Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
File: XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft (raw, json)
Hash identifier: QUyvUpK3/shOocdk0xssLiGWXKr3KewxgqZoAlg4TcY=
Subject key identifier: 44:87:FF:60:E7:AC:52:CA:8A:4E:DC:60:94:06:AC:2C:35:FB:CC:FA
Authority key identifier: 5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF
Certificate issuer: /CN=5e4098f206850488b72cdde8387c3181c63f8cdf
Certificate serial: 0199FDDA6BB1A7DD915909FF1FB6B1899C02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
Manifest number: 0493
Signing time: Sun 19 Oct 2025 19:02:53 +0000
Manifest this update: Sun 19 Oct 2025 19:02:53 +0000
Manifest next update: Mon 20 Oct 2025 19:02:53 +0000
Files and hashes: 1: XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl (hash: +NGC3hLDuKrhYdnTvIV5Z6loQhaW9eKRQUFRMwPbFDg=)
2: Zalmb79lgnJ8ZqrgJMNHmIB0_a8.roa (hash: qT5QBRK21+1uxjdCx9gW03qYws/IDIrgYu8jrzg9fD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:6b:b1:a7:dd:91:59:09:ff:1f:b6:b1:89:9c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4098f206850488b72cdde8387c3181c63f8cdf
Validity
Not Before: Oct 19 19:02:53 2025 GMT
Not After : Oct 20 19:02:53 2025 GMT
Subject: CN=4487ff60e7ac52ca8a4edc609406ac2c35fbccfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:28:12:ca:eb:bb:fc:10:7f:a7:3c:9d:f3:c6:
d4:19:a0:51:2f:13:5a:69:8c:0c:4c:28:e6:49:4c:
cf:f8:22:0b:20:43:a0:c9:55:94:ef:b0:a2:78:22:
80:1f:44:d0:33:d3:e0:14:5f:39:aa:1d:da:b6:99:
a2:c7:4d:4b:82:a7:ad:28:7a:b6:4c:09:59:8f:3b:
26:b4:d6:51:4f:77:66:d8:02:d6:87:2d:8d:18:71:
b7:87:0c:58:76:7f:78:ee:20:07:95:75:90:09:2a:
a1:a8:c2:47:09:04:be:40:d8:49:3f:02:51:0c:6b:
ef:33:bf:7f:aa:36:c8:ed:38:03:f6:af:5f:f8:fa:
07:39:d4:09:6d:17:7a:72:04:88:d8:8c:75:bf:36:
42:de:36:41:b6:b2:9b:e3:75:7a:22:09:8e:fc:bc:
b0:a7:da:c1:d1:41:cc:e6:d6:9a:a8:e7:64:28:62:
b1:9d:25:1f:55:3b:86:48:3f:bb:39:b0:3e:6a:2f:
d8:2a:ee:36:97:2a:21:e2:46:82:ce:ec:27:f9:aa:
33:9a:4e:5a:45:d6:c9:67:e3:09:bf:0e:1d:a9:26:
c3:c7:b4:c0:51:b1:0e:02:a3:6e:38:79:90:ed:95:
81:3f:03:c2:3f:fa:f0:41:f8:d7:7c:1b:1a:6b:6e:
44:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:87:FF:60:E7:AC:52:CA:8A:4E:DC:60:94:06:AC:2C:35:FB:CC:FA
X509v3 Authority Key Identifier:
keyid:5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:11:f9:d1:12:34:6b:07:62:10:36:1d:15:3e:35:90:4f:76:
71:a2:d9:b7:5d:0c:ac:48:aa:bc:82:65:4c:89:c9:c9:7e:f2:
db:70:c6:61:82:98:ef:72:bd:9d:34:9e:2f:fe:a7:6e:ee:aa:
38:f0:99:51:ed:68:5c:fb:83:4b:5b:70:83:de:c5:78:89:ff:
1d:7f:bd:fa:e9:04:73:f1:34:a1:51:fb:23:4c:35:f7:0a:8f:
56:b0:4d:38:56:f5:90:91:7a:93:8e:2d:9f:a7:d2:2b:16:d0:
b0:05:cd:63:ae:a1:ed:75:40:de:0a:c6:4a:51:2e:40:b9:1b:
3d:19:d4:48:33:5d:9d:5c:dd:5e:0c:8e:20:31:1c:54:cb:ab:
24:41:1f:b9:24:f1:e7:56:59:f5:bc:65:c2:4b:95:21:42:7c:
4c:97:44:24:3a:c9:32:86:20:eb:09:5b:08:33:2d:9f:d8:e2:
00:5d:d9:4a:2d:32:b5:6b:7d:ba:e1:4c:16:04:77:10:24:96:
7e:a9:a7:75:f1:61:27:ff:42:61:7e:aa:95:e7:1c:11:84:1f:
a2:91:9c:0f:71:25:43:25:bd:c5:db:b1:59:62:20:6c:c1:08:
9b:03:c3:eb:3d:01:fa:c2:d8:f3:44:c6:cb:24:5b:a3:5e:0f:
cd:95:dd:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:20 2025 by rpki-client