Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
File: xU3YgoUsxFhrH-40wFAdXbfWDws.mft (raw, json)
Hash identifier: C9mt9ke17kMyK2P4u7iiurHm1yLA749GlRZBn/YqHNA=
Subject key identifier: 46:9F:01:13:BF:1C:87:38:28:D8:5B:92:D3:BC:21:A4:C8:61:00:1A
Authority key identifier: C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B
Certificate issuer: /CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b
Certificate serial: 0199FD340146AEADE0D9E21EE555E351EEEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
Manifest number: 08A7
Signing time: Sun 19 Oct 2025 16:01:07 +0000
Manifest this update: Sun 19 Oct 2025 16:01:07 +0000
Manifest next update: Mon 20 Oct 2025 16:01:07 +0000
Files and hashes: 1: XArLVttX_wCBnKO2u8bWM8Vk3NU.roa (hash: BE5h5QGSzKEJoBRH8Cvw/x+Z7DD6UePHMldATT7VyV4=)
2: xU3YgoUsxFhrH-40wFAdXbfWDws.crl (hash: fJ3hWy/CFJP6Rxs9q/s2jPvNuhG0/Lkm1cC3PPR2XYs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:01:46:ae:ad:e0:d9:e2:1e:e5:55:e3:51:ee:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b
Validity
Not Before: Oct 19 16:01:07 2025 GMT
Not After : Oct 20 16:01:07 2025 GMT
Subject: CN=469f0113bf1c873828d85b92d3bc21a4c861001a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c5:b3:3a:fb:16:39:08:7b:d6:30:51:2f:a7:
ad:15:44:1c:6f:a4:36:76:85:cc:77:7b:51:ee:2e:
08:fc:df:00:3a:1e:87:9e:bf:a7:54:f9:ca:92:48:
49:1e:cd:cb:e1:f4:bc:64:95:0d:3d:98:42:e9:d7:
39:34:8b:e8:23:3b:bf:46:a5:dd:1d:0f:95:f4:ce:
32:2b:77:57:67:36:08:55:83:b3:36:9e:63:67:f7:
f4:41:3c:b5:59:8c:8b:e8:c1:5f:85:89:0a:ea:31:
c1:50:3e:a1:e7:61:ae:ae:e8:37:fb:a9:c2:25:c2:
6d:ea:d9:05:2b:9d:e0:be:0d:db:67:b2:78:32:4b:
02:94:31:aa:73:ab:ef:6e:a2:37:0e:23:48:2d:9c:
0a:08:2e:dc:f1:d4:39:d6:dd:60:45:b3:55:c6:12:
6e:e7:af:7b:c1:fe:cb:68:33:b4:ee:9f:8d:cd:05:
83:b9:ff:4f:87:7f:04:74:d7:6f:bd:d6:5d:21:8d:
ed:bd:74:21:84:38:48:3e:c3:d0:ef:62:a1:91:98:
82:cf:ba:cf:bf:64:e7:13:80:5f:3e:10:43:32:7d:
eb:21:23:09:37:6b:2f:ef:f0:b6:25:96:89:c2:93:
1a:86:da:cc:74:1d:3b:52:16:3a:27:c9:d9:03:3a:
5b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:9F:01:13:BF:1C:87:38:28:D8:5B:92:D3:BC:21:A4:C8:61:00:1A
X509v3 Authority Key Identifier:
keyid:C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:90:2e:ac:f5:d6:eb:e9:7f:2c:99:52:5d:1b:f3:67:08:f0:
17:af:fc:85:de:bf:b6:bd:bc:c7:8a:02:9c:74:c5:b3:81:3e:
af:cd:e3:40:ef:30:a0:88:a8:eb:8d:b6:ac:0c:05:a7:1d:2b:
7f:f5:a8:a8:9a:80:b1:5c:3b:d3:58:4e:ca:8c:9b:7b:81:1b:
20:dc:ff:59:36:3b:6a:41:a9:1a:2e:fb:07:cf:5c:3d:8d:75:
1e:30:f6:6a:2d:62:b7:f9:25:b9:eb:60:28:9b:45:ac:43:fb:
18:7b:72:50:f5:cb:40:fd:6e:52:a2:1d:81:15:0b:9f:2c:b8:
f8:88:ed:33:2b:b6:22:46:a9:19:5a:2e:85:ed:c4:5a:30:56:
d4:f7:59:09:46:ce:82:fe:95:53:7e:5d:0b:1d:db:58:3a:9a:
d9:86:aa:b9:17:71:9d:0b:1b:24:08:13:f5:78:09:dc:2f:33:
e9:c5:7c:c1:d2:87:04:c4:30:fe:e9:c2:f0:e9:3f:af:cf:0a:
a8:0b:92:28:f8:01:c3:4e:c0:6a:ea:9a:8b:8a:ab:75:f9:56:
5b:b5:00:74:9a:38:ad:00:10:91:9f:b5:d7:62:80:ca:ec:b6:
c5:a9:c3:59:c2:f5:d0:ef:be:c5:a1:1a:2d:7e:86:89:ac:c1:
8f:a7:63:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:22:02 2025 by rpki-client