Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
File: XNhYOyEXQQSea7GalG2DGqvxGtM.mft (raw, json)
Hash identifier: qK9lntyIqrM2AG613wiqNyYCnL91IB02iIZVqwG8kns=
Subject key identifier: FE:FC:10:69:E5:A6:7D:78:EC:85:D8:6D:A4:88:8B:94:E6:E6:A6:BC
Authority key identifier: 5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
Certificate issuer: /CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Certificate serial: 0199FCC6628BD8855A27FD898755177CAA28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
Manifest number: 1624
Signing time: Sun 19 Oct 2025 14:01:23 +0000
Manifest this update: Sun 19 Oct 2025 14:01:23 +0000
Manifest next update: Mon 20 Oct 2025 14:01:23 +0000
Files and hashes: 1: XNhYOyEXQQSea7GalG2DGqvxGtM.crl (hash: +yfYi8K0uq9/bnlCwKMagupsy6AHchOvyipxu26hpsE=)
2: ir_nzSQYAsgPoPu8kRGYQzALm7U.roa (hash: TCpfNyg//XzFyrfc8SAsUbs4iWswcCSro2mnromAmQo=)
3: m3SzGaHBe-liV9k_hjkTUrNHXMg.roa (hash: 1IYirY3YGGwbakrzW31PvEOIIPUhpCQb3MNxcEFgdzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:62:8b:d8:85:5a:27:fd:89:87:55:17:7c:aa:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Validity
Not Before: Oct 19 14:01:23 2025 GMT
Not After : Oct 20 14:01:23 2025 GMT
Subject: CN=fefc1069e5a67d78ec85d86da4888b94e6e6a6bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:bc:c1:d6:e4:96:96:b7:59:8e:03:00:cb:d2:
8f:23:04:18:9b:b5:6a:7b:a6:d9:64:4e:60:13:60:
3e:a8:dd:dd:d9:17:ad:d9:05:fd:3e:eb:ab:2f:88:
a8:f1:91:44:19:9f:a8:9b:3a:35:cb:6b:10:e0:fb:
1e:52:af:53:ec:8d:ef:d1:d1:64:b7:2e:c6:15:a9:
c0:69:1b:ac:23:f4:89:47:22:99:83:ed:f2:32:05:
a3:f5:56:86:35:cd:fa:a3:9f:79:27:21:f4:1a:2b:
48:91:1b:4e:0b:02:c1:85:30:f0:d6:f2:0a:f0:bc:
54:6f:20:47:dd:5e:82:4b:33:e1:e4:16:dd:73:52:
c4:61:bb:f8:50:68:b3:41:37:0c:16:4e:2b:04:db:
d7:0c:44:de:44:d9:52:96:47:04:5c:fd:30:1b:48:
e9:7f:99:28:03:fd:3e:9b:33:8f:96:5f:95:dc:9e:
2e:cf:ab:18:fb:b2:10:15:50:c3:cc:89:45:e7:c2:
6c:30:83:73:0a:9c:a3:db:77:46:fb:e9:e3:c4:76:
b1:63:62:a4:33:35:5e:64:86:e5:f8:76:69:c3:58:
bf:d3:74:4d:d0:d1:99:46:7e:91:43:72:8b:21:7f:
cb:ad:eb:3e:37:3b:88:ad:ee:a7:5e:49:56:b5:c6:
91:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:FC:10:69:E5:A6:7D:78:EC:85:D8:6D:A4:88:8B:94:E6:E6:A6:BC
X509v3 Authority Key Identifier:
keyid:5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:91:60:b4:c4:dc:1c:d7:c9:a3:d3:91:fe:fb:1c:59:2e:20:
da:77:cd:78:2b:30:c0:e6:fa:fc:a0:19:44:7c:81:02:14:81:
ec:78:52:f6:3e:e7:d4:d0:70:67:c7:00:ac:b9:1b:6e:de:72:
ac:38:ad:b7:60:5b:bf:d6:3d:c1:28:c2:ef:36:f1:f0:2c:41:
09:0c:2d:da:dc:a8:8f:43:a0:c8:4f:e0:c0:bb:1a:c3:9d:71:
39:e5:85:de:91:6b:66:f1:df:22:28:c3:31:0c:a3:0c:6b:47:
7b:8c:30:25:0c:26:39:23:eb:1f:88:32:53:0b:5e:77:05:e8:
86:6a:cb:3f:b8:9f:14:8e:64:6d:65:7b:55:42:8f:2a:a4:89:
c8:00:23:9b:0b:25:77:65:76:19:06:5d:36:11:4f:44:e4:fd:
4b:ea:88:3f:e7:4b:9e:66:1d:88:89:ee:72:50:11:f6:9f:bd:
ef:eb:25:10:2f:29:34:5c:ba:bd:0c:57:64:8a:f5:74:0a:21:
94:67:fc:83:dc:54:98:6d:c0:77:fc:a2:db:c6:20:1b:69:98:
b3:1d:1d:1b:57:7e:d1:0c:89:b7:3e:0d:1f:2a:37:b6:a6:a2:
4f:33:75:34:31:31:89:85:a5:69:f2:55:8b:9a:e4:25:66:58:
22:00:41:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:30:19 2025 by rpki-client