Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
File: XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft (raw, json)
Hash identifier: xKvdPZjKU9n5hklRxamrKn7lm6Ph2JnYUkUgxrPAIFI=
Subject key identifier: 64:8E:F6:D8:FE:2B:D5:1E:8C:21:CC:BA:42:89:82:27:66:A0:56:FC
Authority key identifier: 5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
Certificate issuer: /CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Certificate serial: 019A0035D6EC4554C5402C9521B5339EECC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
Manifest number: 06F6
Signing time: Mon 20 Oct 2025 06:01:59 +0000
Manifest this update: Mon 20 Oct 2025 06:01:59 +0000
Manifest next update: Tue 21 Oct 2025 06:01:59 +0000
Files and hashes: 1: XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl (hash: ZPR2/jhxAGhICFbETMGeYUqAEuHyOxg4b/ojjRii9LQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:d6:ec:45:54:c5:40:2c:95:21:b5:33:9e:ec:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Validity
Not Before: Oct 20 06:01:59 2025 GMT
Not After : Oct 21 06:01:59 2025 GMT
Subject: CN=648ef6d8fe2bd51e8c21ccba4289822766a056fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:92:5c:fe:b6:2e:3d:39:2d:cb:e5:0d:9a:3e:
fe:0e:46:1d:29:79:2f:a0:eb:6d:9b:84:81:f8:1e:
82:63:59:e0:39:f1:0b:37:7d:62:c4:88:80:e2:47:
3a:61:53:a6:47:05:41:cf:b2:69:25:70:77:77:34:
98:2f:56:35:0d:8d:16:23:6c:b8:46:1c:f1:e7:06:
e9:46:9f:88:ac:d8:43:73:f8:1f:46:a5:36:98:51:
6a:3f:ba:cd:d3:b1:70:31:7e:9a:36:da:40:0f:d8:
2d:1e:1a:2d:6d:f5:31:b2:9e:80:17:c0:fd:f3:9d:
8d:57:86:d1:c9:12:5d:9b:10:e4:d4:96:20:72:30:
fa:cc:2d:31:f8:8b:16:72:3d:e5:4a:9b:a2:7a:87:
47:1c:29:99:92:63:d7:5d:81:05:8a:ea:54:ed:88:
9d:22:a2:48:a5:34:a7:95:a8:29:c2:21:3d:5b:81:
29:11:78:44:8d:6c:42:60:10:8b:be:ae:66:c1:e8:
75:4b:84:b6:9d:5f:14:22:09:f3:20:98:e1:72:3b:
ad:79:59:b9:db:a0:e6:42:89:7c:15:24:45:ab:97:
64:b2:cf:b4:f0:34:07:c1:80:66:9e:c1:e1:69:09:
80:58:be:25:5d:01:7b:c2:f7:3c:c8:9c:02:a1:3a:
04:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:8E:F6:D8:FE:2B:D5:1E:8C:21:CC:BA:42:89:82:27:66:A0:56:FC
X509v3 Authority Key Identifier:
keyid:5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:36:43:57:ae:83:9e:65:e8:07:53:3d:98:2d:52:84:21:15:
a6:52:07:3a:f3:a3:6c:a6:74:ba:98:e9:bb:2c:11:b1:6a:8a:
2d:fd:d2:29:d0:40:69:9d:35:39:77:85:76:09:29:fb:5e:02:
ad:ac:0c:6e:b0:80:f3:e4:39:29:1b:8e:3c:1a:ac:1d:80:8b:
4b:0b:e4:cb:55:d0:08:b4:25:ad:98:49:ce:c2:99:c7:2a:47:
8e:fe:5c:14:d0:69:91:b6:08:8a:52:cc:5f:e0:6b:49:e8:44:
ab:d2:4c:77:c6:9e:17:95:b2:a4:c2:a6:bd:86:3a:31:49:81:
e7:b4:6f:a4:f5:6f:e5:d1:19:80:79:f8:a7:a8:85:04:6f:9e:
5d:53:1a:36:cf:a1:cd:a1:77:db:7b:2c:4e:cd:f4:98:14:ea:
3a:25:3d:65:5c:37:66:34:13:e9:4a:4a:92:5e:c7:d9:ca:43:
28:41:ec:c3:51:5e:3d:96:39:2c:e8:76:39:9f:14:33:4c:a4:
04:13:cb:d5:9c:2c:f1:dc:c4:7c:ce:f4:76:3f:47:7c:8e:0c:
af:59:9b:6e:c7:2b:4f:00:63:12:c0:dc:24:95:1d:9e:96:89:
a2:21:3b:a3:81:ea:df:a5:a0:bf:ee:19:70:c7:59:54:3e:96:
8b:72:bd:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:44:13 2025 by rpki-client