Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
File: xRlGjFXmvnFcDagFzvta7IXTKSY.mft (raw, json)
Hash identifier: x+I8bBo++9SR9ilQc+gc6JcNbalibttaAatny3xio84=
Subject key identifier: B7:FB:E0:32:3C:E1:3C:E3:70:D3:B7:91:40:04:6A:15:ED:72:0F:E8
Authority key identifier: C5:19:46:8C:55:E6:BE:71:5C:0D:A8:05:CE:FB:5A:EC:85:D3:29:26
Certificate issuer: /CN=c519468c55e6be715c0da805cefb5aec85d32926
Certificate serial: 0199FDD943B78A763D686D674EA41F961864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
Manifest number: 0FDC
Signing time: Sun 19 Oct 2025 19:01:38 +0000
Manifest this update: Sun 19 Oct 2025 19:01:38 +0000
Manifest next update: Mon 20 Oct 2025 19:01:38 +0000
Files and hashes: 1: xRlGjFXmvnFcDagFzvta7IXTKSY.crl (hash: rd8anVi3cNvt2vzOBN8ZEsewsLu14NaxpXcjXJznfig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:43:b7:8a:76:3d:68:6d:67:4e:a4:1f:96:18:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c519468c55e6be715c0da805cefb5aec85d32926
Validity
Not Before: Oct 19 19:01:38 2025 GMT
Not After : Oct 20 19:01:38 2025 GMT
Subject: CN=b7fbe0323ce13ce370d3b79140046a15ed720fe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:86:4e:63:27:12:5d:f7:41:b3:c8:21:60:d1:
2b:80:57:b8:0c:d7:de:74:e5:91:90:14:78:78:fa:
7a:d8:e6:b1:bd:7d:de:1c:7c:71:1b:38:85:61:35:
c0:8b:d4:c6:70:c4:17:c6:a6:b6:f4:2c:50:fc:6b:
ab:8e:69:de:91:c4:87:e2:6d:c3:05:e6:f1:db:f5:
b1:e2:bf:5f:99:e6:35:d7:ae:39:9c:f6:0a:7e:57:
4d:63:7e:4d:61:4d:ae:57:74:c0:c7:48:01:6b:9d:
76:0c:20:5f:5c:03:52:70:f1:26:76:16:5d:14:e5:
6d:66:d5:04:ab:ac:f7:04:3f:a7:1f:37:a6:c0:7c:
d2:9e:d0:f5:1f:bf:26:dc:c2:d5:b7:3f:02:5b:0a:
22:a1:0a:74:ee:f1:93:1c:1e:34:61:c1:be:ba:02:
2b:5d:28:b3:41:02:78:da:4d:bc:ca:ea:f9:d7:7b:
55:7f:56:2c:42:24:a9:74:23:4e:49:5f:91:f8:5f:
cf:37:f9:0e:1a:ae:f1:82:d4:57:ff:ea:c4:1e:89:
99:04:5b:75:55:a0:4e:fd:16:ff:8e:d3:f3:1f:f0:
7f:00:af:b2:ab:29:df:c9:bc:40:a3:1e:80:ee:f9:
c1:a6:ed:0a:c0:01:83:0c:63:61:39:8e:03:3d:79:
d9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FB:E0:32:3C:E1:3C:E3:70:D3:B7:91:40:04:6A:15:ED:72:0F:E8
X509v3 Authority Key Identifier:
keyid:C5:19:46:8C:55:E6:BE:71:5C:0D:A8:05:CE:FB:5A:EC:85:D3:29:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:a9:17:f0:34:8f:c2:b3:35:8f:da:90:32:dc:b7:8a:11:90:
ac:72:fa:4a:b8:eb:43:a8:5a:2b:80:b8:b0:9a:4c:a8:34:11:
17:eb:65:f1:34:59:84:2b:f9:5c:9a:8e:be:05:6f:66:e0:fc:
aa:a9:58:83:6f:42:a3:a0:c9:f3:d6:aa:b9:59:27:46:99:a2:
f0:d8:f8:82:68:34:7d:3b:87:19:65:b5:93:f3:8f:dd:5c:88:
92:bd:9c:6c:a7:3e:4d:ca:01:f8:eb:76:fc:68:37:58:ed:52:
52:de:f3:b9:68:8f:73:a8:d4:6d:74:73:11:4e:ed:61:32:69:
bb:13:67:2c:78:85:9b:6c:e5:f6:fc:f4:fc:0f:ba:a8:39:e5:
97:e5:8f:07:7d:ba:a0:95:36:45:2d:b9:8c:32:c2:83:10:44:
90:c3:55:b9:b5:fd:9b:fe:fa:b7:4d:6a:9e:59:90:03:7b:01:
62:9c:46:d2:3c:c0:3c:4b:de:1b:d9:ac:70:52:21:55:32:2e:
b0:e7:38:97:2a:5c:83:24:06:21:ea:dc:be:0f:fa:67:22:48:
8a:04:19:5c:af:c5:97:db:6a:e2:37:6d:aa:7b:ee:05:40:44:
89:85:20:1e:b9:06:ed:e7:33:7a:21:ef:b7:72:68:89:42:6b:
21:3a:dc:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:44:13 2025 by rpki-client