Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
File: XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft (raw, json)
Hash identifier: xQtPjRG9zWOz4/gh06AQmDTGPcw4QAHghdSi3c/NUzo=
Subject key identifier: CF:53:B4:DB:1B:66:6A:85:69:1F:3B:6B:42:62:69:2E:FB:6F:D1:88
Authority key identifier: 5C:02:F9:81:BE:E7:95:21:A3:04:B6:8F:66:7F:EA:ED:81:EA:3F:F6
Certificate issuer: /CN=5c02f981bee79521a304b68f667feaed81ea3ff6
Certificate serial: 0199FC58E8302D8709A0047C73C6851BF418
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
Manifest number: 113B
Signing time: Sun 19 Oct 2025 12:01:48 +0000
Manifest this update: Sun 19 Oct 2025 12:01:48 +0000
Manifest next update: Mon 20 Oct 2025 12:01:48 +0000
Files and hashes: 1: XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl (hash: bAh3/AuDcdhe/UIrwkhhsq0qkDmCyYGxClp2dD2oKbg=)
2: o5qKOTRfTPnYThdIYO9xUeKi2sc.roa (hash: EOStnDBrp4FRFcFGDjBhhWwMtuAGb36N8+2XArtelwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:e8:30:2d:87:09:a0:04:7c:73:c6:85:1b:f4:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c02f981bee79521a304b68f667feaed81ea3ff6
Validity
Not Before: Oct 19 12:01:48 2025 GMT
Not After : Oct 20 12:01:48 2025 GMT
Subject: CN=cf53b4db1b666a85691f3b6b4262692efb6fd188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b5:2d:9f:72:90:a3:e4:6c:49:95:20:9e:5f:
3e:01:54:0b:90:64:5c:a0:d8:5f:31:e0:76:ed:e3:
ee:37:b7:a4:5e:67:c4:11:fc:50:f7:4d:fc:78:eb:
fa:e1:f0:37:cf:a0:d8:79:12:37:29:2f:04:a1:37:
fa:88:06:a5:19:2c:2f:94:74:21:0e:51:14:6b:eb:
a7:16:44:cb:8b:de:9a:39:9b:7e:bb:22:13:e0:43:
2f:77:6a:82:27:ee:25:75:85:95:8f:b7:7e:fa:94:
2b:b4:7e:48:b5:00:2d:11:55:37:05:b8:9d:75:3a:
6a:d3:73:0d:3f:09:fe:2d:ca:49:08:c2:70:29:11:
cf:42:2c:83:30:e5:86:50:3f:ff:44:9c:22:d7:67:
2e:3e:9f:11:9a:07:c7:b2:21:ed:67:f1:3d:2d:bc:
b7:2e:98:ad:6c:59:d8:08:e0:bd:54:32:26:63:48:
4f:19:16:55:60:c3:2e:80:ff:b1:89:9c:69:40:aa:
ca:76:1d:14:c0:0c:22:22:ca:e3:1b:59:6a:94:82:
d3:70:6e:7e:74:a2:f7:bc:cd:5b:7f:7e:22:9f:87:
b7:55:f6:e9:0a:c1:ed:35:a7:41:5e:48:45:67:dc:
ec:2d:fb:1d:d7:4b:9b:db:c2:8b:25:0a:28:6b:de:
41:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:53:B4:DB:1B:66:6A:85:69:1F:3B:6B:42:62:69:2E:FB:6F:D1:88
X509v3 Authority Key Identifier:
keyid:5C:02:F9:81:BE:E7:95:21:A3:04:B6:8F:66:7F:EA:ED:81:EA:3F:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7c3c40-87a1-482b-97f3-37d2b032ba57/1/XAL5gb7nlSGjBLaPZn_q7YHqP_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:de:5a:ff:dc:93:a9:00:5a:9e:25:c0:71:f8:1d:f2:25:ab:
9f:ef:55:55:d9:5e:bc:9e:cf:6d:ee:f2:17:6b:cf:1c:95:77:
3f:99:6a:a2:b2:55:3b:13:3b:23:04:ab:f5:04:00:13:0d:9b:
67:8b:48:7f:c2:61:ce:3c:29:b6:b7:cc:54:76:d5:ac:93:1a:
1f:05:36:80:4c:ea:19:18:18:a7:ec:c2:d2:f9:b9:17:b5:14:
bf:a8:d3:40:50:88:2b:2c:60:50:1a:5c:bf:e6:43:db:1e:11:
1d:69:30:40:72:0a:94:bf:92:84:a7:dd:2d:81:29:ee:41:a8:
b2:34:7b:b4:a7:24:c5:92:9c:4e:8d:f5:de:b4:da:ed:e3:9a:
c6:36:df:9c:f9:55:6c:99:0b:b0:0c:f6:76:6c:96:70:0e:d9:
e1:f2:cf:8b:dc:8d:8c:35:e6:b8:55:24:3e:21:d5:45:28:d6:
f4:f7:ce:c9:02:e7:64:8e:cc:c7:41:8d:4d:a6:42:eb:bc:e4:
89:65:c7:8d:1f:7a:8b:63:7a:aa:00:8f:b4:46:6c:fa:7f:29:
d7:f0:5b:44:37:a6:0c:7e:88:4c:d9:7c:4e:a7:97:35:00:be:
dc:68:8b:c0:78:03:bb:03:55:2e:57:ea:12:8b:be:a6:3e:9e:
7b:e5:b8:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:12 2025 by rpki-client