Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
File: XKn3Xcos07OTU-AwCzC6W2KXais.mft (raw, json)
Hash identifier: y1cz7Miua8M4OIlozLrDXaQohmxHsxcKTnj3iqvd+V4=
Subject key identifier: 21:82:5C:49:0E:DA:AA:01:F5:5B:3A:23:F2:84:3F:90:09:9A:87:88
Authority key identifier: 5C:A9:F7:5D:CA:2C:D3:B3:93:53:E0:30:0B:30:BA:5B:62:97:6A:2B
Certificate issuer: /CN=5ca9f75dca2cd3b39353e0300b30ba5b62976a2b
Certificate serial: 0199FCFDA2AFA0FE337713A330F71FF89621
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
Manifest number: 0A6C
Signing time: Sun 19 Oct 2025 15:01:44 +0000
Manifest this update: Sun 19 Oct 2025 15:01:44 +0000
Manifest next update: Mon 20 Oct 2025 15:01:44 +0000
Files and hashes: 1: XKn3Xcos07OTU-AwCzC6W2KXais.crl (hash: h6uT9zpgBD69LqqH/nAGLEMhE5+pkZWWG+d+Gk0Xqe0=)
2: b9Hu80_829heeLvFjfJdJz5nCTc.roa (hash: j+SJeADqUhFu2qLu6938DWITw4JSWTcM1pVfvfeWeP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:a2:af:a0:fe:33:77:13:a3:30:f7:1f:f8:96:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ca9f75dca2cd3b39353e0300b30ba5b62976a2b
Validity
Not Before: Oct 19 15:01:44 2025 GMT
Not After : Oct 20 15:01:44 2025 GMT
Subject: CN=21825c490edaaa01f55b3a23f2843f90099a8788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9e:0f:8d:da:00:31:fa:6d:73:1b:f5:21:41:
b8:a7:51:75:33:1a:bd:0f:34:d1:96:40:80:bf:5e:
8f:8e:47:88:e9:c1:1d:5d:b3:f2:17:cd:3e:0b:e1:
e9:02:16:76:c8:23:8b:8b:01:3c:78:62:4b:02:fc:
b4:1f:64:8a:cb:25:d6:45:94:13:fd:f7:65:4f:40:
89:79:06:b8:3d:f8:3f:14:1f:28:05:08:a7:b5:ca:
5c:89:aa:f6:88:73:18:f9:e4:ad:b2:7f:ba:c4:2f:
cd:80:0a:1f:ef:19:ff:0f:80:63:8b:c2:49:90:54:
47:15:3d:29:7f:d4:1e:47:90:3f:9b:8e:14:83:3b:
9d:5e:e5:61:3d:07:44:d2:7f:f3:3d:a0:1a:5d:74:
48:35:20:97:2f:fc:84:a3:f4:f7:94:39:4f:7c:f0:
f9:d8:b5:74:bd:a5:63:88:61:67:ae:51:ae:82:07:
b3:d1:bb:7c:60:cd:a6:55:1f:d1:ce:1c:f4:14:b8:
de:44:6f:50:a9:f7:57:ca:91:3a:e7:0f:5d:cb:18:
f5:da:9b:92:11:ff:b6:2a:02:d6:e7:1c:a3:43:f4:
38:da:e1:7c:a1:19:07:0d:17:4c:fd:7a:ab:f3:22:
af:07:a9:96:53:9d:c4:9a:dc:b9:20:61:5a:1c:c2:
63:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:82:5C:49:0E:DA:AA:01:F5:5B:3A:23:F2:84:3F:90:09:9A:87:88
X509v3 Authority Key Identifier:
keyid:5C:A9:F7:5D:CA:2C:D3:B3:93:53:E0:30:0B:30:BA:5B:62:97:6A:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:5f:88:31:f0:ac:ed:8c:b0:a0:93:68:1d:9d:40:0e:20:95:
96:f9:9e:32:fd:de:a8:d7:f0:ee:49:ef:ab:e5:48:c5:ef:11:
41:3f:29:ca:9b:d7:5e:1e:a6:39:f3:66:da:1b:77:8f:23:a8:
7d:61:eb:ec:a4:dc:8a:70:69:c2:88:c9:32:e3:30:77:bc:4d:
9a:76:68:8e:21:00:ee:d3:0b:e4:77:90:bd:ed:40:37:79:4f:
32:76:9e:4f:a9:2c:c2:fb:ea:46:0c:9c:58:ec:f6:db:3e:4a:
c1:b7:a5:23:0d:dc:d6:bd:35:3d:e3:68:70:dd:14:cd:7e:2c:
95:10:7a:f5:a5:73:14:18:06:76:68:50:13:1f:36:b2:f3:c5:
7d:fc:7a:08:83:d0:da:e9:c1:6e:b8:1d:30:85:32:6b:86:33:
62:cd:d6:17:15:ee:ac:c3:70:d6:ad:ed:a3:18:f0:38:4a:9b:
ef:a9:90:b8:77:e7:a2:b8:02:ee:a8:47:a6:be:d2:0f:68:60:
e4:ad:dd:77:9f:ea:fd:93:60:dc:d5:93:0f:8c:2c:c9:a0:22:
d8:27:e4:73:c9:a8:9b:d8:6e:24:f2:4b:60:f5:4f:6b:cc:ef:
ae:2b:71:07:8c:c5:27:6e:6e:ed:9e:75:93:17:26:6a:53:03:
97:51:82:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:33:51 2025 by rpki-client