Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: cfbeeDmE4/PDeaLYAraJp+PT+QBwSytVj6zdsswxAG4=
Subject key identifier: C0:D4:7F:67:D7:9B:ED:8F:0A:DF:01:73:F5:49:C6:F2:DD:77:CB:3C
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 0199FDD9114C89E1ADBBDAF89719DB40352E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 0881
Signing time: Sun 19 Oct 2025 19:01:25 +0000
Manifest this update: Sun 19 Oct 2025 19:01:25 +0000
Manifest next update: Mon 20 Oct 2025 19:01:25 +0000
Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: +AQlzAg1Q0WL/8ZVmFXIDS7NVf+80H+xBssRcPKh5p0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:11:4c:89:e1:ad:bb:da:f8:97:19:db:40:35:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Oct 19 19:01:25 2025 GMT
Not After : Oct 20 19:01:25 2025 GMT
Subject: CN=c0d47f67d79bed8f0adf0173f549c6f2dd77cb3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:19:5f:90:18:ce:70:ec:32:b7:bd:79:71:0a:
08:b7:8d:a9:6c:30:32:8e:be:e3:67:24:18:62:b7:
51:15:55:31:2c:78:22:b7:b4:2f:44:56:15:b9:a3:
6c:29:b6:bd:86:7b:73:2a:e8:1b:70:88:57:be:28:
be:c5:59:eb:9c:a5:09:fa:cc:9e:3f:8c:3b:ca:f6:
ab:7a:b5:a4:48:4a:59:3d:d0:41:9b:77:ce:d7:6a:
8e:15:bd:79:7a:4b:22:25:36:52:ae:af:71:82:d7:
b9:bf:1f:18:fb:8e:a2:75:bd:2a:18:db:54:fc:fd:
b1:e9:ff:c0:f1:99:a1:c7:f6:f5:d3:09:93:27:a2:
c0:8f:1c:c4:e1:75:0e:b1:6d:b9:27:c4:9d:07:ea:
17:44:9f:8d:f1:47:24:c5:3d:eb:15:63:d0:d9:9f:
08:93:01:84:1d:ca:62:82:91:8a:bf:6f:52:0d:04:
26:04:da:a7:51:8c:3f:24:6c:5d:2b:67:7b:a1:06:
1d:e9:c4:a1:dc:12:e8:c0:1c:23:55:44:8f:81:01:
14:72:97:5d:37:83:eb:31:fe:91:19:b1:3a:0a:e7:
31:63:ee:4f:83:3d:5a:59:5e:dd:c8:3c:f0:db:a6:
9c:09:92:8f:5c:f6:9c:28:84:d6:51:51:ed:54:9b:
ff:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D4:7F:67:D7:9B:ED:8F:0A:DF:01:73:F5:49:C6:F2:DD:77:CB:3C
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:15:41:5b:41:37:b5:b5:95:f8:25:ac:79:c9:55:d6:67:25:
98:47:64:be:43:8e:a5:98:c2:ec:f1:15:d0:e2:dd:9d:56:42:
18:9a:83:bf:0b:07:b1:61:ad:8d:ab:6e:0a:c5:9a:f3:0f:14:
66:2c:f0:83:fa:e5:bf:1c:5a:8b:8e:d4:96:6a:bc:09:59:b4:
20:25:09:71:2d:57:1a:bb:fe:0a:34:36:4a:07:8c:42:cc:fc:
74:66:28:19:07:dc:47:73:74:1f:d6:f9:56:88:28:c6:57:a2:
83:50:2a:f3:20:01:32:cd:f9:e7:00:3a:3d:fc:60:7f:8e:43:
ae:e3:17:91:31:c6:04:51:c2:3b:1f:dc:8c:13:d9:ec:7f:4a:
ab:1a:c8:69:4e:54:0a:f7:cd:67:66:fc:5e:30:1b:51:55:0d:
8f:d5:10:d8:29:d3:b8:f0:ca:55:4a:71:2a:10:20:27:1f:12:
33:86:bd:77:ed:b2:9c:81:b5:ce:e6:9e:b1:2d:4c:f3:31:a6:
84:6c:81:e2:73:05:5b:74:3d:99:f2:e6:43:83:22:af:05:0e:
ff:f7:bf:58:37:7c:10:f3:e6:2e:0c:99:b4:5c:d6:47:e4:06:
d8:01:b4:44:62:98:1f:b5:af:2b:69:65:aa:b6:71:e1:f9:a4:
0c:85:57:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:05:32 2025 by rpki-client