Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
File: xmJhwznF7fjYxIPwjka4SAqAXvE.mft (raw, json)
Hash identifier: ExOj4Cc7FH8eczNPZUEaO2tznVPe69QUMJukoTePNi4=
Subject key identifier: 44:38:C3:95:98:0A:CA:87:EE:15:18:60:5E:A2:08:17:68:CC:2F:16
Authority key identifier: C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
Certificate issuer: /CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Certificate serial: 0199FDDA3523AD510FF1F7523D706CE9559F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
Manifest number: 161F
Signing time: Sun 19 Oct 2025 19:02:40 +0000
Manifest this update: Sun 19 Oct 2025 19:02:40 +0000
Manifest next update: Mon 20 Oct 2025 19:02:40 +0000
Files and hashes: 1: n0PQVaq6lp0buyh71HmvCGJy3cY.roa (hash: QL9cb+VrnWZDKfgvQ3BKYLRd9xHYcd+B/V/qEKLIfgU=)
2: xmJhwznF7fjYxIPwjka4SAqAXvE.crl (hash: IE6NaxZVk9IgTis1y0tZ7sq1cqKB6KJ6RlUQEupP5Qs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:35:23:ad:51:0f:f1:f7:52:3d:70:6c:e9:55:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Validity
Not Before: Oct 19 19:02:40 2025 GMT
Not After : Oct 20 19:02:40 2025 GMT
Subject: CN=4438c395980aca87ee1518605ea2081768cc2f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:80:41:90:02:a3:33:b9:7b:b0:95:ec:b1:8b:
5a:eb:ad:17:83:44:30:1e:64:82:84:42:0e:a8:1b:
9f:d6:03:35:47:04:22:80:3d:5d:ca:9c:31:b7:07:
4d:08:af:83:f0:71:5f:3b:3f:8d:bb:12:41:7d:a1:
e0:03:10:88:8f:c9:7c:92:b7:78:aa:2a:f4:75:4e:
bb:0e:53:41:62:3f:af:1f:49:90:0d:04:5b:3d:b0:
c1:4f:fa:a1:1d:9b:eb:07:1b:6b:92:e4:92:5c:4e:
37:c4:23:62:1a:af:18:ba:bf:9a:99:5f:35:63:a6:
bc:4b:c1:b1:69:1c:35:43:3d:41:b3:2d:82:5d:5a:
11:52:27:77:65:4e:7d:dd:17:23:91:6e:cc:9b:65:
79:67:dc:9d:6b:14:82:0f:19:fa:32:2a:4f:62:b7:
c0:f6:de:b3:85:30:b5:fa:f4:d8:06:76:7b:71:d4:
82:48:f0:db:ec:31:be:ff:73:e3:40:8e:9e:ec:5c:
e1:bc:25:1a:d6:7a:ac:61:6b:36:fa:23:82:ae:5b:
ba:29:34:47:f2:62:a3:a6:7a:6a:0c:03:61:41:c5:
52:0d:f8:0e:80:8a:80:08:bd:63:ce:f8:4c:a4:dc:
d8:e6:c3:43:fa:e3:12:63:a5:43:20:e9:ae:a1:5a:
9c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:38:C3:95:98:0A:CA:87:EE:15:18:60:5E:A2:08:17:68:CC:2F:16
X509v3 Authority Key Identifier:
keyid:C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:54:35:03:ba:a4:e0:63:bb:1e:d1:53:00:fa:da:a2:29:9d:
2e:0b:79:37:f6:37:65:27:c1:21:87:90:00:d2:f8:90:aa:e3:
c3:98:d2:f0:f2:74:32:7a:36:89:66:6a:b5:7c:39:6e:53:ca:
18:c6:06:57:69:16:f5:03:3a:bd:39:30:38:ff:55:c9:bb:be:
2e:ab:c1:00:23:82:e0:0a:4d:a7:d6:fd:66:14:f4:3e:c9:d8:
0b:ba:71:07:a4:bd:09:25:96:d2:60:bd:45:13:12:2f:f3:f5:
18:2f:93:f9:54:4f:f0:3f:35:67:19:78:44:95:ac:5a:32:3e:
e2:b7:07:f9:db:01:be:8e:49:e1:a0:6a:be:0e:7a:27:ba:f6:
1e:f4:18:1b:47:c8:f2:98:45:d7:7b:92:0d:b9:b6:91:39:05:
ac:a1:29:5c:68:fd:d4:e2:c0:87:b2:88:2f:76:67:0f:b2:ad:
f1:78:8a:8e:a5:af:33:e4:50:f3:34:fa:4d:e6:39:c4:43:ec:
43:37:89:dc:15:7e:ce:7c:30:73:f3:16:f8:4c:18:a1:c1:e4:
50:c9:b0:3b:2f:85:a0:2e:05:f9:f0:9e:6d:a4:a5:23:c8:4a:
bb:d0:46:ff:b8:88:59:60:35:dc:65:d3:ec:af:02:81:b2:a4:
d2:db:79:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:52:52 2025 by rpki-client