Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
File: XTJb79i36F40cQQgbYwKuKbg-04.mft (raw, json)
Hash identifier: jm4FJBOXEnoSuCjgjglyXhsHHkZ1MJPXtlU0JB+3+qc=
Subject key identifier: AB:11:3F:F7:29:69:EE:60:8C:74:96:20:09:37:D4:AB:33:34:28:C1
Authority key identifier: 5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
Certificate issuer: /CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Certificate serial: 0199FAA14399A44C42A1ABBDA45C1345261A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
Manifest number: 14BB
Signing time: Sun 19 Oct 2025 04:01:36 +0000
Manifest this update: Sun 19 Oct 2025 04:01:36 +0000
Manifest next update: Mon 20 Oct 2025 04:01:36 +0000
Files and hashes: 1: 1-odAb-HXEiGLPx5y_PADnZMBf0g.roa (hash: 4z0B6lGqXvXr1EDmabK3iy+SlaX1WPh7Y1Hx0zBd0iM=)
2: XTJb79i36F40cQQgbYwKuKbg-04.crl (hash: FdBaoSISq/V4aY3R6OkVTBIEkCUwcUoQKLDlmkjqTkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a1:43:99:a4:4c:42:a1:ab:bd:a4:5c:13:45:26:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Validity
Not Before: Oct 19 04:01:36 2025 GMT
Not After : Oct 20 04:01:36 2025 GMT
Subject: CN=ab113ff72969ee608c7496200937d4ab333428c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:32:0c:3a:b7:14:28:11:45:99:b7:3d:f8:a4:
52:9f:c5:29:03:0f:00:7f:e1:c0:be:68:ab:08:24:
c3:1b:4d:bb:8e:2a:79:9f:f5:13:67:9c:4e:78:56:
ff:ba:d0:81:60:52:6d:39:b8:0e:31:a0:58:16:1e:
89:43:d4:04:f7:54:e0:42:d0:20:35:5a:9d:12:0f:
c0:a9:bd:4a:78:74:d3:b5:09:cc:1e:8f:8b:5e:46:
41:60:e7:76:3d:c0:c7:7d:25:6f:cd:da:93:70:4a:
79:5e:b5:b1:a9:68:65:2a:fd:ad:94:00:d0:1b:df:
ba:c1:b1:6d:4f:77:24:12:8c:3a:00:61:8b:d0:d9:
b7:86:5a:a0:d9:10:8d:6a:fa:52:91:8a:a3:b8:a8:
ae:aa:41:8a:fc:44:a3:8d:33:1d:4b:6e:dc:23:df:
74:b4:c8:d0:a0:cd:d8:56:2c:a4:39:53:dd:b3:95:
cc:4d:bb:72:7f:de:c9:97:dd:fa:5e:d9:ba:7c:9c:
53:77:6e:9c:c2:1f:18:6f:03:39:86:1d:8e:0a:02:
1e:e7:f8:b8:d6:c9:50:01:f7:95:55:32:38:89:d3:
d9:cc:6e:15:91:bc:90:45:39:ea:1e:90:65:3f:cf:
bb:33:99:a9:0a:81:d6:b9:c1:dd:e8:25:5f:4e:bf:
a0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:11:3F:F7:29:69:EE:60:8C:74:96:20:09:37:D4:AB:33:34:28:C1
X509v3 Authority Key Identifier:
keyid:5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:54:01:97:10:ee:60:58:5b:72:b7:06:8b:0f:64:4c:b0:06:
aa:78:18:38:3b:23:a1:cc:b7:38:bf:3f:56:6f:70:e8:d2:9b:
7b:76:5b:86:c7:6a:e6:96:b6:33:64:d6:21:0e:26:44:d3:ff:
d3:d8:fc:d5:b4:fa:99:91:88:88:d8:ee:ec:e6:ef:df:91:92:
4a:55:a3:d9:39:a1:c9:34:af:da:08:ed:e5:49:32:61:90:69:
7f:5b:49:06:58:f8:5a:b3:aa:97:fb:b0:a9:67:b7:f8:73:b4:
d8:63:85:01:19:39:61:04:a4:f9:fb:bc:ab:c6:af:62:66:f3:
be:93:11:84:b2:50:33:72:38:67:21:fb:07:d3:10:25:0e:6a:
3e:a5:ac:7f:88:81:4a:56:94:53:c9:af:26:4e:93:5a:16:dd:
a6:2d:7c:f9:d5:08:ea:60:3f:fb:27:f7:50:e8:ef:39:27:99:
80:52:b1:b0:1f:af:7c:9a:80:a2:21:39:9b:73:34:29:41:3f:
38:cb:59:33:30:9d:62:fc:d0:de:9e:0d:1b:3f:c5:9e:9d:e5:
24:c0:5d:31:6d:70:5b:6a:69:93:d3:fb:8c:e8:0c:ee:9b:31:
76:12:52:b0:b8:05:10:58:42:24:eb:77:74:d3:03:0d:f2:e5:
74:0a:b5:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 12:52:52 2025 by rpki-client