
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
File: _XBhwg1PCXYTrAMTI3pt8rsstdw.mft (raw, json)
Hash identifier: 560xR7aCK/bLc1gc5bSAwCqruNZdZWsp7ZxkiwBp9Ok=
Subject key identifier: 1B:D7:46:1C:DF:ED:DC:96:44:4B:0B:4C:D3:07:52:2A:13:CC:C1:51
Authority key identifier: FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC
Certificate issuer: /CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc
Certificate serial: 0199FC58E50AE9F1237875762216C8B4BBD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
Manifest number: 0277
Signing time: Sun 19 Oct 2025 12:01:48 +0000
Manifest this update: Sun 19 Oct 2025 12:01:48 +0000
Manifest next update: Mon 20 Oct 2025 12:01:48 +0000
Files and hashes: 1: _XBhwg1PCXYTrAMTI3pt8rsstdw.crl (hash: OJTFe6/k+TVshbWP7SD9Vx47ieE0EitdexqXeNs5AhA=)
2: oenpcHzg8QPV-rJqJOxh7sUU4JM.roa (hash: pI8sI3HGC0XwZjUjUuA9QCNQ3HFZ2jSXO5rE2e12GoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:e5:0a:e9:f1:23:78:75:76:22:16:c8:b4:bb:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc
Validity
Not Before: Oct 19 12:01:48 2025 GMT
Not After : Oct 20 12:01:48 2025 GMT
Subject: CN=1bd7461cdfeddc96444b0b4cd307522a13ccc151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b4:df:00:7d:c2:66:9c:95:a9:95:9c:3a:48:
05:d1:a1:c4:57:45:7d:66:98:8f:2e:05:48:f5:72:
e9:ca:cf:e6:4b:16:9b:24:f3:8e:e2:ac:d0:7b:90:
da:7a:d0:61:8a:59:eb:96:e6:ba:ef:4d:70:34:c1:
e5:46:e6:be:71:40:06:3a:14:ab:81:11:2f:b7:62:
80:a2:dc:76:2f:a9:53:eb:df:46:8d:7d:cc:97:92:
71:7c:43:59:61:c3:5a:ab:61:2a:5e:dd:f0:a8:aa:
0e:36:b5:bd:2b:26:10:ea:d8:cd:f3:f1:bf:5c:87:
6f:f4:f2:e9:43:17:54:c8:e3:f2:38:e6:b8:91:2e:
97:ab:c6:30:38:58:0a:e3:bf:eb:bf:3c:dc:3e:d1:
2c:9c:1e:bf:66:e8:61:16:90:4b:e0:c6:1f:b7:fb:
4b:88:70:37:b2:67:f3:26:6e:4a:6d:95:b8:72:ae:
5f:ed:35:07:79:79:2b:06:03:4a:66:24:1a:df:a4:
fe:e3:5c:31:6b:35:0d:2f:b5:05:5f:24:17:2f:e1:
42:a7:ff:98:95:3a:3f:86:a3:95:ec:ba:57:57:74:
b1:99:24:62:70:9b:e6:7d:35:2f:ba:77:e6:f8:cb:
25:71:0e:c3:2b:d2:e7:82:6c:e5:e5:c3:4e:25:7c:
01:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D7:46:1C:DF:ED:DC:96:44:4B:0B:4C:D3:07:52:2A:13:CC:C1:51
X509v3 Authority Key Identifier:
keyid:FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:0e:30:54:53:49:2c:5d:61:12:7c:33:ee:48:e2:49:22:a4:
f0:08:96:b6:82:27:63:7b:8a:05:7d:b5:d0:56:76:04:32:f4:
ae:39:38:12:bb:66:91:a9:f2:19:22:27:ff:2a:b3:e9:de:4d:
9f:3c:46:85:24:c5:cb:c0:4a:3a:bb:8e:b6:2f:af:76:88:74:
5b:e8:84:4a:ff:62:75:18:ce:ad:e7:1c:b8:20:f2:03:d4:5b:
bf:94:d4:23:d9:22:14:54:2f:bc:d2:e8:e7:ee:98:8d:3f:48:
a0:a8:a2:e3:14:20:95:50:9d:5a:2d:20:82:fc:b0:f2:0f:b3:
21:18:fd:b1:5a:d5:ed:34:1f:d2:fb:60:cb:87:b1:63:47:57:
ee:2b:d0:14:c5:20:63:af:25:b5:70:9f:b7:cd:9c:10:bb:b0:
c4:6e:35:d8:ff:b4:fc:04:98:0c:e6:c0:25:40:84:8d:a7:29:
55:e8:ce:d9:b8:03:ba:2e:ba:81:dd:31:8d:08:56:34:6f:18:
cf:70:af:54:06:e1:bc:9e:a2:6b:38:8a:2e:78:60:76:ad:24:
31:a2:f5:02:a8:8a:22:2b:62:45:02:e1:6c:00:8c:e6:b1:41:
7c:c0:1e:2e:ce:ba:62:02:3c:d3:fd:ed:66:2e:4c:bd:4e:fc:
13:10:ab:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:23:05 2025 by rpki-client