Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
File: xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft (raw, json)
Hash identifier: h3bZdfsXQ/2j3Zt0dE9GYhUA2GbP/AZzeobCbjOqlPs=
Subject key identifier: A2:8A:4F:CF:AC:77:05:04:9F:8B:A7:B1:D8:9D:09:81:9B:1D:A6:3C
Authority key identifier: C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
Certificate issuer: /CN=c59c41daf0092b703bc059ba1353f071ed12199b
Certificate serial: 0199FCC651D67A3B998DBF18455E27EB84BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
Manifest number: 1675
Signing time: Sun 19 Oct 2025 14:01:19 +0000
Manifest this update: Sun 19 Oct 2025 14:01:19 +0000
Manifest next update: Mon 20 Oct 2025 14:01:19 +0000
Files and hashes: 1: cGueQe1h8duehogXBQfbjMf187c.roa (hash: SeygR9MEl7TBvHViQ7GiY7qErcMbLwgXcJ9lbMPWx3c=)
2: xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl (hash: M63eckaTw4SZb6W76nT4ewiN07QirHzK7ud7Fo60Fco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:51:d6:7a:3b:99:8d:bf:18:45:5e:27:eb:84:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59c41daf0092b703bc059ba1353f071ed12199b
Validity
Not Before: Oct 19 14:01:19 2025 GMT
Not After : Oct 20 14:01:19 2025 GMT
Subject: CN=a28a4fcfac7705049f8ba7b1d89d09819b1da63c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a8:49:a3:6f:6f:2f:19:45:15:3d:c8:dd:9b:
4e:0b:02:42:0e:5a:9f:56:44:50:c8:01:fb:31:9e:
56:ae:f0:8e:7d:f4:d4:d4:1d:7c:6f:4b:9d:d9:4c:
e8:9e:b4:bc:53:61:91:2e:1f:c3:a5:dc:9a:ad:b9:
a4:ad:99:ce:0f:a6:4c:9f:54:d5:0d:69:8c:42:33:
70:9e:d9:c6:f3:de:88:2e:61:ad:20:bc:bc:89:fe:
bb:d9:7c:2d:db:71:cd:94:9e:a2:01:a6:13:53:5c:
bd:bf:31:3a:e8:60:d4:d4:27:46:ee:2f:cb:bd:52:
83:ed:16:29:bd:e8:57:68:66:59:80:69:a5:46:47:
31:9b:a4:5a:79:92:0a:cb:8e:10:87:7a:eb:f7:de:
0e:cc:04:6b:b2:d1:d7:10:2c:5f:f6:99:23:ad:d0:
95:b3:93:40:17:0b:c1:b8:0f:f8:f8:08:f8:17:af:
3d:b3:43:a1:f8:45:f4:da:8b:97:8e:b8:a8:f7:ea:
29:1b:c8:f9:f8:78:03:9a:4e:ba:03:4f:4d:ff:32:
e9:a4:ee:15:85:7f:fa:40:f1:c1:23:cb:86:b8:b4:
07:11:73:16:16:47:dc:f2:ba:98:23:45:a2:aa:65:
cb:dc:ff:23:e8:3a:e5:9b:a0:db:8c:45:b9:5a:53:
91:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:8A:4F:CF:AC:77:05:04:9F:8B:A7:B1:D8:9D:09:81:9B:1D:A6:3C
X509v3 Authority Key Identifier:
keyid:C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:d2:08:ae:51:5d:6a:0b:dc:7e:cf:e7:67:eb:32:46:d1:c7:
ce:3d:92:ab:35:3c:da:6d:e7:11:62:42:1b:24:13:b9:63:8d:
1f:5f:35:a7:4c:17:fd:83:c7:3a:ae:16:69:c2:64:b9:9d:8a:
88:2f:4e:5b:4c:53:a1:87:fe:f4:bb:26:9d:f0:c6:4c:c5:47:
db:20:a9:1f:0f:a9:9b:e8:34:e5:70:7b:a5:e0:8a:77:0d:05:
1b:e6:90:b5:8a:70:61:86:16:4e:f6:78:3f:49:df:35:71:7c:
00:05:9b:c8:7c:e9:10:29:ce:b0:d5:c2:87:e5:2a:04:85:5b:
e8:4c:21:9c:7e:ae:7e:9c:23:1a:5c:1a:b6:ff:df:5d:43:76:
bc:12:7b:67:fd:69:52:e1:0e:26:35:4c:d8:c9:d7:48:b7:75:
79:d5:8f:96:7f:1c:75:67:2a:25:6d:06:5d:dc:a4:c3:95:73:
1a:1a:fb:5a:19:e9:34:44:3b:07:4b:19:b9:cf:3c:4e:eb:8e:
15:95:e1:87:18:d4:36:f7:c7:84:41:c9:aa:9f:6f:a8:4f:fb:
6c:8d:68:88:c2:cb:13:9f:bb:e9:31:2c:34:ba:6d:41:6a:d4:
95:a6:27:06:b9:ac:43:9d:ed:67:c6:6c:18:7b:90:86:87:5c:
2f:fd:17:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:20:06 2025 by rpki-client