:ef:41:81:ba:60:15:f0:05:
67:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F9:34:7A:03:A4:17:3A:01:16:59:69:BC:1F:54:1C:F9:41:87:C5
X509v3 Authority Key Identifier:
keyid:5C:42:88:46:F8:4D:81:83:61:F6:B9:C0:A4:63:B2:E5:74:2A:14:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:94:c1:51:76:20:9b:36:e4:0c:ac:64:98:76:4f:cd:81:eb:
f4:6d:a5:18:ab:96:0f:af:d5:77:98:6e:25:44:5d:62:fa:28:
30:45:0c:9d:75:7b:3c:53:f9:02:17:ff:3b:87:07:c9:35:bc:
73:de:a0:83:4d:80:65:0f:a5:e6:c2:ee:a9:11:84:9b:d7:ff:
e3:63:04:56:32:17:61:94:39:d6:8d:13:f8:fb:16:3c:c6:d2:
06:d1:29:83:4a:50:8a:9f:d7:33:73:27:bf:d3:37:27:bd:57:
6a:a0:ff:e8:f7:ad:73:27:ba:37:dc:4d:b2:8b:e2:50:8b:59:
a3:ec:18:1b:93:66:b9:2d:85:d9:71:44:a3:43:f9:78:d4:28:
d2:6e:4e:57:01:be:d0:23:31:3e:ff:2f:f4:76:1e:0f:9d:08:
5b:4f:74:80:2e:39:f2:a3:92:e2:8e:88:2a:b5:1e:90:aa:16:
29:09:fd:c5:e4:3b:01:8b:03:28:ba:5b:34:a9:2d:c1:13:38:
a2:58:70:41:69:21:8e:c4:32:87:70:53:87:aa:20:bd:34:45:
76:ad:69:eb:9a:c1:4a:d6:a6:1f:e6:d8:4c:a7:41:ab:fd:97:
81:6e:2e:39:0e:9b:a2:bd:a3:d9:75:a4:8f:ec:f4:46:91:cb:
15:82:3c:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:05:00 2025 by rpki-client