Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
File: 1XgxwfXmACVCvOut7yQSithG6vk.mft (raw, json)
Hash identifier: sKLNa63L0Xra9TsM7rNt0tt3t5OvWUW6beXz7Pphp7U=
Subject key identifier: 24:72:CB:AC:0F:C2:31:16:78:C7:B5:FC:E3:A6:0C:C8:45:63:EC:37
Authority key identifier: D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9
Certificate issuer: /CN=d57831c1f5e6002542bcebadef24128ad846eaf9
Certificate serial: 0199FCC6479F3F1C620573381AEE4CB12600
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
Manifest number: 01A5
Signing time: Sun 19 Oct 2025 14:01:16 +0000
Manifest this update: Sun 19 Oct 2025 14:01:16 +0000
Manifest next update: Mon 20 Oct 2025 14:01:16 +0000
Files and hashes: 1: 1XgxwfXmACVCvOut7yQSithG6vk.crl (hash: YEyxF3Rk8Au22T+l/UjimQZwMPNugAVp8DqIJsLn7oM=)
2: GLKnJ3LTIabZeoGVzMCaJjFByNY.roa (hash: +WAt95sFiKCWSXPNQeYrpYryf9q0NJaDtl61QpO/UCY=)
3: jBcC68-4tNTaOUs94kizBYj_5jE.roa (hash: CWF9O9xI5w99y3uaUjJU6mOhyBR4YqldPuJsucAG1t8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:47:9f:3f:1c:62:05:73:38:1a:ee:4c:b1:26:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d57831c1f5e6002542bcebadef24128ad846eaf9
Validity
Not Before: Oct 19 14:01:16 2025 GMT
Not After : Oct 20 14:01:16 2025 GMT
Subject: CN=2472cbac0fc2311678c7b5fce3a60cc84563ec37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:95:66:b3:7b:cc:96:8e:37:11:19:1c:8c:bb:
36:2d:f1:24:d1:6c:fe:e7:bf:37:44:80:e9:3d:45:
b2:ad:da:8f:10:1a:86:7a:ed:51:bd:f4:69:5e:39:
0e:04:ac:83:af:8b:07:b3:e7:d0:b4:d7:ca:f1:47:
25:a2:25:35:c1:87:15:f0:c9:14:01:15:a1:06:c8:
b6:6e:34:8d:3c:bc:57:54:55:8f:ab:ed:5a:0f:e7:
f8:20:3d:c6:5a:fb:a5:ab:56:b0:cf:d3:64:26:9b:
ab:c0:28:35:b3:e6:a7:dc:45:21:a1:f2:0f:7e:7d:
64:b3:d8:7e:f6:5e:82:d9:c6:9d:96:39:e5:68:f9:
cd:51:75:89:74:45:ae:ee:41:c6:c3:d6:fe:9a:35:
2f:2c:2d:67:8c:a5:b4:ac:0d:96:d4:8e:65:06:83:
02:f2:00:0a:62:26:1e:8d:6a:59:74:c4:8c:8d:bc:
0f:a4:c4:dd:d1:e9:7c:08:dd:3c:b8:53:89:42:1e:
ea:99:a9:a7:8d:ae:2e:e2:7f:bc:bc:d6:84:54:62:
0c:7a:0f:b1:3a:89:cd:34:14:f4:32:1c:0f:6f:f3:
93:83:f9:40:77:46:7e:03:0f:31:75:98:56:54:bd:
1a:29:b4:3d:87:6e:40:92:c5:5c:d8:18:a2:14:77:
a8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:72:CB:AC:0F:C2:31:16:78:C7:B5:FC:E3:A6:0C:C8:45:63:EC:37
X509v3 Authority Key Identifier:
keyid:D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:4a:4f:26:d1:5e:f9:12:30:3f:3a:fb:76:ec:41:08:c8:af:
82:d7:35:1f:99:19:71:a1:aa:99:c1:09:c1:f9:b9:5a:4b:75:
94:60:24:d7:ab:27:ee:d6:5f:e3:d0:c6:e6:54:ed:f2:b0:2e:
c5:ce:2e:a4:89:33:94:fe:19:8a:13:24:ad:36:0f:16:95:1f:
66:f1:5a:dd:4a:8a:a4:1b:97:55:12:6f:3e:21:22:46:ab:09:
6c:cd:b7:d7:2e:81:ee:04:8a:55:2a:e1:31:f5:0a:74:c3:48:
33:ab:64:e0:27:cf:48:25:11:7c:53:06:3d:8b:07:e9:cc:c8:
7c:96:57:c8:21:6f:f0:4e:c9:8f:ca:83:1f:b0:1b:11:4a:93:
cf:bb:98:43:c2:59:68:6e:d3:53:59:61:fd:31:68:ab:65:d8:
ff:83:ba:b3:6a:bd:42:47:91:e8:97:a6:c5:b5:f0:ef:b9:fa:
a2:fb:87:5f:5b:fb:42:42:6c:ab:0b:7b:ba:d8:59:f0:b1:16:
5f:0a:7d:c6:03:bd:42:50:b9:66:88:b1:68:a7:4b:c3:57:74:
6f:76:4c:29:3a:a9:39:f6:84:1b:d8:7d:67:83:58:88:e1:87:
0d:d0:9b:a5:2b:82:90:59:0a:17:36:8d:71:5b:be:20:41:98:
46:c0:13:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:44 2025 by rpki-client