Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json)
Hash identifier: 3MVReFA3UBVuPxWy80iGeSBSejJASdgIYKAi8f5JB18=
Subject key identifier: 48:65:93:64:3D:F7:9D:2D:89:E3:F8:5F:7D:DA:BC:39:02:7A:50:50
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 0199FC21CD514FE314D607694DEE5F076819
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
Manifest number: 16F5
Signing time: Sun 19 Oct 2025 11:01:37 +0000
Manifest this update: Sun 19 Oct 2025 11:01:37 +0000
Manifest next update: Mon 20 Oct 2025 11:01:37 +0000
Files and hashes: 1: 4SxEa8qHfL0SdS-yvynVjEWywI0.roa (hash: ed273NQ5dggxiwmHaUzsS7LYiMx/0KEG21fx026Qijc=)
2: 57zAUxjN80d98_hrUg6wNGuh-LQ.roa (hash: qIcET8+9I+XlvyugPkuqmk4yArAibC2n8LmahOzKwL0=)
3: D8TVIpbhKokDS9trBBqJHsFT1UQ.roa (hash: buVD8eTr7vS6C640rVcFTDAjpCVFYAxsjVTpolrqfNA=)
4: V-G5n9JBF2fuQBXkHR943IM1SJk.roa (hash: PktwOhATCRnu/fMCAW8Roob3cNUQ8DCkE9sG1tOGfQ0=)
5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: m0x940i06IfUnEZ3SfJQMCSXf4MHsSr1TPZLB9edMT0=)
6: rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa (hash: 65NB0UfxYYmSvSLb5gS9zELjlvrzXWC3McdcTIR7Hxk=)
7: tIc5dJ9row9Jpwnimlce4tYbp44.roa (hash: ouwAo45RW/R/dO1EFuBCaboweb6Z3RjFTDf5e9DgnQU=)
8: xv_S9Q_lixnhLdeB2FeY6-83q40.roa (hash: fpHqpuP8WhUb/qgqx71BT4D9l/LEKw+tKbvv5QvJ1WU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:cd:51:4f:e3:14:d6:07:69:4d:ee:5f:07:68:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Oct 19 11:01:37 2025 GMT
Not After : Oct 20 11:01:37 2025 GMT
Subject: CN=486593643df79d2d89e3f85f7ddabc39027a5050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e8:1c:93:09:0a:84:10:e4:10:19:d5:e9:6d:
ec:a9:cd:d0:02:a9:df:fb:e7:17:73:2d:cc:bd:60:
e3:b6:5c:0a:e0:41:e9:0f:2a:07:1e:ab:95:36:66:
db:54:36:94:ad:56:df:c2:65:64:dd:d6:c1:5f:db:
4f:08:6b:4f:f9:89:c0:cd:b8:07:74:c6:8b:df:00:
db:21:5f:af:52:b0:ef:6b:79:5d:c5:49:22:90:b1:
08:98:26:b8:16:a4:a3:b2:e8:fc:05:fe:f5:85:f6:
89:0d:d8:1a:ae:6c:bc:15:ef:26:63:c4:f4:08:70:
df:2e:f5:2b:29:6a:94:39:0b:de:25:75:f5:32:a2:
e5:6e:1d:05:ff:23:c6:d6:41:5f:28:76:01:b9:83:
21:7f:a4:17:06:d0:12:83:e9:5c:f7:8f:ad:6a:d7:
89:79:04:b8:07:1c:72:f0:e7:67:e5:9c:9a:ab:41:
9d:b5:36:fa:c6:ae:22:d5:24:88:18:55:8d:e1:4a:
af:17:be:1a:7c:d6:2d:a3:2e:f5:1b:a6:46:3f:60:
f0:22:2c:91:75:e3:76:ce:61:0c:cb:f6:b0:bd:e9:
b7:e5:33:3d:2b:48:4a:0a:4f:66:ca:6b:cb:9d:46:
87:38:c4:38:3c:4f:78:0b:e1:f8:ec:2b:fc:74:8a:
23:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:65:93:64:3D:F7:9D:2D:89:E3:F8:5F:7D:DA:BC:39:02:7A:50:50
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:e2:bc:1e:ad:83:a4:b6:77:c5:fb:02:11:30:66:6f:b5:f7:
3d:a0:6b:06:b1:38:b0:49:8e:11:bf:c4:58:f6:5b:1d:0f:5b:
fa:5f:d9:b6:b7:e6:ea:4b:80:f6:f8:ce:ce:a3:17:18:7d:1e:
c0:c6:95:8a:8d:4c:f4:35:3c:f8:a0:d1:d0:a2:e9:73:51:e6:
38:4f:b5:1b:82:10:19:e7:f3:02:c9:24:d2:6e:ee:d8:ae:1d:
58:ea:76:c7:f0:31:63:0a:a9:4e:74:85:d4:09:e9:ad:d4:f5:
31:be:5b:d7:1f:b3:94:98:fd:2a:fc:4e:2c:1f:54:da:cb:ba:
e6:d3:df:8f:82:62:54:ab:28:c5:d3:49:e7:37:ef:45:18:b7:
0d:a0:c1:e3:0a:d9:b5:57:4a:a0:9e:78:79:6d:bc:db:21:fc:
18:b4:5e:51:93:78:64:15:5f:df:be:c4:c7:96:0e:4d:67:10:
1e:5c:ce:dd:ef:10:26:2c:af:e8:74:58:ac:40:8f:ae:6c:ab:
52:32:a1:dd:5a:54:08:d9:d6:e0:2f:8b:f2:5c:cf:c9:4c:39:
7b:bd:2a:56:ce:a6:c0:75:b1:b5:2d:38:04:45:18:8f:60:8b:
55:ae:ae:3c:44:02:cc:31:60:2d:2a:39:8c:d6:65:e8:56:86:
26:7f:9f:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:22 2025 by rpki-client