Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: Hj4ApjTGxz02VR9lgrZ57sFPfcDhrIyeNkF7q9zOZtc=
Subject key identifier: F2:AE:8E:3F:4B:55:25:A8:15:69:08:4C:C0:00:CF:33:AE:00:66:03
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 0199616C52A780A4E4AB654477CDD1DB2D71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 11A1
Signing time: Fri 19 Sep 2025 10:01:52 +0000
Manifest this update: Fri 19 Sep 2025 10:01:52 +0000
Manifest next update: Sat 20 Sep 2025 10:01:52 +0000
Files and hashes: 1: QGKSiFavp9LMElSoLZBhqzLqFMM.roa (hash: ip/2uYmlI+BKnaF8k1mqNHwsPmNtHEQrk8aTeSCdMUA=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: 2i/tCujdp+P2LVnkGr3YCq+858Y5F6cho/M8XlcChSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:61:6c:52:a7:80:a4:e4:ab:65:44:77:cd:d1:db:2d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Sep 19 10:01:52 2025 GMT
Not After : Sep 20 10:01:52 2025 GMT
Subject: CN=f2ae8e3f4b5525a81569084cc000cf33ae006603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a5:7c:e0:78:af:81:0c:23:a6:88:13:50:fa:
ca:76:a8:61:66:66:89:55:42:56:ee:f3:53:20:5e:
3a:ee:dc:13:ad:30:30:7c:e2:c1:a1:24:18:7c:d0:
68:88:0a:71:81:f5:49:8a:59:0f:09:aa:27:f3:7f:
19:b3:c0:11:fc:94:08:7b:4a:7e:45:6f:08:1a:8d:
c4:99:10:b5:24:8c:fb:eb:b7:90:8b:3c:a4:ae:d8:
f1:55:ee:6c:a2:2d:d1:fc:b9:c6:72:65:33:14:23:
aa:f0:a1:7a:4a:da:04:4f:fe:16:a4:a6:c6:c3:70:
ab:05:f7:5f:b2:5b:3e:34:ab:e8:3f:2d:db:cd:42:
a9:51:62:39:80:37:16:cc:c1:f7:27:11:c5:1e:83:
e2:a6:54:9c:eb:b1:bf:ad:20:7e:19:80:fc:94:9c:
ab:b1:4c:a5:5b:f5:f6:e5:52:0e:17:1e:19:91:cf:
17:d5:ac:40:e1:89:08:8d:fd:c4:48:b9:54:13:71:
3b:e3:a4:78:9d:a3:0e:1f:28:31:16:08:79:1a:34:
f1:29:09:4e:fd:a7:51:dc:91:0d:2f:b0:ef:89:be:
e8:f7:ae:33:e5:e4:b2:1d:0c:da:88:1b:0a:bf:9e:
b3:f3:1e:e4:66:96:ad:5d:ec:d9:54:87:9f:c9:21:
83:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:AE:8E:3F:4B:55:25:A8:15:69:08:4C:C0:00:CF:33:AE:00:66:03
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:5f:49:71:90:d1:6d:63:ab:ee:91:03:5f:61:b8:e0:41:36:
2c:7d:b2:93:36:55:9e:2a:2e:36:2b:51:a6:94:6e:62:9d:32:
54:0d:00:c7:da:15:cf:5d:72:9c:a9:47:de:7a:31:c8:7a:4e:
0d:16:93:fb:5e:53:dc:75:df:31:34:72:4d:28:2b:d0:f2:ef:
cb:2f:17:0f:23:80:d3:ea:2a:95:95:f4:39:1d:42:9b:8b:66:
2d:5c:2f:3f:44:db:a5:d5:c6:ff:75:e6:d5:a1:c8:ca:7e:87:
03:bf:de:8a:db:cb:c9:95:c2:2f:7b:b1:59:d7:a0:3a:04:e8:
de:d0:86:27:3e:67:5f:ce:de:1c:1d:77:a1:c2:b4:f8:e0:16:
f2:74:10:c8:a0:a2:20:ba:93:02:56:50:bf:af:87:21:28:69:
11:2a:0d:99:4b:6f:6f:61:65:f0:7a:22:cd:76:03:03:21:ea:
2b:01:af:89:0c:31:04:08:b7:f7:8c:7b:aa:a9:ea:84:b9:b7:
e0:93:87:ea:3f:28:6e:51:23:8c:fe:bf:89:79:46:6f:44:5e:
fd:44:f4:3d:aa:6d:7c:45:81:53:9c:58:eb:f3:e5:35:b3:a4:
67:9d:a2:e3:1b:fa:9b:69:48:8e:27:d8:a3:0f:76:69:cb:19:
ff:29:21:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 16:04:15 2025 by rpki-client