Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
File: _XF_OrY5RaG-c5wrOiWJvqVd224.mft (raw, json)
Hash identifier: egP32zVuD9HkxGk2wuB59kGEZ816fY5pQ2MHOcNzX54=
Subject key identifier: 0D:5A:30:C0:28:7A:59:7E:29:9B:0D:D0:84:3D:23:DF:EF:A4:FB:A3
Authority key identifier: FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
Certificate issuer: /CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Certificate serial: 0199FCFDA7CB155040ADED83E4561268FE04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
Manifest number: 0C94
Signing time: Sun 19 Oct 2025 15:01:45 +0000
Manifest this update: Sun 19 Oct 2025 15:01:45 +0000
Manifest next update: Mon 20 Oct 2025 15:01:45 +0000
Files and hashes: 1: _XF_OrY5RaG-c5wrOiWJvqVd224.crl (hash: 9iR8f0OaxWN/KK2q/nF5uHEoXQYVSrzA6+lxm1XnB0k=)
2: gzdyy5qInnSa0M6b956pVUzgC-k.roa (hash: 2Ow3V4pucXvBImXLn02gpmIFTSdf3VU+/V7SnyCKOjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:a7:cb:15:50:40:ad:ed:83:e4:56:12:68:fe:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Validity
Not Before: Oct 19 15:01:45 2025 GMT
Not After : Oct 20 15:01:45 2025 GMT
Subject: CN=0d5a30c0287a597e299b0dd0843d23dfefa4fba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d1:77:0c:9d:cb:16:1e:e7:58:f4:e0:c6:02:
02:57:20:5c:d1:bb:d7:cd:85:43:f6:5d:5b:0c:2e:
b1:39:53:44:40:06:cd:5c:ba:00:7a:a1:98:14:e6:
a1:11:0e:d7:3a:38:4d:33:9f:95:5c:f2:1f:63:bf:
0a:2e:ad:9b:d0:62:be:ed:f3:07:ec:4b:79:15:52:
44:bf:37:83:61:56:4f:c0:85:9c:8f:9f:5b:08:0d:
31:ae:02:62:7d:23:53:67:f2:6e:dd:c6:f7:90:a1:
95:15:a7:1a:cf:f0:52:c5:85:0c:ea:35:49:32:33:
db:b9:86:34:76:3f:1f:70:ba:7b:3d:d6:ef:e1:a5:
6e:99:70:65:56:f4:5b:3c:e3:f4:ce:49:7f:72:5d:
10:43:2e:7d:03:f2:20:1e:46:6b:ff:ad:42:18:3b:
8e:6a:a3:e1:a1:f8:b2:8f:c3:1f:3e:39:34:4c:f5:
8e:92:93:3d:22:88:e5:3a:57:ec:bb:af:02:c0:38:
eb:b8:e2:f4:23:ef:8e:79:ca:11:5a:03:64:79:3f:
bf:b3:bb:ad:67:d4:25:15:36:4d:00:6c:f2:99:68:
da:9f:39:23:1a:3f:64:30:ce:f4:ca:b6:28:20:05:
a8:03:af:fa:08:85:14:7e:f3:54:b7:5f:b5:52:80:
67:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:5A:30:C0:28:7A:59:7E:29:9B:0D:D0:84:3D:23:DF:EF:A4:FB:A3
X509v3 Authority Key Identifier:
keyid:FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:2e:42:f2:3d:f6:cf:05:d6:e3:23:79:fc:8c:ba:1d:18:ca:
4b:7d:c6:f3:9e:51:87:27:67:8d:32:24:86:1a:92:51:f9:40:
7e:b6:4e:cd:b9:45:27:bf:a1:63:cb:c3:7e:b4:3b:1c:dc:92:
d8:e8:5e:20:09:ce:f1:ae:5b:ef:b6:a6:31:b5:f0:5f:0b:9a:
1e:66:ef:7e:57:93:38:69:46:52:df:ac:7d:3f:d8:b7:d7:51:
bf:9c:2f:70:f7:c3:f2:1e:fb:8c:5c:d9:f8:86:a2:db:f9:cd:
e8:59:07:a2:8e:b3:4e:35:d1:8e:a6:00:39:74:f7:1c:02:bd:
c0:d3:ae:c4:89:cb:ae:07:9a:c6:e8:53:de:6a:fa:e1:40:64:
06:e1:ca:39:0a:48:9a:fb:bb:23:58:b7:d7:2d:9c:c2:78:4c:
9c:d0:76:b4:32:34:79:6f:ad:25:8d:06:1d:cc:15:a6:a9:2e:
dc:2d:71:8b:5b:0d:64:7f:7f:3f:b3:f2:27:1c:83:ca:a8:d2:
5f:07:b5:05:92:4f:fe:00:8f:71:f3:d2:86:78:54:02:43:28:
ed:ba:87:94:ee:60:72:5e:8e:b9:3b:30:e9:8e:8b:7d:82:41:
17:fb:41:de:d1:a9:05:ba:c4:0c:da:23:30:74:43:a2:0d:ad:
36:46:c1:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:52:40 2025 by rpki-client