Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
File: xndznw-VRrTwJXcsXCsXl4WSOFI.mft (raw, json)
Hash identifier: GBKrJ0p3EumgcfeJ/b/w+Vp4eZZApayH19cUVhqkZfg=
Subject key identifier: F9:98:27:0D:D6:C5:CD:FD:4F:D2:AD:C3:D7:7D:8F:CD:F8:67:55:41
Authority key identifier: C6:77:73:9F:0F:95:46:B4:F0:25:77:2C:5C:2B:17:97:85:92:38:52
Certificate issuer: /CN=c677739f0f9546b4f025772c5c2b179785923852
Certificate serial: 0199FE7D797ACAF1D069128CCE3F8718EBA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
Manifest number: 14F5
Signing time: Sun 19 Oct 2025 22:00:59 +0000
Manifest this update: Sun 19 Oct 2025 22:00:59 +0000
Manifest next update: Mon 20 Oct 2025 22:00:59 +0000
Files and hashes: 1: xndznw-VRrTwJXcsXCsXl4WSOFI.crl (hash: lJdaiFdoAycgbOXFNHX2BCtjb90pIkrf7u9nB5a7uwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:79:7a:ca:f1:d0:69:12:8c:ce:3f:87:18:eb:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c677739f0f9546b4f025772c5c2b179785923852
Validity
Not Before: Oct 19 22:00:59 2025 GMT
Not After : Oct 20 22:00:59 2025 GMT
Subject: CN=f998270dd6c5cdfd4fd2adc3d77d8fcdf8675541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:37:a9:68:b8:19:fc:d7:61:f9:75:fb:93:c2:
1e:90:30:26:7c:bf:75:9b:ab:30:cd:b4:e2:19:4c:
ac:c6:78:96:cf:a8:06:a9:a4:52:b5:82:b0:8f:5f:
68:cc:8a:cd:e3:09:9b:7c:4c:ad:0d:33:12:94:c0:
80:62:92:00:63:39:65:ac:9e:b2:1f:e0:b6:d4:83:
98:2e:2f:1b:18:f6:bb:cd:6b:df:c2:9a:10:5d:e8:
39:fe:9c:95:cf:51:4c:23:66:ce:36:5e:ef:f4:a5:
6a:b4:80:97:e2:70:a3:01:ec:aa:f5:0c:5e:17:09:
7d:bb:32:9d:6d:f2:7f:83:77:0e:9a:1b:45:9a:f2:
3b:90:be:a3:98:c7:ff:98:b2:8c:24:50:69:6a:e9:
c0:a2:cc:5e:f9:d9:76:c2:08:0f:41:2e:2e:b4:f0:
87:1b:1f:a8:db:af:af:ed:d7:03:0e:87:bf:cc:7e:
2c:6f:7d:b2:cb:0c:b8:86:64:0c:a6:f3:79:a8:4a:
80:bb:32:02:fc:97:7a:4c:de:c1:bf:9a:ff:09:fc:
ef:68:5d:c1:36:53:0c:99:a6:08:40:da:7a:5f:8a:
68:89:ff:2d:e3:07:95:ee:a0:fe:c3:18:02:d2:88:
35:47:39:75:da:20:6c:2f:44:0b:c6:b5:0f:ff:6f:
33:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:98:27:0D:D6:C5:CD:FD:4F:D2:AD:C3:D7:7D:8F:CD:F8:67:55:41
X509v3 Authority Key Identifier:
keyid:C6:77:73:9F:0F:95:46:B4:F0:25:77:2C:5C:2B:17:97:85:92:38:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:08:ab:02:e5:95:99:bf:49:09:15:f4:43:04:a2:4a:40:88:
ca:2f:dc:ef:3b:7f:d3:3c:ea:50:46:0c:7d:7e:28:3b:6a:a0:
3a:29:31:52:6c:5c:ee:f2:af:c4:f7:78:81:15:d5:bd:5b:7d:
e2:74:2f:54:46:d3:59:72:d4:0f:f5:35:b8:ac:e7:e2:ea:84:
85:44:3e:47:35:33:1e:32:15:82:01:42:2c:cb:b0:33:e3:82:
f2:e4:29:6c:2a:cd:4f:a6:f6:49:3c:b1:3d:c9:5e:34:ce:46:
14:87:33:50:49:77:11:98:b8:ff:86:ac:b5:0d:6b:7b:1b:27:
ff:92:95:d2:17:72:fe:6b:67:b5:15:15:ce:02:df:37:f5:52:
c3:0d:f4:f4:eb:d6:de:b9:d8:4e:39:24:36:81:81:dd:d2:76:
a3:23:de:07:8d:38:7b:65:11:b6:84:5e:c3:3b:2e:51:00:7b:
24:4f:7d:7b:10:0b:30:c7:84:6f:a3:f2:7b:da:d7:66:e6:72:
99:63:09:81:00:85:24:8b:a5:1d:25:3a:4d:9f:12:fd:58:63:
ab:4d:20:c5:c6:b9:ae:03:bb:88:c7:c5:48:4c:d9:e0:f0:22:
77:69:71:5e:eb:a8:e5:a8:97:86:e5:11:9f:0e:40:43:e3:95:
1f:ee:c3:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:41:16 2025 by rpki-client