Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
File: XWlT20hASwxmoV8Npu-n-sCpNp4.mft (raw, json)
Hash identifier: 30UuW4wCTgYcvs8rYRwa5COEOMp5wOi7Md3+Xq1Vlps=
Subject key identifier: F1:FF:1B:9E:3D:5C:46:C5:96:70:8D:26:49:9A:65:46:45:EB:42:C8
Authority key identifier: 5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E
Certificate issuer: /CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e
Certificate serial: 0199FB7C6B633B3A14E5DC3D95DD2651685C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 08:00:59 +0000
Manifest this update: Sun 19 Oct 2025 08:00:59 +0000
Manifest next update: Mon 20 Oct 2025 08:00:59 +0000
Files and hashes: 1: XWlT20hASwxmoV8Npu-n-sCpNp4.crl (hash: kQ8OnAwx5uU4JMqn4vjzxYBUbwprqjQ75H/CQrgP4vg=)
2: hC0t1cqhdoh6iyJ3cpDGc1N-nWg.roa (hash: PxIEeNMR+krZxWibCKKwK2CkVaApOYKXyBnr/5vAmac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:6b:63:3b:3a:14:e5:dc:3d:95:dd:26:51:68:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e
Validity
Not Before: Oct 19 08:00:59 2025 GMT
Not After : Oct 20 08:00:59 2025 GMT
Subject: CN=f1ff1b9e3d5c46c596708d26499a654645eb42c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9b:26:65:1a:3e:5d:3e:ff:4b:da:2d:74:53:
21:5d:56:38:ad:89:21:16:1b:ed:a8:cc:bc:fe:0a:
ce:e9:76:25:b9:14:32:cf:4a:b8:2e:53:3f:ef:0f:
dc:3b:b2:0c:e3:cf:04:bf:4f:8c:36:55:6e:56:a5:
e7:a3:b0:48:8a:96:30:0d:87:a0:3a:90:f8:c5:79:
77:1a:67:f4:72:a7:a2:38:ff:a2:f1:39:75:3d:21:
98:c1:9a:2e:84:1c:91:24:01:76:d6:4d:a4:e9:a1:
23:74:c5:b3:b0:ec:24:53:ae:35:5e:b2:c0:bc:9e:
86:a0:45:4e:9c:ca:9e:84:dc:cd:c1:55:cb:1c:c1:
39:d3:20:bf:bc:11:2f:63:85:a7:3d:4f:6e:fd:0b:
d9:bc:9b:53:06:34:a4:0a:c7:6e:8a:36:04:dc:fc:
bc:33:62:5d:4b:47:eb:53:1c:9a:3f:a6:c3:59:c8:
38:2d:41:91:a1:ef:16:19:3c:0d:35:8a:6f:cb:e3:
70:eb:6b:90:30:61:8f:3c:55:95:ef:74:39:e3:d1:
54:35:c5:45:76:a3:55:23:53:74:26:59:b2:40:05:
01:f3:50:54:20:e4:5d:59:a5:ee:38:40:2e:db:2a:
3d:17:b3:ae:a8:94:b0:79:2e:8c:18:ac:08:f1:db:
2a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:FF:1B:9E:3D:5C:46:C5:96:70:8D:26:49:9A:65:46:45:EB:42:C8
X509v3 Authority Key Identifier:
keyid:5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:d8:ec:3e:d9:c5:48:10:1c:58:19:5f:12:87:33:8a:bb:5c:
e6:44:26:86:3d:4b:dc:ff:97:a2:92:9d:f7:7a:94:18:2d:dc:
5d:d7:d0:32:3e:25:15:f5:2d:f0:fa:9c:95:92:65:4f:a4:94:
7b:55:c8:61:2d:f9:e4:e5:8a:16:69:4d:66:6c:4d:9c:25:3b:
3f:13:9e:99:df:a7:bd:29:f4:eb:31:51:59:f8:69:ce:8c:46:
5b:80:6e:01:f5:ca:b0:ca:75:11:27:ad:62:a2:c9:60:37:38:
3f:b8:60:ae:55:27:a4:84:00:0c:fd:e8:08:4e:ab:ff:ed:ac:
8f:79:79:9b:44:d9:aa:59:1e:57:25:d5:50:9f:76:00:04:be:
29:df:d2:10:a7:0a:a1:1e:c8:9b:e9:e8:e9:66:3a:47:16:c7:
99:6f:ae:47:3a:e4:b0:95:86:bc:ea:dd:59:b3:51:87:d2:5f:
65:77:f7:9c:e4:f3:8e:3d:c5:7c:e2:df:5e:7e:19:c5:f3:ba:
95:c5:25:92:e3:11:07:88:30:5b:e1:74:e5:a9:f3:37:38:11:
18:d2:31:0d:39:7e:d0:64:57:52:23:8d:3f:c6:98:6a:da:ce:
83:2e:70:92:98:62:af:58:41:6c:af:37:ec:56:79:5b:9b:f4:
67:c6:51:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:23:23 2025 by rpki-client