Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
File: XWU9B97R6Nf08uoEvTaELFsS8V4.mft (raw, json)
Hash identifier: 2zfkNz23LtadsrF9IT/J34Etu5mFxDNYFF/zxWhv4Ok=
Subject key identifier: C6:EF:2C:14:77:41:4E:04:70:31:54:2E:99:30:79:29:DC:18:6D:BA
Authority key identifier: 5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
Certificate issuer: /CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Certificate serial: 0199221F437DFE400CE0A1E97D19D05A8253
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
Manifest number: 0E99
Signing time: Sun 07 Sep 2025 03:01:38 +0000
Manifest this update: Sun 07 Sep 2025 03:01:38 +0000
Manifest next update: Mon 08 Sep 2025 03:01:38 +0000
Files and hashes: 1: LETlz166RFHGtOnMtZqu-hVYTtY.roa (hash: R/HDeBwYS+y6cI45NJn8rpNKDr4lgvNm8JPFpPhGnoo=)
2: XWU9B97R6Nf08uoEvTaELFsS8V4.crl (hash: Ka9kBAQn1Twe4jTDEDe3nOsfSL2iOxNpoAKBbglnNco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:43:7d:fe:40:0c:e0:a1:e9:7d:19:d0:5a:82:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Validity
Not Before: Sep 7 03:01:38 2025 GMT
Not After : Sep 8 03:01:38 2025 GMT
Subject: CN=c6ef2c1477414e047031542e99307929dc186dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:94:78:59:60:79:e2:0d:9a:88:b1:ec:9f:e5:
d6:3b:22:7f:8c:e5:d8:30:9e:ad:e4:fd:4e:a0:0c:
bc:09:2d:90:10:1a:f6:87:b0:65:01:bb:72:e7:84:
d7:9a:28:a2:7a:12:72:1c:44:71:81:1d:07:f5:05:
52:10:d4:3d:10:32:34:a7:6f:c1:4b:eb:e2:47:32:
7b:36:3a:97:2a:78:7d:5d:af:1f:e0:17:dc:d2:54:
bd:d2:50:c4:35:5f:09:dc:81:88:fb:bd:3f:9f:81:
a6:c2:1a:9c:6b:60:d3:56:83:d7:c5:cb:b6:fd:e7:
3e:e0:0b:2d:b8:86:2b:b8:dc:4d:84:33:22:cd:a0:
07:df:44:19:b5:0f:0b:f4:09:a3:0f:aa:9f:1c:46:
5d:8f:00:16:74:dc:62:b0:13:09:c7:0b:9b:a3:b5:
ac:19:9c:06:20:f2:3d:3f:4f:ce:6c:c0:e0:d7:d2:
c4:da:9c:f8:61:40:e6:f7:74:34:cf:e0:78:f9:82:
82:3b:ac:13:55:27:f3:b5:bf:af:64:f3:1f:a9:a8:
76:44:3f:1d:c8:95:39:28:66:18:fc:3a:a5:45:57:
aa:24:8e:9f:63:f3:f5:35:ed:bc:9b:4a:31:7a:39:
6c:df:0e:45:1a:f8:ea:46:da:e0:95:8a:17:b9:a6:
e2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EF:2C:14:77:41:4E:04:70:31:54:2E:99:30:79:29:DC:18:6D:BA
X509v3 Authority Key Identifier:
keyid:5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:55:5d:87:4a:62:1b:ff:04:41:bd:57:1b:94:c7:2e:ff:d6:
14:2e:21:69:2b:72:71:7a:59:fb:d7:ae:1d:26:97:14:45:c4:
8b:1c:e7:3b:4e:56:8f:11:81:d7:b7:4f:52:24:ef:e2:8b:ee:
53:af:8d:cf:43:6c:78:b8:5c:3d:c9:d1:11:53:d0:0f:7b:fd:
c9:97:25:af:22:a4:80:e4:df:b9:c8:ef:ff:67:9b:54:5c:84:
e2:ec:b4:92:00:f8:9e:3a:16:10:4a:ab:40:08:e5:f9:0a:cd:
a6:ec:c6:2f:80:33:89:5b:7e:50:7b:a3:bf:5e:6c:15:ff:e1:
18:b0:99:cf:0d:9b:f7:09:31:9e:9d:88:8e:73:b8:e2:14:ef:
6f:d3:0f:e3:af:71:f1:7e:31:c2:eb:43:8b:37:ad:33:be:a4:
db:c9:95:e1:53:e9:a9:2c:56:b7:8c:71:32:c2:e8:1f:37:d2:
b7:00:6d:83:f2:a3:0f:8c:4f:ca:fa:bf:dc:f7:2f:35:8b:20:
a2:19:e9:bb:fb:0a:d6:47:92:b5:69:96:ca:39:2e:6e:e7:66:
ac:49:e6:b7:eb:4a:74:2b:cc:58:72:ac:7b:a5:a2:79:bb:6f:
8c:5d:b9:1a:e1:f0:5c:c7:a5:0c:95:20:04:93:2e:4b:65:73:
bd:4c:52:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:21:19 2025 by rpki-client