Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
File: xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft (raw, json)
Hash identifier: lhSwsI/7wVwhP7vR6b0Z/AggQNO/t+h3VwdBStmkXZA=
Subject key identifier: D4:9B:7B:F0:F9:7C:41:D0:F2:20:0A:A1:26:D4:80:FE:2B:E9:80:0E
Authority key identifier: C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
Certificate issuer: /CN=c5721737651598f56cf7195120777d7b5316f552
Certificate serial: 0199FC21CC1A07F38DE70623208E2391C8FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
Manifest number: 1445
Signing time: Sun 19 Oct 2025 11:01:37 +0000
Manifest this update: Sun 19 Oct 2025 11:01:37 +0000
Manifest next update: Mon 20 Oct 2025 11:01:37 +0000
Files and hashes: 1: nB0wD2NbLIcgL4wuuaNReH2xdaw.roa (hash: PmwRmIsMv3KSkKaHz3D8VpJ1Kt0x35JTg65eBK0T3+k=)
2: xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl (hash: TVjp7/gnmY0sfTwbxdJeDjVXB/ZKM3EDUJ5q1Nv9xiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:cc:1a:07:f3:8d:e7:06:23:20:8e:23:91:c8:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5721737651598f56cf7195120777d7b5316f552
Validity
Not Before: Oct 19 11:01:37 2025 GMT
Not After : Oct 20 11:01:37 2025 GMT
Subject: CN=d49b7bf0f97c41d0f2200aa126d480fe2be9800e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bd:ba:23:89:59:e0:52:b5:e4:83:8d:a4:bd:
15:d0:d0:86:36:d9:36:71:5c:76:5b:5e:4d:7e:31:
fc:b9:a7:ec:7a:f2:71:74:20:c3:c9:71:f6:f1:80:
2d:0a:d5:45:8e:28:dc:e5:35:fd:ae:ef:fc:a4:3d:
2f:d8:ed:62:01:c5:97:5a:2a:bf:7e:df:a4:2e:25:
da:e1:ae:60:9e:39:59:c7:8f:d1:16:74:a5:cc:c6:
3f:6c:28:22:a9:29:8a:f5:4f:d7:20:1b:53:09:08:
9c:3a:32:0b:62:06:09:e6:66:31:d5:64:89:b7:47:
bd:60:44:4d:06:18:1e:54:c4:e8:a4:ae:a8:25:78:
2f:1c:7c:32:3b:51:4d:6f:ce:f2:bc:87:81:8c:8a:
1c:61:f2:15:4f:53:ec:dc:65:51:42:a7:56:27:00:
3e:9c:99:f2:78:5d:f5:84:8a:53:59:ee:26:27:11:
2f:e3:47:ea:94:e2:82:dc:43:37:b3:a8:da:1a:d4:
e1:b8:8a:1b:35:e7:b4:ef:18:fb:8c:26:a5:b5:3b:
8d:50:d7:d0:6e:74:fc:1a:46:e2:c7:64:7e:67:8d:
d9:03:d1:cf:33:c4:c3:8f:4a:fe:48:1a:90:85:7d:
cb:6c:e1:32:26:d3:8d:ce:d3:45:1c:b2:b9:ec:9f:
ea:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:9B:7B:F0:F9:7C:41:D0:F2:20:0A:A1:26:D4:80:FE:2B:E9:80:0E
X509v3 Authority Key Identifier:
keyid:C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:c3:43:29:e3:87:c5:93:20:8f:e3:d5:c4:ab:8e:fe:af:43:
fb:68:81:9a:66:8a:b4:62:da:ab:c0:3b:c1:e1:0f:ac:5e:ee:
39:d6:c5:ca:27:e8:22:c1:f1:cd:b4:9a:f3:ac:01:c9:aa:33:
7a:d8:0d:70:21:1e:53:01:03:fc:6b:71:b1:9d:62:b6:39:60:
86:8b:ce:0a:71:f3:33:d0:ce:75:cb:6c:b4:c0:23:df:a3:4f:
f5:6f:6f:3f:0a:4f:5d:5e:3b:f0:27:d6:cd:6e:06:55:18:3f:
41:18:fe:9b:cf:a7:fa:20:9f:7f:a6:e4:ba:a8:c4:fb:1b:d1:
6f:54:e2:f0:94:ff:3c:0f:18:c7:23:ba:d6:80:9c:a2:d2:87:
29:8f:83:ae:2b:44:ac:ac:f6:d2:75:59:8e:74:83:87:9b:38:
5b:a2:32:b2:33:10:6e:78:57:6c:55:ea:b3:ae:98:b0:93:f9:
7f:94:74:6a:af:b5:4d:77:6a:fd:69:2b:e4:68:b0:c7:e8:ee:
ea:41:a8:8c:42:f8:11:7e:81:d0:26:d1:77:d3:ef:29:79:d1:
30:4f:ec:a4:22:75:a7:9f:48:4f:f2:a7:27:c7:63:fc:2a:ca:
24:5a:8c:1d:78:5b:f0:bd:5d:d0:41:a4:6c:3f:e3:4b:95:6f:
d6:11:ea:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:33 2025 by rpki-client