Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
File: XpNr6hsMOiCKuifYsQsnXkdN3iw.mft (raw, json)
Hash identifier: 1z20H90kmIhAc2hf2pXKhWtEgXax4DwWBQPuHWp6BHY=
Subject key identifier: F6:F2:65:5E:15:EF:49:70:41:51:7F:91:FB:7F:08:91:BF:2C:AB:4C
Authority key identifier: 5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
Certificate issuer: /CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Certificate serial: 0199FC2165D09C2D5D76950E18819554AE9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 11:01:11 +0000
Manifest this update: Sun 19 Oct 2025 11:01:11 +0000
Manifest next update: Mon 20 Oct 2025 11:01:11 +0000
Files and hashes: 1: Nw7X2LCFZpQsGc2GoXyrFKElkBk.roa (hash: y5oQHHhbifcLGWzUQAXcT2e3MvPfBEuWSolqQY+gsts=)
2: XpNr6hsMOiCKuifYsQsnXkdN3iw.crl (hash: wwPUzqLLXbZQiFZ0Ag+k/wDd3iuJ6gEMCn51ZyI3D8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:65:d0:9c:2d:5d:76:95:0e:18:81:95:54:ae:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Validity
Not Before: Oct 19 11:01:11 2025 GMT
Not After : Oct 20 11:01:11 2025 GMT
Subject: CN=f6f2655e15ef497041517f91fb7f0891bf2cab4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:84:d4:84:58:25:db:07:44:19:83:bb:fc:36:
0c:a7:27:4b:eb:3a:8c:b1:ab:65:5d:0d:dd:8f:08:
52:79:66:4f:0b:9a:78:6e:96:17:6b:3b:93:90:63:
7a:9b:dd:a5:a6:a9:9a:56:f6:25:93:eb:06:98:da:
f9:a5:13:a2:d8:df:0f:05:2a:09:c2:23:dc:d6:cf:
83:c5:7c:f6:05:de:80:4a:be:ce:3e:47:fe:59:bb:
78:4c:c0:84:97:b7:b4:42:2e:ed:11:49:63:8e:59:
65:1b:4f:ef:52:06:3e:b3:07:98:4c:33:da:e1:d9:
fd:33:7b:f3:9d:0f:f2:d9:0a:31:a3:96:4b:b7:58:
88:58:2c:74:fe:c5:06:99:d5:a3:c2:11:fb:26:a8:
d7:05:a5:aa:58:ba:56:77:8e:d0:dd:24:aa:5a:87:
80:b7:8f:15:12:f0:e9:6b:6f:47:dd:7d:30:ad:aa:
e4:d1:f8:57:7f:26:8c:b5:06:3e:07:72:fe:ea:a4:
b2:ba:1c:7c:32:d4:74:f8:be:a6:99:cb:2e:37:73:
36:4f:05:7c:ec:d4:94:03:32:cd:2c:15:48:96:1d:
00:db:28:7b:35:7a:cd:5d:2c:af:f0:ac:f5:67:53:
9a:c9:36:59:58:01:2a:5f:8c:74:2a:2a:8f:e1:84:
16:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F2:65:5E:15:EF:49:70:41:51:7F:91:FB:7F:08:91:BF:2C:AB:4C
X509v3 Authority Key Identifier:
keyid:5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:f0:03:e9:59:b2:d6:2c:a1:02:7c:d3:7d:29:bf:06:b0:ec:
1b:34:56:64:c4:bb:68:cc:33:a1:30:a4:3c:8e:fa:f4:45:77:
c2:45:55:57:ee:86:90:d4:e7:98:9f:f3:bd:24:bf:b9:12:76:
de:fe:cc:72:6d:5f:dc:f9:97:f3:f4:4e:ac:e9:4e:46:77:82:
ef:ce:ed:10:52:19:09:31:50:a8:06:58:fc:fe:80:8c:f1:16:
9a:6c:2d:cf:62:64:08:d9:a5:36:35:50:44:e3:f6:23:f0:cc:
76:23:97:6f:e5:8c:17:db:dd:12:07:a0:b5:1a:97:16:eb:3f:
24:28:8d:3c:43:01:8d:52:a2:bc:8c:ef:08:ff:5d:8b:cb:99:
e3:23:4c:bf:67:55:c5:5d:7e:9d:6f:a1:c2:44:c6:fc:ce:b2:
48:91:2b:ec:de:18:7a:4c:d5:75:11:28:74:a0:1f:d2:6a:24:
39:52:cf:25:df:2f:20:62:99:f9:1f:e5:80:86:45:a0:49:bb:
f4:b3:3e:48:bf:72:99:16:e2:ee:57:23:ac:3c:d7:77:60:e9:
ad:8d:1c:f0:44:39:9b:00:24:5e:87:5d:d9:5d:8e:89:a2:72:
c2:d5:6e:ef:88:a2:61:d2:0b:ab:01:01:28:db:1c:c2:01:f6:
68:72:4b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:26 2025 by rpki-client