Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.mft
File: XbeSdWWd2WHHQr8h2NyhhKRDDYU.mft (raw, json)
Hash identifier: Ctxd9DQjxOOmdh5MCG9+MA0uG7z1/9CNi0Tvu84c/iY=
Subject key identifier: FB:46:41:8A:75:B6:21:6E:0F:43:20:59:8D:FC:22:C7:AA:69:7F:98
Authority key identifier: 5D:B7:92:75:65:9D:D9:61:C7:42:BF:21:D8:DC:A1:84:A4:43:0D:85
Certificate issuer: /CN=5db79275659dd961c742bf21d8dca184a4430d85
Certificate serial: 0199FBEBD10534EB0E92230EE976828F1023
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbeSdWWd2WHHQr8h2NyhhKRDDYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.mft
Manifest number: 0D5E
Signing time: Sun 19 Oct 2025 10:02:39 +0000
Manifest this update: Sun 19 Oct 2025 10:02:39 +0000
Manifest next update: Mon 20 Oct 2025 10:02:39 +0000
Files and hashes: 1: XbeSdWWd2WHHQr8h2NyhhKRDDYU.crl (hash: kEBQsRG9LN4lEz9xoUFqEdv+sVaKz5SrdtID+uQWPv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbeSdWWd2WHHQr8h2NyhhKRDDYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:d1:05:34:eb:0e:92:23:0e:e9:76:82:8f:10:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5db79275659dd961c742bf21d8dca184a4430d85
Validity
Not Before: Oct 19 10:02:39 2025 GMT
Not After : Oct 20 10:02:39 2025 GMT
Subject: CN=fb46418a75b6216e0f4320598dfc22c7aa697f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bd:c3:00:8f:c7:42:cb:40:4a:2d:22:b2:a4:
26:fd:e0:ed:17:ef:c1:d9:c4:c8:81:22:e8:79:c7:
07:50:43:bc:34:43:90:ab:fe:a6:aa:c5:8b:96:3e:
f5:37:2d:6f:80:30:41:c3:84:10:1d:22:1b:64:d7:
cb:3d:ad:e9:ab:ba:ff:79:ec:67:58:d6:67:f6:09:
f9:d9:77:a3:48:80:75:1f:8a:40:fb:88:08:2d:c1:
eb:9b:d3:ab:4a:c2:69:77:0a:62:94:ab:6f:9a:a5:
d1:be:66:97:23:e0:4b:97:71:6f:f9:b7:8d:49:a8:
07:9f:d0:f2:07:1f:6a:0c:3f:24:46:85:9a:ca:e7:
3e:b0:69:e3:c0:8a:bb:1e:e6:57:50:4c:17:0b:76:
f5:d2:83:00:b1:e2:b4:b8:f0:3e:e6:12:3a:90:3d:
c1:29:90:b7:85:00:03:da:0d:bf:c9:c0:28:64:84:
82:9e:3d:8a:6f:f7:a8:92:86:08:23:ef:74:19:50:
8b:0c:c6:77:4c:76:bb:54:08:96:ee:fc:26:19:db:
46:19:5f:13:b8:f0:32:03:9c:d6:06:d2:65:99:05:
80:e7:7c:79:c8:f9:79:a5:d8:7b:d3:8a:ea:be:f1:
d3:e9:36:c1:3c:b5:6d:67:9a:6d:33:55:2d:41:5b:
ac:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:46:41:8A:75:B6:21:6E:0F:43:20:59:8D:FC:22:C7:AA:69:7F:98
X509v3 Authority Key Identifier:
keyid:5D:B7:92:75:65:9D:D9:61:C7:42:BF:21:D8:DC:A1:84:A4:43:0D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbeSdWWd2WHHQr8h2NyhhKRDDYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/52740e-5cb0-4814-a21a-a0967a435a6a/1/XbeSdWWd2WHHQr8h2NyhhKRDDYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:5d:81:df:aa:90:7b:c6:fe:51:e4:7e:91:b7:bc:d2:97:69:
f5:57:3d:9f:56:12:c4:29:54:f8:c0:0a:f9:75:df:10:c6:36:
d9:6e:af:75:31:8a:3a:a3:43:d4:c0:1b:12:55:e1:51:9d:57:
71:4e:ce:ee:8a:91:da:e5:55:a7:21:9d:b3:fa:a4:ed:77:4e:
29:df:ca:c4:5a:3c:2a:79:ab:dc:8d:c4:2e:e5:41:dc:90:66:
89:d6:c8:8e:3e:96:be:a5:56:d5:02:c0:34:8c:cd:0a:4b:4a:
a1:57:5c:57:a4:43:df:ea:fc:c9:83:b5:48:2a:d8:33:fc:eb:
5e:2b:2f:7e:ca:eb:f3:e3:f5:9f:d7:4d:6a:89:bb:ed:e5:ec:
4b:40:31:1a:34:3e:bf:a5:4c:f4:b3:30:9d:b1:eb:3c:a3:b3:
5b:2a:20:af:71:d9:c3:df:67:ef:2d:7d:ad:c1:31:13:e8:be:
f1:55:4b:8c:da:02:18:9a:06:c7:55:fc:91:8a:3b:e5:17:e9:
fa:29:93:0c:88:45:3a:60:3f:8a:11:e8:fd:b6:8a:71:bd:90:
19:3b:2c:d6:75:4c:db:51:49:88:b2:bd:a8:40:de:88:44:55:
f7:f2:b7:40:4d:4a:fb:73:b3:b8:7c:ce:de:ad:63:d9:0c:61:
c7:62:2a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:11:07 2025 by rpki-client