Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
File: XGpfUrAC9ihsHV6yV7tehTNCooQ.mft (raw, json)
Hash identifier: jYhUhYYXow5tRR9zT/q5duuaP7WlK9y+0dTa1ncTVQE=
Subject key identifier: D1:33:9F:81:10:86:F7:DD:5A:28:D6:33:C6:53:54:08:19:39:5E:82
Authority key identifier: 5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84
Certificate issuer: /CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284
Certificate serial: 0199FDDA10A0F7BF058884CA2B6DAEDA205F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
Manifest number: 1396
Signing time: Sun 19 Oct 2025 19:02:30 +0000
Manifest this update: Sun 19 Oct 2025 19:02:30 +0000
Manifest next update: Mon 20 Oct 2025 19:02:30 +0000
Files and hashes: 1: XGpfUrAC9ihsHV6yV7tehTNCooQ.crl (hash: aPQ1LN4lAYtbxQK7rdk7pN3DHrv5Zg4hAtkVHlJrq5U=)
2: tscq8RR5-J67nLuusgspLPatxCY.roa (hash: mhooYjP72FJexVsRBpMnu3/8vTwdVxQOmpcDiGXdBjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:10:a0:f7:bf:05:88:84:ca:2b:6d:ae:da:20:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284
Validity
Not Before: Oct 19 19:02:30 2025 GMT
Not After : Oct 20 19:02:30 2025 GMT
Subject: CN=d1339f811086f7dd5a28d633c653540819395e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:43:85:c2:f6:82:13:c1:50:d9:45:16:cc:a7:
f4:82:cb:4a:21:dd:5c:90:bc:25:47:6f:10:0d:44:
27:89:74:d7:f2:0d:7c:88:74:80:43:f8:6d:c0:ac:
51:2d:71:d7:66:10:7d:bf:aa:6a:08:88:a9:f6:c4:
23:6d:90:0e:17:5a:01:ec:92:4e:32:72:56:cc:06:
69:d4:78:33:ca:4c:49:00:db:db:24:84:61:6a:39:
54:7e:42:5d:bc:c4:8a:b5:07:39:f5:f0:b1:d4:95:
10:94:af:a6:f3:2c:8c:92:45:b4:72:58:f9:47:8d:
bb:0f:74:67:68:b1:c9:6d:0b:09:af:80:c6:57:bf:
f6:37:ec:67:de:8a:99:5b:ec:16:0e:9d:c3:e5:95:
d5:56:40:5b:90:d3:14:06:8e:dc:59:6b:dd:53:a7:
fd:29:4c:39:04:7c:71:4c:92:26:1b:d1:cf:4b:bb:
c0:60:3d:fc:42:dd:aa:dc:87:ff:c5:04:78:b3:b0:
0c:8c:3c:dd:01:30:62:ef:01:ff:14:83:72:20:a8:
17:38:22:1c:88:b7:52:b4:fc:51:4f:06:79:6e:f2:
f1:82:4d:41:bf:ad:7c:ba:da:c1:0a:0e:7b:5e:36:
c3:c8:68:1d:e2:c1:d3:6b:a3:fa:e2:e9:ed:1f:09:
92:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:33:9F:81:10:86:F7:DD:5A:28:D6:33:C6:53:54:08:19:39:5E:82
X509v3 Authority Key Identifier:
keyid:5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:1e:98:f1:1c:46:e7:74:4d:be:f6:91:e4:ef:45:1b:93:d1:
19:95:d1:34:ef:92:c3:e6:51:34:0a:dd:7f:d5:ca:fa:f4:0e:
f2:61:7d:9d:2e:d5:c7:ba:50:4a:5a:12:df:c9:dc:c6:07:2f:
bc:c9:73:df:a0:0f:52:9e:4e:15:fa:2e:cb:a9:3b:ad:00:33:
39:da:1b:c1:bc:d1:34:d5:31:61:9e:9e:9d:49:c3:86:68:66:
04:c6:83:8a:79:65:c4:7a:1a:4e:41:d0:a4:af:c2:38:a4:1b:
f6:0f:22:af:93:a3:ef:7c:ad:fa:3b:7c:30:26:1b:55:6b:69:
94:13:65:54:fd:0f:43:83:72:87:74:c2:a4:3d:46:aa:6e:fe:
9c:46:9d:4b:85:06:72:48:1d:b0:8a:a0:be:16:44:54:d5:1f:
b6:56:22:28:37:e5:33:f2:09:9e:68:ac:04:dc:ec:41:06:2f:
90:92:04:ba:d3:f9:81:e5:06:4a:da:18:da:5c:05:ab:b0:eb:
48:cc:37:3d:1c:d5:1a:e1:51:d3:cd:99:62:7d:c5:bd:f7:74:
a7:38:91:7b:15:69:b3:c6:19:1d:9d:85:5b:45:54:bd:e9:c5:
4c:a2:02:92:3c:68:c3:09:05:86:c0:67:b4:61:96:8c:55:fc:
51:fc:70:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:04:26 2025 by rpki-client