Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.mft
File: xLCiTzhOiW3lHlg149KEYHtJxZE.mft (raw, json)
Hash identifier: e9Y0za0lKiJysdc0PpFidFBlW02F/5KnGQthm3KWoZc=
Subject key identifier: 4D:E0:2D:31:AB:BA:71:E2:60:B8:44:40:24:0C:51:E9:A9:C0:0D:31
Authority key identifier: C4:B0:A2:4F:38:4E:89:6D:E5:1E:58:35:E3:D2:84:60:7B:49:C5:91
Certificate issuer: /CN=c4b0a24f384e896de51e5835e3d284607b49c591
Certificate serial: 0199FBEC285F67890A42A5CB6D10BAE6852A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xLCiTzhOiW3lHlg149KEYHtJxZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.mft
Manifest number: 01B6
Signing time: Sun 19 Oct 2025 10:03:01 +0000
Manifest this update: Sun 19 Oct 2025 10:03:01 +0000
Manifest next update: Mon 20 Oct 2025 10:03:01 +0000
Files and hashes: 1: xLCiTzhOiW3lHlg149KEYHtJxZE.crl (hash: 88Im8/HkViObNEG1Yt0ZaH2MYlDigSyAYSLbzE2wItA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xLCiTzhOiW3lHlg149KEYHtJxZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:03:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:28:5f:67:89:0a:42:a5:cb:6d:10:ba:e6:85:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4b0a24f384e896de51e5835e3d284607b49c591
Validity
Not Before: Oct 19 10:03:01 2025 GMT
Not After : Oct 20 10:03:01 2025 GMT
Subject: CN=4de02d31abba71e260b84440240c51e9a9c00d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1a:b4:63:76:7f:6c:8e:e3:b7:a6:82:b1:db:
66:a4:4f:29:21:a3:77:bf:ce:5e:b4:ac:4f:9c:6d:
78:af:f9:1f:74:67:96:36:f2:0c:5a:dc:a1:4c:37:
8d:61:1a:68:12:68:2a:3e:72:b4:b5:ca:e2:e2:c6:
f2:8f:b7:7b:fa:37:01:ff:bd:ef:83:2d:ec:2a:d3:
0d:58:a1:0a:83:9d:f8:e4:39:cf:1c:55:a5:30:c4:
07:b5:03:d3:f3:35:94:8f:02:df:d2:66:b1:9c:e9:
4e:42:22:bb:4a:5c:d8:01:0b:4d:ae:16:91:64:ae:
9f:35:39:3e:96:b6:db:e0:3e:91:68:4b:8d:d7:4d:
d3:5e:56:d9:53:70:88:fb:e5:0d:34:6a:60:71:a4:
e4:2f:6f:7a:1a:0f:ca:7b:a5:c9:7e:dc:79:b8:3a:
39:a2:73:f2:a5:60:05:88:6c:40:55:b2:a8:a0:3f:
bf:ce:51:57:d3:d9:21:df:44:ce:54:91:7f:18:0d:
bb:59:20:8e:22:f4:3f:f4:c4:db:0d:6a:01:55:a1:
df:5f:ca:17:26:38:8e:a0:ad:99:43:01:5e:86:71:
58:61:25:40:96:e6:b0:5c:17:72:a6:a5:4f:a0:bd:
29:75:9e:e2:5c:f5:fc:cc:64:e0:d8:09:e3:83:ed:
7b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E0:2D:31:AB:BA:71:E2:60:B8:44:40:24:0C:51:E9:A9:C0:0D:31
X509v3 Authority Key Identifier:
keyid:C4:B0:A2:4F:38:4E:89:6D:E5:1E:58:35:E3:D2:84:60:7B:49:C5:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xLCiTzhOiW3lHlg149KEYHtJxZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:11:d6:57:87:03:61:85:14:d2:74:e8:08:00:35:8f:4c:2a:
c0:77:45:cf:6c:55:22:4e:7e:c7:4e:80:b2:cc:32:ae:31:79:
c5:e9:35:d6:68:2a:8b:d1:80:a2:d3:cf:91:e3:ad:22:3b:68:
72:70:75:59:22:ce:80:6b:6a:2a:da:cd:7a:5d:5e:33:34:e9:
ae:b0:48:82:b9:b4:a6:8a:c7:db:8c:9d:bd:54:a2:d9:ea:d4:
e4:2b:e3:00:9d:5f:b6:e4:39:c1:19:90:c1:45:93:43:27:49:
17:1f:f3:01:e8:2d:4d:03:08:32:6f:8f:ff:26:4d:f0:db:b4:
2e:5b:b9:be:3a:fe:33:b2:8d:cf:22:90:96:e8:cc:6b:4a:4f:
f7:ed:38:8b:bd:d5:7e:8d:d1:77:32:a3:d5:10:c4:4c:a6:db:
a0:52:22:79:52:f6:81:c5:39:b7:01:ef:a8:7c:0e:51:5b:9d:
d1:7f:bb:93:96:10:43:13:f3:f2:f0:a5:45:23:dd:c3:b0:ff:
4c:a3:0a:ca:eb:c0:b6:b5:04:59:1a:11:bc:99:06:af:cd:a8:
4c:12:96:45:1e:f1:6c:75:63:65:1a:6f:7f:da:01:e2:47:2e:
f7:ee:d5:ae:a2:d1:c7:04:eb:ec:17:a5:4e:04:56:5e:a8:97:
f3:9e:8a:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:18:47 2025 by rpki-client