Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
File: XchzCYds7EBPAHv22gQ0wL3GLYs.mft (raw, json)
Hash identifier: ZTGFUdzikLkEjlkm/NNSu8Y1J/D6J5h/IBcOlo3WNvI=
Subject key identifier: 3C:C8:BE:F1:79:4F:DD:39:F5:FE:D2:14:AA:A2:06:80:71:ED:CB:DA
Authority key identifier: 5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
Certificate issuer: /CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Certificate serial: 0199FBEBCF36101062420DBFD42C6A002CCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 10:02:39 +0000
Manifest this update: Sun 19 Oct 2025 10:02:39 +0000
Manifest next update: Mon 20 Oct 2025 10:02:39 +0000
Files and hashes: 1: XchzCYds7EBPAHv22gQ0wL3GLYs.crl (hash: e+/4/Ra+HoLB13cFCf8MoYhXS6W/C67O590hhcu+LOA=)
2: jcQt-MOzJfjybIamiUioFB-oBn4.roa (hash: vxzopxc1UXJfcspNz3GsRCac77+K0gwBOQSeqjgarpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:cf:36:10:10:62:42:0d:bf:d4:2c:6a:00:2c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Validity
Not Before: Oct 19 10:02:39 2025 GMT
Not After : Oct 20 10:02:39 2025 GMT
Subject: CN=3cc8bef1794fdd39f5fed214aaa2068071edcbda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:69:d2:50:a6:de:ba:4e:d6:e6:df:a0:4a:96:
ae:1f:f5:79:5b:6c:4e:31:d9:bd:28:45:cd:47:c6:
e1:20:00:50:c4:a1:77:6f:ca:5a:87:ae:10:5c:74:
de:f3:e7:b4:01:71:0f:ff:de:4b:96:93:74:b3:11:
52:09:a2:32:81:af:38:24:99:a9:fd:99:b3:04:74:
f8:48:7d:45:98:16:33:7f:72:5b:83:c3:63:16:77:
4b:b8:57:54:6a:62:15:11:5d:f3:68:8d:4c:c0:91:
e4:ea:9b:65:49:89:0b:e4:5f:c3:03:4a:77:84:40:
b8:5f:f6:ba:be:ac:c3:52:f0:6b:c4:e9:2c:73:e4:
43:cb:3d:27:db:4c:82:08:48:2d:c1:6c:09:85:d9:
0b:2f:24:90:2e:ba:c6:21:38:c0:aa:75:2f:0b:68:
45:7a:93:f5:6f:4f:4d:17:1d:79:ac:01:5f:78:16:
c1:c7:81:87:e7:76:47:af:85:84:fb:07:2a:9b:69:
3d:ed:87:b6:bc:a6:76:7d:4a:16:5c:d0:70:a7:9e:
ad:8d:40:f1:5e:e3:d3:bb:bf:15:4c:8d:fb:92:09:
e2:4f:40:36:4c:45:23:a1:9b:f7:eb:4c:f9:8e:02:
0f:4f:72:39:6d:f6:93:88:f4:60:0e:5a:5c:60:f3:
3d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C8:BE:F1:79:4F:DD:39:F5:FE:D2:14:AA:A2:06:80:71:ED:CB:DA
X509v3 Authority Key Identifier:
keyid:5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:39:b8:eb:9f:14:24:7c:62:8f:3f:96:3e:b4:26:44:ea:14:
7d:4d:d5:9a:44:db:e2:db:fe:9e:c4:5c:9a:6b:93:b7:da:ad:
9c:8c:66:94:d4:94:94:9a:cd:21:bd:13:26:91:f7:41:78:fc:
05:6f:a3:1e:e7:30:9d:4c:13:ec:9f:41:da:ce:79:4a:1e:d7:
c1:02:da:01:e4:c0:cd:30:a6:0d:3f:9d:1d:6f:68:11:76:8f:
fe:7b:3c:ef:5a:a0:01:0c:d8:3e:44:cc:c4:6c:d1:bd:c0:f4:
27:17:5f:a5:6a:32:88:06:6b:7f:81:cf:8e:96:f7:b7:e1:cf:
b0:4f:4a:95:bc:e2:d1:b8:df:a6:c4:64:71:2b:fe:ae:40:0a:
cf:87:c8:06:b1:96:45:52:c3:39:fc:3a:bd:72:d3:47:98:c6:
99:ce:80:f5:f1:ca:7d:2b:b1:e6:6e:72:ed:9c:1d:85:5c:de:
a5:b7:89:49:e3:77:42:13:0f:be:3c:a0:81:b3:26:34:0d:46:
1f:de:21:e8:74:95:34:66:69:31:a5:07:17:a9:c9:1e:10:fe:
71:69:34:0a:c8:f0:49:2e:fb:6b:76:c8:59:47:b6:9c:6f:a6:
6a:17:bb:3d:bf:05:f5:64:62:9e:01:c9:5c:47:48:d8:4d:ac:
49:ea:c9:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:18 2025 by rpki-client